Privacy Policy
Last updated: 2026-05-27
This Privacy Policy explains how Erased (“Erased”, “we”, “us”, “our”), the operator of erased.ink, collects, uses, shares and protects information when you use our website, web application, and REST API (together, the “Service”). Erased is a SaaS that removes and detects AI watermarks from images. By using the Service you agree to the practices described here.
1. Introduction
Erased provides tools that remove and detect AI-generated watermarks from images, available through a web interface and a REST API. This policy applies to all visitors and account holders of erased.ink.
We have designed the Service to collect as little personal data as practical. Most core functionality — uploading and processing an image — does not require an account. We only collect account information if you choose to sign in.
If you do not agree with this policy, please do not use the Service. If you have questions, contact us at support@erased.ink.
2. Information we collect
Uploaded images and processing results. The images you upload and the processed results we generate are stored temporarily in Cloudflare R2 and automatically deleted after 24 hours. We do not use your images to train, fine-tune, or improve any machine-learning model.
Account data. If you sign in, we store your email address, display name, and avatar URL. You may sign in with Google OAuth or with an email magic-link. This data is stored in Cloudflare D1.
Sessions. When you are signed in we set a session cookie (unmark.session_token) and record your IP address and user-agent for that session in Cloudflare D1. Sessions expire after 30 days.
Usage events. To operate quotas, prevent abuse, and understand product usage, we record usage events that include your IP address, a browser fingerprint hash, the operation mode, the status, and timestamps. These are stored in Cloudflare D1 and, briefly, in a short-lived KV ring buffer.
Rate-limit counters. We keep counters keyed by IP address and by browser fingerprint hash in Cloudflare KV with a short time-to-live (approximately 1–2 hours) to enforce rate limits.
Browser fingerprint. We compute a browser fingerprint client-side using FingerprintJS (an open-source library). It is stored in your browser's localStorage and sent as a request header for anti-abuse purposes. The fingerprint is approximate (roughly 60–70% accuracy) and is not personally identifying on its own.
Credits and subscription status. If you purchase a plan or credits, we store your credit balance and subscription status in Cloudflare D1, along with a Creem customer ID that links your account to your billing.
Payments. Payments are processed entirely by Creem, acting as our Merchant of Record. Your card and payment details are collected and held by Creem — Erased never sees or stores your card numbers. We receive only a customer ID and subscription/payment status from Creem via webhook.
Analytics. We use Google Analytics 4 (which uses cookies; we enable IP anonymization with anonymize_ip: true) and OpenPanel (cookieless, privacy-friendly product analytics). Both track page views and in-app events.
3. How we use information
Provide the Service. We process your images to perform the watermark removal or detection you request, and we use your account data to authenticate you and maintain your session.
Prevent abuse and enforce quotas. We use IP addresses, browser fingerprint hashes, rate-limit counters, and usage events to detect and prevent fraud, abuse, and excessive use, and to enforce plan limits.
Billing. We use your email and Creem customer ID to manage subscriptions, credits, and payments through Creem.
Transactional email. We use your email address to send service messages such as welcome emails, billing notices, and magic-link sign-in codes, delivered via Resend.
Analytics and product improvement. We use aggregated and event-level analytics to understand how the Service is used and to improve it. We do not use your uploaded images for this.
4. Image handling and 24-hour deletion
Your privacy around uploaded images is central to how Erased is built. Uploaded images and the processed results are stored in Cloudflare R2 and are automatically deleted after 24 hours by an enforced lifecycle rule.
During processing, image bytes are sent to Modal, our ML compute provider, solely to perform the requested operation. They are not retained by Modal after the operation completes.
We do not train, fine-tune, or evaluate any machine-learning model on your images, and we do not share your images with any party other than the processing providers needed to deliver the result.
5. Sub-processors
We rely on a small number of third-party providers (“sub-processors”) to operate the Service. Each processes data only on our behalf and only for the purposes below. We do not sell your personal information to anyone.
| Processor | Purpose | Data processed |
|---|---|---|
| Cloudflare (Workers, R2, KV, D1) | Hosting, storage, edge compute | Images (24h), account data, sessions, usage events |
| Modal | GPU/CPU image processing (ML) | Image bytes during processing only |
| Creem | Payments (Merchant of Record) | Email, payment details (held by Creem), billing status |
| Resend | Transactional email (welcome, billing, magic-link) | Email address |
| OAuth sign-in | Email, name, avatar (only if you choose Google sign-in) | |
| Google Analytics | Web analytics | Anonymized IP, page views, device/browser |
| OpenPanel | Product analytics (cookieless) | Page views, events, device/browser |
6. Cookies and local storage
Essential cookie. unmark.session_token is an essential authentication cookie set only when you are signed in. It is required for the Service to function and is not used for tracking.
Analytics cookies. Google Analytics sets cookies to measure page views and aggregate behavior, with IP anonymization enabled. OpenPanel is cookieless and sets no cookie.
Local storage. We store your theme preference and your browser fingerprint (under the key unmark_fp_v1) in your browser's localStorage. These never leave your device except the fingerprint hash, which is sent as a header for anti-abuse.
Cookie consent. We have not yet implemented a cookie-consent banner. To be transparent: EU/EEA and UK visitors who do not wish to be measured by analytics may opt out using their browser settings, an ad/analytics blocker, or a Do-Not-Track / Global Privacy Control signal. We honor such signals where technically feasible and intend to add a consent banner.
7. Data retention
Images and processing results: 24 hours, then automatically deleted.
Rate-limit counters: approximately 1–2 hours.
Usage events: retained for analytics and abuse-prevention purposes for up to 24 months.
Account data: retained until you request deletion.
Sessions: 30 days.
Payment records: retained for 7 years to comply with applicable financial and tax law. The detailed records are held by Creem; we keep only minimal references.
8. Your rights
Depending on where you live, you may have rights over your personal data under the EU/UK General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), China's Personal Information Protection Law (PIPL), and similar laws.
These rights generally include the right to access, rectify (correct), delete, and export (port) your personal data, and to object to or restrict certain processing.
To exercise any of these rights, email support@erased.ink. You can request account deletion at any time; on deletion we remove your account data and personal identifiers (payment records are retained as required by law).
For EU/EEA and UK users, our legal bases for processing are: consent (for analytics), performance of a contract (to deliver the Service you request), and our legitimate interests (to prevent abuse and secure the Service). You may withdraw consent at any time.
For California users, we do not sell your personal information and have not done so in the preceding 12 months. You may exercise your CCPA/CPRA rights without discrimination.
For users in China, we process personal information in accordance with PIPL, including the principles of necessity and minimization, and rely on your consent or contractual necessity as the lawful basis.
9. International data transfers
Erased runs on Cloudflare's global edge network, and image processing runs on Modal. As a result, your data may be processed in countries other than the one in which you reside, including the United States.
Where personal data is transferred across borders, we rely on the safeguards offered by our sub-processors (such as Standard Contractual Clauses and equivalent mechanisms) and limit transfers to what is necessary to deliver the Service.
10. Children's privacy
The Service is not directed at children under 13 (or under 16 where a higher age applies), and we do not knowingly collect personal information from children. If you believe a child has provided us personal data, contact support@erased.ink and we will delete it.
11. Security
We protect data with industry-standard measures: all traffic is served over HTTPS, API keys are stored only as hashes, uploaded images are automatically deleted after 24 hours, and we never store your card or payment-card data (it is held by Creem).
No method of transmission or storage is completely secure, so while we strive to protect your data we cannot guarantee absolute security.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes we will update the “Last updated” date above and, where appropriate, provide additional notice. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.
13. Contact
If you have any questions about this Privacy Policy or how we handle your data, contact us at support@erased.ink.