Last updated June 17, 2026
PaintLasso ("PaintLasso", "we", "us", "our") makes a browser-based drawing, painting, and pixel-art studio at paintlasso.com (the "Service"). This policy explains what we collect, how we use it, and the choices you have. By using the Service, you agree to this policy.
PaintLasso is built to keep your work on your device. Your artwork, projects, custom brushes, and editor settings are stored locally in your browser (using IndexedDB and local storage) and do not leave your device unless you choose a feature that needs our servers — such as signing in to sync your work, or running an AI tool.
By default these are stored only in your browser. If you create an account and use cloud sync, your projects and their thumbnails are uploaded to our cloud storage so you can reach them across devices.
If you create an account, our authentication provider (Supabase) stores your email address and sign-in credentials. We use this to sign you in, sync your work, and manage your subscription.
When you use an AI tool (background remover, upscaler, image generator, or the in-app AI panel), the image and/or text prompt you submit is sent to our servers and to our AI processing providers to produce a result. We do not use your inputs to train AI models. Results are returned to you; we keep only limited operational logs (see Data retention).
Subscriptions are processed by Stripe. We do not receive or store your full payment card number. Stripe shares limited details with us (such as subscription status and your card's brand and last four digits) to manage your plan.
To run the Service securely we process limited technical data such as IP address, browser and device type, and request metadata — used for security, abuse prevention, rate limiting, and metering AI usage. We use an anonymous usage token to meter free AI credits even when you are not signed in.
We use your browser's local storage for preferences (theme, tool settings), draft prompts, and an AI metering token, and essential storage for authentication when you sign in. We do not use third-party advertising cookies.
We rely on a small number of providers to operate PaintLasso. Each processes data under its own privacy policy:
Local data stays on your device until you clear it. Account and cloud-synced data are retained while your account is active. We keep limited operational and billing records for security, accounting, and legal obligations, and delete or anonymize data when it is no longer needed.
PaintLasso is not directed to children under 13 (or the minimum age in your country), and we do not knowingly collect their personal information.
We use standard measures such as encryption in transit and access controls to protect your data. No method of transmission or storage is completely secure, so we cannot guarantee absolute security — please keep your own backups of important work.
Our providers may process data in countries other than yours. Where required, we rely on appropriate safeguards for such transfers.
We may update this policy from time to time. Material changes will be reflected by updating the "Last updated" date above, and where appropriate we will provide additional notice.
Questions about privacy? Email [email protected].