ReDecor AI Try now
๐Ÿ”’ Legal

Privacy Policy

Last updated: ยท Effective:

1. Who we are

Redecor AI ("Redecor", "we", "us") is an AI-powered design generation app for interiors, exteriors, and gardens, available on iOS and Android. This Privacy Policy describes how we collect, use, and share information when you use the Redecor AI mobile app and this website (together, the "Service").

The data controller is ReDecor AI. You can reach us at contact@redecor.ai.

2. Data we collect

2.1 Account data

When you create an account we collect your Firebase Authentication identifier (UID), email address (if you sign in with email or Apple), and your authentication provider (Apple, Google, email/password). If you set a display name, we store it in your users/{uid} document.

2.2 Content you create

  • Source photos you upload to redesign a space (stored in Firebase Storage).
  • AI-generated images produced for you, together with the structured "recipe" of your choices (category, place, style, palette, mode: image-to-image or text-to-image) and a visibility flag (public or private). These are stored in the designs collection in Firestore.
  • Designer chat messages you send to our AI designers, and any image you attach to a chat message for vision-based analysis. Chat threads are persisted locally on your device (sembast) keyed per designer. Messages and any attached image still transit our Cloud Functions and the third-party AI provider when sent (see Section 5).
  • Likes you give to public designs in Explore, recorded as a marker at users/{uid}/likes/{designId}.

2.3 Subscription data

Subscriptions are managed by RevenueCat on top of the Apple App Store and Google Play. We receive your RevenueCat customer ID and your active entitlement state (e.g. free or premium). We do not receive or store payment card data โ€” purchases are processed by Apple or Google.

2.4 Usage and analytics data

We use Firebase Analytics to understand how the app is used. Events we log include, among others: photo upload, place / style / palette selected, generation started, generation succeeded or failed, paywall shown, subscription purchased, designer tab opened, designer chat opened, designer message sent, designer chat cleared, designer chat compacted, Explore tab opened, Explore scope changed, Explore category filtered, Explore design opened, Explore design liked, Explore "try this design" tapped.

2.5 Device & diagnostic data

Through Firebase Crashlytics we receive crash stack traces, the app version, OS version, device model, and a non-permanent installation identifier. Firebase App Check provides integrity tokens to protect our backend from abuse. Firebase Remote Config delivers feature-flag values to your installation.

2.6 Push token

If you allow notifications, we store a Firebase Cloud Messaging token so we can send you transactional or product messages (e.g. when a generation finishes).

2.7 Per-user quota counters

For rate-limiting we maintain per-user counters at users/{uid}/quota/* โ€” for example, designer chat per-minute and per-day usage. These are written by our Cloud Functions and not visible to other users.

3. How we use your data

  • To deliver the core product: generate redesigns from your photos, run the designer chat, surface Explore content, and store your generation history.
  • To enforce subscription entitlements and per-tier quotas, including watermarking generations for free-tier users.
  • To prevent abuse and fraud (App Check, rate-limit counters, audit of like activity).
  • To diagnose crashes and improve quality.
  • To send product communications you've opted into (push notifications).
  • To comply with legal obligations.

5. AI processing of photos and chats

All AI calls โ€” both image generation and designer chat โ€” go through our Firebase Cloud Functions. We do not call any AI provider directly from the app. From there:

  • For image generation, your source photo (if any) and a prompt assembled server-side from your structured choices are sent to a third-party AI image provider. The generated image is returned, watermarked if you are on the free tier, and stored in your generation history.
  • For designer chat, the messages you send (and any image attached) are forwarded to a third-party large-language-model provider with the designer's system prompt. Long threads are automatically summarized server-side so context stays bounded.

Today our AI provider is Google (Gemini) via Firebase. We do not use your prompts, photos, or AI outputs to train any model, and we instruct our AI providers not to do so on our behalf where their terms allow.

6. Public designs and the Explore feed

At step 4 of the generation flow you choose a visibility flag for the new design:

  • Public (the default) โ€” your generated image and its structured recipe (category, space, style, palette) become eligible for the Explore feed and can be viewed and liked by other signed-in users. Public designs may appear in our curated leaderboards (This month, All time).
  • Private (premium-gated) โ€” your generated image and its recipe are visible only to you.

The original source photo you uploaded is never shown in Explore. Visibility may be changed in your design's settings; making a design private removes it from future Explore queries.

7. Sub-processors

We rely on the following sub-processors to run the Service:

Provider Purpose Data processed
Google Firebase (Google LLC / Google Ireland Ltd.) Authentication, database (Firestore), file storage, Cloud Functions, Analytics, Crashlytics, Remote Config, App Check, Cloud Messaging Account data, content, usage events, diagnostics, push tokens
Google (Gemini / Vertex AI) AI image generation and AI designer chat completions Source photos, prompts, chat messages, attached images
RevenueCat, Inc. Subscription & entitlement management RevenueCat user ID (equals your Firebase UID), purchase events, entitlement state
Apple Inc. / Google LLC App distribution and in-app purchase processing Payment data (handled directly by Apple / Google โ€” we do not receive card details)

8. Sharing & disclosure

We do not sell your personal data. We share data only:

  • with the sub-processors listed above, under written data-processing terms;
  • with other Redecor AI users, when you mark a design as public (Section 6);
  • when required by law, valid legal process, or to protect rights and safety;
  • in connection with a merger, acquisition, or asset sale, subject to this Policy.

9. Data retention

  • Account & designs โ€” retained while your account is active.
  • Source photos & generated images โ€” retained until you delete the design or your account.
  • Designer chats โ€” stored locally on your device; cleared when you sign out, uninstall the app, or tap "clear chat".
  • Analytics & crash data โ€” retained for up to 14 months (Firebase default) unless we shorten it.
  • Subscription records โ€” retained for the period required by tax and consumer-protection law.

When you delete your account, we delete your Firebase Auth record, your users/{uid} document, your designs, your likes, your quota counters, and your stored images. Backups are purged on rolling schedules.

10. Your rights

Depending on where you live, you may have the right to:

  • access the personal data we hold about you;
  • have inaccurate data rectified;
  • have your data erased ("right to be forgotten");
  • restrict or object to certain processing;
  • receive a portable copy of your data;
  • withdraw consent at any time (this does not affect prior processing);
  • lodge a complaint with your supervisory authority (in Poland: Prezes Urzฤ™du Ochrony Danych Osobowych, uodo.gov.pl).

To exercise any of these rights, email contact@redecor.ai. You can also delete your account directly from the app's settings screen.

11. Security

All traffic between the app and our backend is encrypted in transit (TLS). Firestore Security Rules and Firebase Storage Rules restrict who can read and write each document and file. Premium / entitlement state is stored in Firebase Auth custom claims set only by the server, so it cannot be forged from the client. App Check protects callable functions from unauthenticated clients.

No system is perfectly secure. If we become aware of a breach affecting your data, we will notify you and the competent authorities as required by law.

12. Children

Redecor AI is not directed to children under 16 (or under 13 in jurisdictions where that is the minimum age of consent for online services). We do not knowingly collect personal data from children. If you believe a child has provided us with data, contact us and we will delete it.

13. International transfers

We and our sub-processors may process your data in the European Union, the United States, and other countries where they operate infrastructure. Where transfers leave the EEA, we rely on the European Commission's Standard Contractual Clauses or an equivalent safeguard.

14. Cookies on this website

This marketing website does not set advertising or tracking cookies. We may use strictly necessary local storage for language preferences. The Redecor AI mobile app does not use HTTP cookies; usage analytics inside the app are described in Section 2.4.

15. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest revision. Material changes will be announced in the app or by email before they take effect.

16. Contact

Questions, requests, or complaints? Email contact@redecor.ai.

โ† Back to home