Privacy Policy
Last updated: February 16, 2026
What We Collect
When you use HeadshotBox, we collect:
- Account information: Email address and password (hashed).
- Photos: The selfies you upload for AI headshot generation.
- Physical description: Age range, ethnicity, hair color, eye color, and glasses preference to improve generation accuracy.
- Payment information: Processed securely by Stripe. We never store your card details.
How We Use Your Data
- Your photos are used exclusively to train a custom AI model of your likeness and generate headshots.
- We never share your photos or data with third parties.
- We never use your photos to train general AI models or for any purpose other than your order.
Data Retention
- Your uploaded photos and trained AI model are automatically deleted after 30 days.
- Generated headshots remain available in your account until you delete them.
- Account information is retained until you request deletion.
Data Security
Your data is encrypted in transit (TLS) and at rest. We use Supabase for secure database storage and Vercel for hosting, both of which maintain industry-standard security practices.
Your Rights
You can request deletion of your account and all associated data at any time by emailing support@headshotbox.io.
Contact
For privacy questions, email support@headshotbox.io.