BoutiqueUltrasound
Sign in

Legal

Privacy Policy

Effective April 28, 2026

Boutique Ultrasound ("we", "us") respects your privacy. This policy explains what we collect, how we use it, who we share it with, and your rights. We are a small team — these practices are not aspirational; they describe what we actually do.

1. What we collect

When you use Boutique Ultrasound, we collect:

  • Account info: your email address (from Google OAuth or magic-link signup), and your full name if Google provides it.
  • Your uploaded ultrasound scan (the photo or file you upload).
  • Generated outputs: the keepsakes our AI renders for you (stored so you can revisit them in your account).
  • Optional personalization context: heritage or lighting preferences you choose to share to influence AI output. All optional.
  • Purchase records: Stripe payment intent IDs, amount paid, credits granted (we do not store full payment-card numbers — Stripe does).
  • Technical data: IP address (for fraud prevention and diagnostic logging), browser user-agent, the pages you visit on our site, basic analytics events.

2. How we use your data

  • To deliver your keepsake (this is the core service).
  • To process payment, grant credits, and prevent abuse.
  • To send transactional email (purchase confirmation, generation ready, account verification).
  • To improve the service (anonymized aggregate metrics; we do not use your scan or your generated outputs to train any AI model).
  • To respond to your support requests.

3. Who we share with (data processors)

We use a small set of carefully chosen vendors to operate the service. We share only the data necessary for each vendor's role, and each vendor is contractually prohibited from using your data for their own purposes.

  • Supabase: hosts our database (account info, purchase records, delivery metadata) and our object storage (your uploaded scans + generated outputs). U.S. servers.
  • Vercel: hosts our web application and edge functions. U.S. servers.
  • Stripe: processes payments. We send Stripe your email and the amount; Stripe sends us back a payment confirmation.
  • Google (Gemini API): performs AI image generation. We send Gemini your rectified scan and our prompts; Gemini returns a generated image. Google's API terms prohibit training Gemini on inputs we send to its API. We do not opt into any data-sharing programs that would expose your scan to model training.
  • Replicate (Real-ESRGAN model): performs HD upscaling on the rectified scan.
  • Resend: sends transactional emails. We share your email + the email subject and body.
  • Cloudflare: DNS and edge protection.

We do not sell your data. We do not share your data for advertising or marketing purposes.

4. AI training — explicit position

Your uploaded scans are never used to train AI models — ours, our providers', or any third party's. We picked Gemini specifically because Google's API terms prohibit using API-uploaded content to train its models, and we do not enable any opt-in feature that would change this.

Generated outputs may be used in aggregate, anonymized form to monitor service quality (e.g. measuring how often a generation fails), but are not used to train any model.

5. Your archive — your control

Your scans and generated outputs live in your account. By default we keep them so you can revisit them later (helpful for second pregnancies, milestone comparisons, or just looking back). You always have full control:

  • Delete any single keepsake at any time.
  • Delete an entire pregnancy or baby record.
  • Delete your whole account in one click.
  • Enable auto-deletion (30 days, 1 year, custom) so we delete your archive on a schedule.

Settings live in your studio dashboard. When you delete content, it is removed from our database and storage immediately. Stripe purchase records and generic ledger entries are retained for accounting and tax purposes for 7 years per Canadian tax law, but they are not linkable to your deleted scans or outputs.

6. Cookies

We use a minimal set of cookies necessary to operate the service:

  • Authentication cookies (Supabase) — keep you signed in across page loads.
  • Session cookies — anonymous identifiers used to associate your upload with your in-progress generation.

We do not use third-party advertising cookies or behavioral tracking pixels.

7. Your rights

Regardless of where you live, we honor the following rights:

  • Access: request a copy of the data we hold about you.
  • Correction: ask us to fix inaccurate data.
  • Deletion: ask us to delete your data (most of which you can do yourself in Account Settings).
  • Portability: request an export of your generated outputs in standard formats.
  • Withdraw consent: at any time, by deleting your account.

If you are in the EU, UK, California, or another jurisdiction with stricter data-protection rules (GDPR, CCPA, etc.), the full list of statutory rights applies. Email privacy@boutiqueultrasound.com with any rights request and we will respond within 30 days.

8. Children's privacy

Our service is intended for adults (typically pregnant parents). We do not knowingly collect personal data from children under 13. If you believe a child has created an account, email privacy@boutiqueultrasound.com and we will delete the account.

9. Security

Your scans live in private storage buckets accessible only to our service-role key, which is never exposed to the browser. Generated outputs sit at unguessable UUID URLs that are not indexed by search engines. Database access is gated by row- level security so you can only see your own data.

No system is perfectly secure. If we ever experience a data breach affecting your information, we will notify you within 72 hours of confirmation, in line with GDPR notification standards.

10. International transfers

Our infrastructure (Supabase, Vercel, Stripe, Resend) is hosted primarily in the United States. If you are accessing the service from outside the U.S., your data will be transferred to and stored on U.S. servers. We use standard contractual clauses with each vendor to provide appropriate safeguards for cross-border transfers.

11. Changes to this policy

We may update this policy. Material changes will be emailed to registered users. The effective date at the top reflects the most recent update.

12. Contact

For privacy questions or rights requests, email privacy@boutiqueultrasound.com. For everything else, hello@boutiqueultrasound.com.