← Back

Privacy Policy

Last updated: May 2, 2026

1. Who we are

Noaroo is an image generation playground operated as a paid online service. This policy explains what data we collect, why we collect it, and what choices you have. By using Noaroo you agree to the practices described here.

2. Information we collect

  • Account data: name, email address, and profile picture provided by Google when you sign in.
  • Usage data: prompts you submit, model and resolution selected, generated images, and timestamps. We retain these for billing audit and abuse prevention.
  • Billing data: credit balance, transaction history, and Stripe purchase records (Stripe customer IDs and session IDs). We do not store payment card numbers; Stripe handles that directly.
  • Technical data: IP address, user agent, and basic request logs for rate limiting and security.

3. How we use your data

  • To authenticate you and operate the service.
  • To process payments and credit purchases via Stripe.
  • To generate images by sending your prompts to Google's Gemini API.
  • To detect abuse, prevent fraud, and enforce our Terms.
  • To respond to support requests.

4. Third parties we share with

  • Google (Gemini API):we send prompts and uploaded images to Google to perform generation. See Google's privacy practices for the Gemini API.
  • Google (OAuth): for sign-in only. We receive your email, name, and profile image.
  • Stripe:processes payments. Stripe's privacy policy applies to payment information.
  • Hosting and analytics: we may use server hosting providers and aggregated analytics to operate the site.

We do not sell your personal data. We do not use your prompts or generated images to train models.

5. Data retention

Account and billing records are retained for as long as your account is active and for a reasonable period afterward to comply with legal and accounting obligations. You can request deletion of your account by contacting support; on deletion we remove personally identifiable information except where retention is legally required.

6. Your rights

Depending on your jurisdiction (GDPR, CCPA, and similar), you have the right to access, correct, delete, or export your personal data, and to object to certain processing. Contact us to exercise these rights.

7. Cookies

We use a session cookie set by Auth.js to keep you signed in. We do not use third-party advertising cookies.

8. Children

Noaroo is not directed to children under 13. If you believe a child has provided us with personal data, contact us so we can delete it.

9. Changes

We may update this policy. Material changes will be communicated by updating the “Last updated” date and, where appropriate, by notice in the app.

10. Contact

For privacy questions, email [email protected].