Your data, handled honestly.

Anonymous tier (no signup)

Anonymous renders are publicly accessible via a signed URL for up to one year so you can come back and grab them. Sketches and references you upload are stored on Azure Blob Storage (encrypted at rest) — they are not linked to a user account and are not shared with anyone outside the rendering pipeline. We keep a per-IP counter to enforce the 3-renders-a-day cap; it resets on a 24-hour rolling window.

Registered Free / Paid tier

Email is stored so you can sign in via magic-link or Google OAuth, and so we can notify you about your account. Mollie (Dutch payment provider) handles all payment data via PCI-DSS compliant infrastructure — we never see your card. Your sketches, references, and renders are stored on Azure Blob Storage and linked to your account; nobody outside the rendering pipeline accesses them, and we never use them for training.

What we never do

• Train AI models on your uploads
• Sell or share data with third parties
• Track you across other websites
• Use cookies for advertising

Data location

All processing happens in Microsoft Azure Sweden Central region (EU). Image bytes are stored on encrypted Azure Blob Storage; metadata in Azure Table Storage. Payment metadata is held by Mollie in the EU.

How long we keep your data

• Account profile — until you delete it (see below). Email, credits balance, signup IP, tier.
• Sketches, references, renders — kept as long as your account exists, so you can revisit your history. Deleted with the account.
• Anonymous renders — accessible by signed URL for up to one year, then auto-expire.
• Payment receipts — kept for 7 years after the transaction to comply with Dutch tax law (Belastingdienst retention requirement). After you delete your account, these receipts are anonymized — they no longer link to your identity but remain in our accounting log.
• Magic-link tokens — single-use, expire after 15 minutes.
• Sessions — 90 days from last login, then auto-expire. Deleted when you sign out or delete your account.

Your GDPR rights

You can delete your account at any time from the Account modal (Delete account → type your email to confirm). This permanently erases your profile, all renders, all references, all sessions, and anonymizes payment receipts. You can also email [email protected] for access, correction, or data-export requests; we respond within 30 days as required by GDPR Articles 15–17.

Last updated 2026-05-27. Full DPA available on request. Plotmosa is a project of SoKKoS (KvK 42029374, NL).