Privacy Policy for PixPass Wallet

Last Updated: 7-1-2025

1. Introduction

Welcome to PixPass Wallet. We are committed to protecting your privacy. This Privacy Policy explains our principles and practices regarding data, particularly what we do - and more importantly, what we **do not** - do with your information when you use our service.

Our core privacy principle is **Zero-Persistence**. We designed the Service from the ground up to avoid storing any of your sensitive information on our servers.

2. Information We Do Not Collect or Store

We want to be explicitly clear about the data we never collect or save to our server's disk:

• Your Secrets: The content of the key-value data you enter for embedding is never written to our file system.
• Your Password: The password you provide for encryption is used only in memory to derive an encryption key and is immediately discarded. We never see it, log it, or store it.
• Your Images: The images you upload for data extraction and the final images generated by the Service are processed in-memory and are never stored on our servers.
• Personal Information: We do not require user accounts. We do not collect or store any personally identifiable information (PII) such as your name, email address, physical address, or IP address.

3. Information We Process Temporarily

To provide the Service, we must handle your data temporarily in our server's active memory (RAM). This processing is strictly limited to the duration of your web request:

• When you **embed** data, your secrets, password, and carrier image (if uploaded) exist in memory only long enough to perform the encryption and embedding operation.
• When you **extract** data, the uploaded image and your password exist in memory only long enough to perform the extraction and decryption operation.

Once the operation is complete and the result is sent to your browser, this information is purged from memory as part of the standard request-response cycle.

4. Data Security

We take the security of our application seriously:

• In-Transit Encryption: All communication between your browser and our Service is encrypted using industry-standard HTTPS (TLS).
• In-Memory Processing: As described above, our stateless, zero-persistence architecture is a key security feature designed to protect your privacy.
• Strong Cryptography: We use AES-256-GCM, a modern, authenticated encryption algorithm, to protect your data within the image file.

5. Children's Privacy

The Service is not intended for use by children under the age of 13. We do not knowingly collect any information from children.

6. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes.

← Back to PixPass Wallet