Privacy Policy

Last updated: March 2026

This privacy policy explains how Snipped ("we", "us", or "our") collects, uses, and protects your personal data when you use our website and desktop application (together, the "Service"). We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Data Controller

The data controller responsible for your personal data is Thomas Elliot Lewis, contactable at privacy@snipped.ai.

1. What We Collect

We collect the following categories of personal data:

  • Account information — your email address and display name, provided when you sign up.
  • Usage data — snip counts and feature usage to manage your subscription limits and improve the Service.
  • Payment information — payment details are collected and processed by our payment provider, Stripe. We do not store your card details on our servers.
  • IP addresses — we record IP addresses in connection with consent records (such as cookie consent) for legal compliance.
  • Screenshots — when you use the snip feature, your screenshot is sent to our AI provider for processing. Screenshots are not stored by us or our AI provider after processing is complete.

2. Why We Collect It

We use your personal data for the following purposes:

  • Account management — to create and maintain your account.
  • Service provision — to deliver the core functionality of the Service, including processing your screenshots and returning AI-generated answers.
  • Billing — to manage your subscription and process payments.
  • Legal compliance — to comply with our legal obligations, including maintaining records of consent and responding to lawful requests.

3. Legal Basis for Processing

We process your personal data on the following legal grounds:

  • Contract performance — processing is necessary to deliver the Service you have signed up for, including account management, screenshot processing, and billing.
  • Legitimate interest — we have a legitimate interest in improving the Service, monitoring usage for security purposes, and ensuring fair use of resources.
  • Consent — where applicable, such as for marketing emails. You can withdraw consent at any time.

4. Who We Share Data With

We share your data with the following third-party service providers, each of whom acts as a data processor on our behalf:

  • Supabase (EU) — our database and authentication provider. Your account data and usage records are stored on Supabase infrastructure in the EU.
  • Stripe (EU/US) — our payment processor. Stripe handles your payment information in accordance with PCI-DSS standards.
  • Anthropic (US) — our AI provider. When you submit a screenshot, it is sent to Anthropic for analysis. Anthropic does not store your screenshots after processing.

We do not sell your personal data to third parties.

5. Data Retention

  • Account data — we retain your account information for as long as your account is active. Upon account closure, your data will be deleted in accordance with our deletion procedures.
  • Usage logs — usage data (such as snip counts) may be retained for billing and compliance purposes even after account closure, for a reasonable period as required by law.
  • Screenshots — are not stored. They are sent to our AI provider for processing and discarded immediately after a response is generated.

6. International Transfers

Some of the third-party services we use are based outside the UK and the European Economic Area. In particular:

  • Anthropic is based in the United States. When you submit a screenshot for AI processing, that image is transferred to and processed in the US. Anthropic does not store your screenshots.
  • Stripe may process payment data in the US or EU depending on your location.

Where data is transferred outside the UK, we ensure that appropriate safeguards are in place, including standard contractual clauses approved by the UK Information Commissioner's Office (ICO), to protect your personal data.

7. Your Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

  • Right of access — you can request a copy of the personal data we hold about you.
  • Right to rectification — you can ask us to correct inaccurate or incomplete data.
  • Right to erasure — you can request that we delete your personal data (the "right to be forgotten").
  • Right to restriction — you can ask us to limit the processing of your data in certain circumstances.
  • Right to data portability — you can request your data in a structured, commonly used, and machine-readable format.
  • Right to object — you can object to the processing of your data where we are relying on legitimate interest.

To exercise any of these rights, please email us at privacy@snipped.ai or use the account settings in your dashboard where applicable.

8. Cookies

We use a small number of cookies to operate the Service. For full details on what cookies we use and how to manage them, please see our Cookie Policy.

9. Children

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete that data promptly.

10. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. If we make material changes, we will notify you by email at the address associated with your account. We encourage you to review this policy periodically.

11. Contact

If you have any questions about this privacy policy or how we handle your data, please contact us at privacy@snipped.ai.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO). You can do so through their website at ico.org.uk/make-a-complaint.