Privacy Policy
Last updated: July 8, 2026
Overview
imagegrain is built to process your photos entirely inside your own browser. We do not upload your images to any server, we do not store them, and we never see them. We also do not use cookies, analytics, or tracking scripts of any kind. This policy explains the limited data that is unavoidably processed when you visit this website, and your rights regarding that data under the EU General Data Protection Regulation (GDPR).
Data Controller
Maximilian Braun
Burgstallgasse 10
93309 Kelheim
Germany
Email: maximilian.braun@posteo.de
Your Photos Are Never Uploaded
When you choose a photo in the editor, it is loaded and processed entirely on your device using your browser's built-in canvas technology. The image is never transmitted to our servers or any third party, and we never gain access to it. Grain and film-look effects are applied locally, and when you download the result, the file is generated and saved directly by your browser. Exported files also have EXIF metadata (such as location and camera information) stripped automatically.
Server Log Data
Like virtually all websites, when you visit imagegrain.com our hosting infrastructure automatically records a small set of technical information transmitted by your browser, typically including: your IP address, browser type and version, operating system, referring page, and the date and time of the request. This happens automatically as a function of how the internet works and is not linked to any other data we hold, because we hold none. This data is processed on the basis of our legitimate interest (Art. 6(1)(f) GDPR) in operating a secure and stable website, and is automatically deleted by our hosting infrastructure after a short period unless retention is required to investigate a security incident.
Cookies & Local Storage
This website does not set any cookies and does not use browser local storage or session storage. No consent banner is shown because none of the technologies that would require one are in use. If this ever changes - for example, if we add analytics in the future - we will update this policy and request your consent first, where required by law.
No Analytics or Tracking
We do not use Google Analytics, advertising pixels, or any other analytics or tracking service. We have no way of identifying you or building a profile of your visit.
Fonts
This site uses the Geist typeface, which is self-hosted as part of our website build. Font files are served directly from our own domain rather than loaded from Google's servers at page-load time, so no data about you is sent to Google in order to display this page.
No Accounts or Forms
There is no account creation, login, contact form, or newsletter signup on this website. We do not collect your name, email address, or any other personal data that you might otherwise submit through such features, because they do not exist here.
Your Rights
Under the GDPR, you have the right to request access to, rectification of, or erasure of your personal data, to request restriction of or object to its processing, and to data portability. Since we do not collect or store personal data beyond short-lived server logs, most of these rights will typically have nothing to act on - but you are welcome to contact us at any time using the email address above with any question or request.
You also have the right to lodge a complaint with a data protection supervisory authority. The authority responsible for us is:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27
91522 Ansbach
Germany
www.lda.bayern.de
Changes to This Policy
If we ever change how this website handles data - for example, by adding analytics or a contact form - we will update this page and revise the date at the top. We encourage you to review this policy periodically.