개인정보처리방침

최종 업데이트: 2026년 3월 16일

1. Information We Collect

When you use RoomAI, we collect the following categories of information to provide, improve, and personalize our AI interior design services.

1.1 Account Information

When you sign in with Apple or Google, we receive your name and email address as provided by the identity provider. We do not store your social login passwords. Apple Sign In users may choose to hide their email address, in which case we receive a private relay address.

1.2 Photos and Images

Room photos and furniture photos you upload are processed by our AI system to generate interior design results. Images are stored securely on our content delivery network (CDN) and are only accessible to your account. We do not use your personal photos to train AI models.

1.3 Usage Data

We collect anonymous usage analytics to improve the app experience, including:

  • Feature usage frequency and patterns
  • Session duration and app interactions
  • Crash reports and performance metrics
  • Device type, operating system version, and app version

1.4 Device Information

We automatically collect certain device information when you use the app, including your device model, operating system version, unique device identifiers, language preferences, and time zone. This information helps us optimize performance and provide localized content.

1.5 Subscription and Purchase Data

Subscription and in-app purchase transactions are processed through Apple App Store or Google Play Store. We receive transaction confirmations and subscription status through RevenueCat but do not have access to your payment card details.

2. How We Use Your Information

We use your information for the following purposes:

  • Provide AI interior design generation services, including processing your room and furniture photos
  • Manage your account, subscription status, and credit balance
  • Improve our AI models, app features, and user experience through aggregated, anonymized analytics
  • Send important service notifications, such as when your AI design is ready
  • Provide customer support when you contact us
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations and enforce our Terms of Service

3. AI Processing and Image Data

Understanding how your images are handled by our AI system is important to us. Here is how the process works:

  • When you upload a room photo or furniture photo, the image is first compressed on your device before being transmitted
  • Your compressed image is uploaded to our secure CDN (Bunny CDN) and stored in a private folder accessible only to your account
  • The image URL is then passed to our AI processing pipeline (Kie.ai) through our secure backend servers -- your images are never sent directly from your device to the AI provider
  • The AI system generates a new design image based on your inputs. The AI does not store or retain your original photos after processing is complete
  • Generated result images are stored on our CDN and linked to your account for viewing, sharing, and re-editing
  • We do not use your personal photos or generated results to train, fine-tune, or improve AI models. Your images are used solely to fulfill your design requests

4. Data Storage and Security

Your data is stored securely using industry-standard encryption protocols and security measures:

  • All data in transit is encrypted using TLS 1.3
  • Photos are stored on Bunny CDN with access controls restricting visibility to your account only
  • Authentication tokens are stored in your device's secure keychain (iOS Keychain / Android Keystore) and never in unencrypted storage
  • Database records are protected by row-level security policies ensuring users can only access their own data
  • API keys and server secrets are stored in encrypted vaults (Supabase Vault) and never exposed to client applications
  • Our backend infrastructure is hosted on Supabase with enterprise-grade security, automated backups, and DDoS protection

5. Third-Party Services

We use the following third-party services to operate RoomAI. Each service processes data according to their own privacy policies:

  • Supabase — Provides authentication, database hosting, real-time subscriptions, and serverless edge functions. Receives your account data, design records, and credit transactions.
  • Bunny CDN — Provides global content delivery and image storage. Stores your uploaded room photos, furniture photos, and AI-generated design results.
  • RevenueCat — Manages subscription and in-app purchase processing. Receives your anonymous user ID, purchase receipts, and subscription status. Does not receive your name or email.
  • Kie.ai — Provides AI image generation processing. Receives only the image URLs submitted for each design request. Does not receive your account information or personal data.
  • Sentry — Provides error and crash reporting for app stability. Receives anonymized error logs, stack traces, and device information. Does not receive your photos or personal data.
  • PostHog — Provides anonymous product analytics and feature flags. Receives anonymized usage events and device information. Does not receive your photos, name, or email.

6. Data Sharing

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We share data only in the following limited circumstances:

  • With the third-party service providers listed above, solely to operate and improve the Service
  • When required by law, regulation, legal process, or enforceable governmental request
  • To protect the rights, property, or safety of RoomAI, our users, or the public
  • In connection with a merger, acquisition, or sale of assets, with notice to affected users

7. Data Retention

We retain your data for as long as your account is active and as needed to provide the Service. Specific retention periods are as follows:

  • Account information: retained while your account is active, deleted within 30 days of account deletion
  • Uploaded photos and AI-generated designs: retained while your account is active, permanently deleted from our CDN within 30 days of account deletion
  • Credit transaction history: anonymized upon account deletion, retained in anonymized form for financial record-keeping
  • Aggregated analytics data: retained indefinitely in anonymized, non-identifiable form for service improvement
  • Free-tier designs with no activity for over 90 days may be automatically deleted to manage storage

8. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access — Request a copy of all personal data we hold about you
  • Deletion — Delete your account and all associated data at any time from Settings > Account > Delete Account
  • Portability — Export your data in a machine-readable format by contacting us
  • Opt-out of Analytics — Opt out of anonymous analytics tracking through app settings or by contacting us
  • Rectification — Request correction of inaccurate personal data
  • Restriction — Request that we limit processing of your data in certain circumstances
  • Manage Subscriptions — Manage or cancel your subscription at any time through your device's App Store or Play Store settings

To exercise any of these rights, contact us at [email protected]. We will respond to your request within 30 days.

9. Children's Privacy

RoomAI is not intended for children under 13 years of age (or under 16 in the European Economic Area). We do not knowingly collect personal data from children under these ages. If we become aware that a child has provided us with personal information, we will promptly delete that information. If you believe a child has provided us with personal data, please contact us at [email protected].

10. International Data Transfers

Your data may be processed in countries other than your country of residence, including the United States and the European Union, where our service providers operate. We ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Where required, we rely on Standard Contractual Clauses or equivalent mechanisms approved by relevant authorities.

11. Cookies and Tracking

The RoomAI mobile app does not use cookies. Our website (roomai.cuneytemir.com) may use the following:

  • Essential cookies: Required for basic website functionality such as language preferences
  • Analytics: We use anonymous, privacy-focused analytics to understand how visitors use our website. No personally identifiable information is collected
  • We do not engage in cross-app or cross-site tracking. We do not use third-party advertising cookies or retargeting pixels

12. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or applicable laws. We will notify you of significant changes through the app or by email. The "Last updated" date at the top of this page indicates when the policy was last revised. Continued use of the Service after changes become effective constitutes acceptance of the revised policy.

13. Contact Us

If you have questions, concerns, or requests regarding this privacy policy or your personal data, please contact us:

We typically respond to inquiries within 24 hours on business days.