How we collect, use, and protect your personal data.
ReShot ("we", "us", "our") provides AI-powered property photo enhancement services at reshot.co.uk. This policy explains what personal data we collect, why we collect it, and how we use it. We are the data controller for the purposes of UK GDPR.
If you have any questions about this policy or your data, please contact us at privacy@reshot.co.uk.
We collect the following categories of personal data:
We use your data to:
Our lawful basis for processing is performance of a contract (to deliver the service you've paid for), legitimate interest (to improve the service and prevent fraud), and consent (for marketing emails).
Photos you upload are used solely to perform the enhancement you've requested. We do not use your uploaded photos to train AI models without your explicit consent. Original photos are deleted from our servers within 30 days of your last download. Enhanced photos are retained in your account for 30 days and then deleted unless you save them externally.
We do not sell, license, or share your photos with any third parties.
We share data only with the following sub-processors, each of which is contractually bound to protect your data:
We do not sell personal data to third parties. We do not use your data for advertising purposes.
We retain account data for as long as your account is active, and for 12 months after closure for legal compliance purposes. Billing records are retained for 7 years in accordance with UK tax law. Photos are deleted within 30 days as described above.
Under UK GDPR you have the right to:
To exercise any of these rights, email privacy@reshot.co.uk. We will respond within 30 days. You also have the right to lodge a complaint with the ICO at ico.org.uk.
We use cookies to keep you logged in and to understand how people use ReShot. For full details, see our Cookie Policy.
We use TLS encryption for all data in transit, and encrypt data at rest. Access to personal data within our team is restricted on a need-to-know basis. We have procedures in place to detect and respond to data breaches, and will notify affected users and the ICO within 72 hours where required by law.
We may update this policy from time to time. We'll notify you by email of any material changes at least 14 days before they take effect. Continued use of ReShot after that date constitutes acceptance of the updated policy.
For any privacy-related questions: privacy@reshot.co.uk