What we store locally
Your projects, frames, and editor preferences live in your browser’s IndexedDB and localStorage by default. They never leave your device unless you sign in.
What we store on our servers
When you sign in:
- Your email address, display name, and (for password accounts) a bcrypt hash of your password
- Your projects + frames, mirrored from local storage so they sync
- Your AI generation history (prompt + cost + timestamp) for quota counting
- If you upgrade, your Stripe customer + subscription IDs
We don’t sell, share, or rent your data. We don’t use it for ads.
What we don't track
We don’t embed third-party analytics, advertising scripts, or marketing pixels. The only telemetry is server-side error reporting (Sentry) and aggregate product analytics that don’t identify you personally.
Cookies
We set HttpOnly cookies for authentication (your session) and quota scoping (anonymous device id). We don’t use cookies for tracking.
Deleting your account
From your account page you can delete everything — projects, frames, OAuth links, sessions, and authentication tokens are removed. AI generation history is anonymized (your user id is set to null) for cost auditing.
Contact
Email mark@loopixel.ai with any privacy question.