Privacy Policy
Last updated: February 8, 2026
1. Who We Are
LogoAnalyzer.com ("Logo Analyzer," "we," "us," or "our") provides an AI-powered logo analysis platform that combines computer vision measurements, accessibility testing, and AI modeling informed by published neuroscience and psychology research. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website and services.
For any privacy-related questions, contact us at info@logoanalyzer.com.
2. Data We Collect
Account Data
When you create an account, we collect your email address, username, and optionally your first and last name. If you sign in via Google or GitHub, we receive your name, email, and profile identifier from those providers. Passwords are stored as one-way cryptographic hashes and cannot be read by anyone, including us.
Uploaded Content
When you use our analysis service, you upload logo image files and may provide brand information (company name, industry, target market). These files are stored in Google Cloud Storage and processed by our AI analysis pipeline.
Analysis Outputs
The results generated from analyzing your logo (scores, metrics, text insights, saliency maps, colorblind simulations) are stored in our database and associated with your account. PDF reports are generated client-side in your browser and are not stored on our servers.
Payment Data
Payments are processed by Stripe. We do not receive or store your credit card number, CVV, or full card details. We store only your Stripe customer identifier, subscription status, and transaction references for billing purposes.
Usage & Technical Data
We log AI processing usage (token counts and estimated costs per analysis) for billing verification and service monitoring. We collect IP addresses when you submit contact forms or subscribe to our newsletter. We use Cloudflare Turnstile for bot protection, which processes browser fingerprint data.
3. How We Use Your Data
- Provide the service: Process your uploaded logos, generate analysis reports, issue certificates, and deliver results. (Legal basis: contract necessity)
- Process payments: Manage subscriptions, credits, and billing through Stripe. (Legal basis: contract necessity)
- Transactional communications: Send email verification, password reset, and account-related notifications via Resend. (Legal basis: contract necessity)
- Security & fraud prevention: Monitor for abuse, enforce rate limits, and protect the platform. (Legal basis: legitimate interest)
- Newsletter: Send branding insights and product updates if you have opted in. (Legal basis: consent)
4. Uploaded Logos & Brand Assets
This section is especially important if you are uploading client logos on behalf of an agency or company.
- Ownership: You retain full ownership of all logos and brand assets you upload. We claim no rights over your content.
- Limited license: By uploading, you grant us a limited, non-exclusive license to process your files solely to provide the analysis service. We do not use your logos for any other purpose.
- No model training: We do not use your uploaded logos to train, fine-tune, or improve AI models. Your images are sent to Google Vertex AI for one-time analysis only.
- Confidentiality: We treat uploaded logos and brand assets as confidential. Access is restricted to the authenticated account that uploaded them.
- Deletion: You can request deletion of uploaded files and analysis data at any time by contacting info@logoanalyzer.com.
5. AI & Scientific Methodology
Our analysis reports combine multiple types of data. It is important to understand the distinction:
- Objective measurements: Computer vision metrics (symmetry scores, Shannon entropy, golden ratio compliance, color contrast ratios, WCAG checks) are computed directly from pixel data using deterministic algorithms.
- Research-based models: Eye-tracking predictions use DeepGaze IIE, a published saliency model. Color psychology references Palmer-Schloss preference data and Kobayashi's Color Image Scale.
- AI-modeled predictions: Neuroscience predictions (brain region mapping, neurotransmitter responses, arousal intensity) and psychological assessments (memorability, emotional impact, trust) are generated by AI models informed by published research. These are interpretive predictions, not direct measurements of brain activity or human responses.
- Not professional advice: Analysis outputs do not constitute professional design, marketing, legal, or financial advice. Scores are for informational purposes and should be validated with real audience testing.
6. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | While account is active; deleted within 30 days of deletion request |
| Uploaded logo files | While account is active; deleted upon request |
| Analysis results | While account is active; deleted upon request |
| AI usage logs | 12 months (for billing verification) |
| Payment records | As required by tax/accounting law (typically 7 years) |
| Contact messages | 24 months |
| Newsletter subscriptions | Until you unsubscribe |
| Backups | Purged within 90 days of source deletion |
7. Data Sharing & Third-Party Processors
We do not sell your data. We share data only with the following processors, strictly to operate the service:
| Processor | Purpose | Data Shared |
|---|---|---|
| Google Cloud Platform | AI analysis (Vertex AI), image storage (GCS), Vision API | Logo images, analysis prompts |
| Stripe | Payment processing | Email, payment method (handled by Stripe) |
| Resend | Transactional emails | Email address |
| Cloudflare | Bot protection (Turnstile) | Browser fingerprint data |
| Google / GitHub | Social login (if you choose OAuth) | OAuth tokens, profile identifier |
International transfers: Data is processed in the United States (Google Cloud us-central1 region). For EU/UK users, transfers are covered by Standard Contractual Clauses (SCCs) as implemented by Google and Stripe.
8. Data Security
- All data transmitted over HTTPS/TLS encryption
- Data encrypted at rest in Google Cloud Storage and database
- Passwords hashed with bcrypt (one-way, irreversible)
- JWT-based stateless authentication with short-lived access tokens
- Access controls enforced at API level; users can only access their own data
- In the event of a data breach, affected users will be notified within 72 hours in accordance with GDPR requirements
9. Your Rights
Under the GDPR and similar data protection laws, you have the following rights:
- 1Access: Request a copy of the personal data we hold about you.
- 2Rectification: Correct inaccurate or incomplete personal data.
- 3Erasure: Request deletion of your personal data ("right to be forgotten").
- 4Portability: Receive your data in a structured, machine-readable format.
- 5Objection: Object to processing based on legitimate interest.
- 6Withdraw consent: Withdraw consent for newsletter or non-essential cookies at any time.
To exercise any of these rights, email info@logoanalyzer.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection supervisory authority.
10. Cookies
We use a small number of cookies and local storage items for authentication and remembering your preferences. For full details, see our Cookie Policy.
11. Children
Our service is not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered users or through a notice on our website. The "Last updated" date at the top of this page reflects the most recent revision.
13. Contact Us
For any questions about this Privacy Policy or your personal data, contact us at:
info@logoanalyzer.comThis Privacy Policy is effective as of February 8, 2026 and applies to all users of LogoAnalyzer.com.