top of page
Start for free

Privacy

Last updated:

Feb 25, 2026

Magipic.ai
Last updated: February 25, 2026

Magipic.ai ("Magipic", "we", "us", "our") is committed to protecting your privacy and handling your personal data transparently and securely.

This Privacy Policy explains how we collect, use, and protect personal data in accordance with the EU General Data Protection Regulation (GDPR) and the UK GDPR.

1. Data Controller

Magipic.ai is the data controller for personal data collected through our website and platform.

Contact details:
Email: hello@magipic.ai

We do not currently appoint a Data Protection Officer, as our processing activities do not require one under Article 37 GDPR.

2. UK Representative

In accordance with Article 27 of the UK GDPR, our UK representative is:

Felicity Kay
Email: felicity@magipic.ai

You may contact this representative regarding any UK data protection matters.

3. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Name and email address

  • Account login details

  • Photos uploaded by users

  • AI-generated images and videos

  • Usage data (IP address, browser type, device type, session logs)

  • Payment and transaction information (processed via third-party providers)

  • Communication data (emails, support requests)

Where business clients use our platform to collect data from their own customers (for example, event guests), Magipic.ai acts as a data processor on behalf of the client. The client remains the data controller and is responsible for ensuring compliance with applicable data protection laws.

4. Purpose and Legal Basis for Processing

We process personal data for the following purposes:

To provide and operate our services
Legal basis: Performance of a contract

To process payments and manage subscriptions or credits
Legal basis: Performance of a contract

To improve, maintain, and secure our platform
Legal basis: Legitimate interests

To respond to support requests and communicate with users
Legal basis: Legitimate interests

To send marketing communications (where applicable)
Legal basis: Consent (which may be withdrawn at any time)

5. Recipients of Personal Data

We may share personal data with trusted service providers who support our operations, including:

  • AWS (hosting and cloud infrastructure)

  • PayPlus (payment processing)

  • SendPulse and MailerLite (email communications)

  • AI infrastructure providers and model hosting platforms

  • Analytics and security monitoring providers

All service providers are subject to appropriate contractual safeguards and are required to process personal data in accordance with applicable data protection laws.

6. International Data Transfers

Some personal data may be processed outside the European Economic Area (EEA) or the United Kingdom, including in the United States.

Where such transfers occur, we implement appropriate safeguards, including Standard Contractual Clauses (SCCs) or other legally recognized transfer mechanisms.

7. Data Retention

We retain personal data only for as long as necessary to:

  • Provide the Services

  • Fulfill contractual obligations

  • Comply with legal requirements

  • Resolve disputes

Data is deleted upon account deletion or request, unless retention is required by law (for example, for tax or accounting purposes).

8. Your Rights Under GDPR

You have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion ("right to be forgotten")

  • Restrict processing

  • Object to processing

  • Request data portability

  • Withdraw consent at any time

  • Lodge a complaint with your national data protection authority

To exercise any of these rights, contact us at hello@magipic.ai.

9. Children’s Data

Magipic.ai is not directed at children under the age of 16.

We do not knowingly collect personal data directly from children. Where our Services are used at events that may include minors, the event organizer (our business client) is responsible for obtaining any required parental or guardian consent before collecting or processing a child’s image or personal data.

If we become aware that personal data of a child has been processed without appropriate consent, we will take reasonable steps to delete such data.

10. Automated Processing

Our platform uses AI systems to generate images and videos based on user input. However, we do not engage in automated decision-making or profiling that produces legal or similarly significant effects on individuals.

11. Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.

12. Updates to This Policy

We may update this Privacy Policy periodically. The latest version will always be available on our website.

Continued use of the Services after updates constitutes acceptance of the revised policy.

bottom of page