Privacy Policy for Snapveil
1. Data Controller
The controller responsible for the processing of personal data within the meaning of the General Data Protection Regulation (GDPR) is:
Pivoda UG (haftungsbeschränkt)
Managing Directors: Daniel Wagner, Jens Schwoon Friedensstraße 7 48151 Münster Germany
Email: contact@snapveil.com
2. General Information
The protection of your personal data is important to us. We process your data exclusively within the framework of the statutory provisions, in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the German Telecommunications Digital Services Data Protection Act (TDDDG).
Snapveil is a platform for creating and managing private event photo galleries. Organizers can create galleries, and guests upload photos and videos directly in their browser via a QR code or link.
3. What Data We Process
3.1 Visiting Our Website
When you visit our website, the following data is processed automatically:
- IP address (shortened or anonymized)
- Date and time of access
- Browser type and version
- Operating system
- Referrer URL
- Pages accessed
This data is used for technical provision, security, and error analysis.
Legal basis: Art. 6(1)(f) GDPR.
3.2 User Account
When you register an organizer account, we process:
- Username
- Email address
- Encrypted password
- Event information
Alternatively, you can sign in via Google OAuth.
Legal basis: Art. 6(1)(b) GDPR.
3.3 Guests
Guests can use galleries without full registration. In this case, we process:
- Username
- Email address (optional)
- Uploaded content
Legal basis: Art. 6(1)(b) GDPR.
4. Uploaded Photos and Videos
When users upload photos or videos, we process:
- Image and video files
- Upload time
- Association with the respective user
- Technical metadata (EXIF)
EXIF data may include:
- Camera model
- Time of capture
- Exposure data
- GPS coordinates (if stored in the image)
Location Information
If images contain GPS coordinates, these may be processed to display human-readable location names. Users can prevent this by removing location data before uploading.
5. AI Features
The following features can be enabled on the “Premium + AI” plan:
- Automatic image recognition
- Content tagging
- Image quality scoring
- Face detection and face grouping
Face Detection
The face grouping feature is disabled by default. Organizers are obliged to inform the persons concerned about the activation of this feature and, where applicable, to obtain any required consent. The results are used solely to organize images within the respective gallery.
6. Payment Processing
For paid services, we use Stripe as our payment service provider. Payment data is processed exclusively by Stripe. Snapveil does not store any credit card numbers or payment data.
Legal basis: Art. 6(1)(b) GDPR.
7. Email Notifications
To provide the service, we send, among others:
- Registration confirmations
- Notifications about available galleries
- Notices regarding storage periods
- Export notifications
- Information about activity within a gallery
Legal basis: Art. 6(1)(b) GDPR.
8. Newsletter
If you have given your explicit consent, we will send you information about new features, offers, and product news. Registration takes place using the double opt-in procedure. Consent can be withdrawn at any time.
Legal basis: Art. 6(1)(a) GDPR.
9. Service Providers Used
Cloudflare
For the storage, processing, and delivery of images and videos, we use:
- Cloudflare Images
- Cloudflare Stream
- Cloudflare R2
Stripe
Payment processing.
Sign-in via Google OAuth.
LocationIQ
Conversion of GPS coordinates into human-readable location information.
AI Service Providers
Analysis of images when AI features are enabled.
Data processing agreements pursuant to Art. 28 GDPR are in place with all processors.
10. Cookies
We use:
Strictly Necessary Cookies
These are required for the operation of the website.
Functional Cookies
Store settings and login status.
Analytics and Marketing Cookies
Are set only with your explicit consent.
Consent can be withdrawn at any time via the cookie banner.
11. Storage Duration
Event Data
- Free: 2 months
- Premium: 12 months
- Premium + AI: 12 months
After expiration, images, videos, metadata, and analysis results are deleted.
Account Data
Account data is removed after the account is deleted, unless statutory retention obligations apply.
12. Your Rights
You have the right to:
- Access (Art. 15 GDPR)
- Rectification (Art. 16 GDPR)
- Erasure (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Object (Art. 21 GDPR)
- Withdraw consent (Art. 7 GDPR)
To exercise your rights, please contact: contact@snapveil.com
13. Right to Lodge a Complaint
You have the right to lodge a complaint with a data protection supervisory authority.
Responsible for North Rhine-Westphalia:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia) Kavalleriestraße 2–4 40213 Düsseldorf
14. Data Security
We protect your data through technical and organizational measures, in particular:
- TLS/HTTPS encryption
- Access controls
- Password hashing
- Security updates
- Data backups
15. Changes to This Privacy Policy
We reserve the right to amend this Privacy Policy if legal, technical, or organizational changes make it necessary. The current version published on Snapveil shall apply in each case.
This is a courtesy English translation of the German Datenschutzerklärung. In the event of any discrepancy between the English and German versions, the German version shall prevail.
Last updated: June 21, 2026