Enchantably
Your Family's Privacy Matters

Keeping Your Little Ones Safe

As parents ourselves, we understand your concerns about sharing photos of your children online. Here's exactly how we protect your family's privacy.

Our Promise to You

  • Photos of children are deleted immediately after AI analysis
  • Your data is never used to train AI models
  • Only you can access your storybooks
  • We never see or store your payment information

Photos & Full Names Are Completely Optional

You don't need to share any photos of your children or their real names to create a beautiful, personalized storybook. Our AI works just as well with:

✏️ Instead of Photos

  • • Type a description: “Brown curly hair, blue eyes”
  • • Describe their favorite outfit or features
  • • Let the AI imagine a character for you

💫 Instead of Real Names

  • • Use nicknames: “Buddy”, “Princess”, “Little Bear”
  • • Use first names only (no last names needed)
  • • Use completely made-up names

The choice is yours. Create stories with as much or as little personal information as you're comfortable sharing.

How We Protect Your Data

Built on Google Cloud Platform with enterprise-grade security measures

Immediate Photo Deletion

When you upload a photo to describe your child's appearance, our AI analyzes it to create a text description. The photo is then permanently deleted from our servers—usually within seconds.

Photos are never retained

No AI Training

We use Google's Vertex AI, which explicitly does not use customer data to train models. Your family's images and stories remain completely private and are never used to improve AI systems.

Zero data retention policy

Your Data, Only Yours

Each family's storybooks and data are completely isolated. Our security rules ensure that only you can access, view, or modify your stories through the app interface.

Complete data isolation

Encrypted at Rest & Transit

All data is encrypted using AES-256 when stored and TLS 1.3 when transmitted. Your storybooks are as secure as data at major banks and healthcare providers.

Bank-level encryption

Secure Payments via Stripe

We never see your credit card number. All payments are processed by Stripe, a PCI-DSS Level 1 certified payment processor trusted by millions of businesses worldwide.

We never touch payment data

Google Cloud Platform

Your data is hosted on Google Cloud, which undergoes regular third-party security audits and holds SOC 1/2/3, ISO 27001, and other certifications.

Enterprise infrastructure

What Happens When You Upload a Photo

A step-by-step look at our privacy-first photo processing

1
📸

You Upload

You select a photo of your child to help our AI understand their appearance

2

AI Analyzes

Our AI creates a text description: hair color, eye color, and other features

3
🗑️

Photo Deleted

The photo is permanently deleted from our servers within seconds

4
📝

Only Text Remains

Only the text description is saved to create your illustrations

Why We Do This

As parents, we built Enchantably with the same care we'd want for our own children's data. The AI only needs a moment to understand your child's appearance—it doesn't need to keep the photo. So we delete it immediately. It's that simple.

Important Clarifications

Full transparency about how we handle your data

Personalized Marketing Communications

We may use your story content to send you personalized marketing communications—for example, a reminder before the holidays showing a preview of your own book as a gift idea. These communications are only sent to you and feature only your own content. We will never share your stories, images, or characters with other users or use them in public marketing materials without your explicit written permission.

Support & Troubleshooting Access

While your data is isolated from other users, our support team may access your story data when you contact us for help or troubleshooting. This allows us to diagnose issues, help recover lost work, or assist with technical problems. We only access your data when necessary to provide support, and all team members are bound by strict confidentiality agreements.

Technical Details

For the technically curious parents

AI Infrastructure
We use Google's Vertex AI with Gemini models. Per Google's terms of service for Vertex AI, customer data is not used to train or improve Google's models. Your data remains your data.
Data Storage
Firebase Firestore and Cloud Storage with strict security rules. Each user's data is isolated using Firebase Authentication UIDs. Our rules explicitly prevent any user from accessing another user's data through the app.
Photo Processing
Child photos are uploaded temporarily to Firebase Storage, immediately analyzed by the AI, and deleted programmatically. A scheduled cleanup runs daily to catch any orphaned files older than 24 hours. Dedication photos are also deleted after being incorporated into your final PDF.
Payment Processing
Stripe handles all payment processing. We use Stripe Checkout, meaning payment details never touch our servers. We only receive confirmation of successful payments.
PDF Access
Generated PDFs use signed URLs that expire after 72 hours. Access requires authentication, and URLs are tied to the purchasing user's account.
Ready to create magic?

Create Your Child's Story with Confidence

Your family's privacy is protected every step of the way. Turn your child's favorite toy into the hero of their very own storybook.

Start CreatingRead Safety FAQ