AIAI or Not

Privacy

Last updated: May 11, 2026

The short version

Photos are private by default.When you scan something, the photo is uploaded to a private storage bucket only you can read. It does NOT appear anywhere public unless you explicitly tap “Share to /top” after the scan. If you never opt in, no one else ever sees it.

What we collect

  • Photos you take in the app, stored in private cloud storage. Only your authenticated session can read them.
  • GPS coordinates at the moment you tap the shutter (if you grant location permission). Used to drop the pin on your personal map.
  • An anonymous user ID so your scans persist across sessions on the same browser. No email, phone, or name.
  • Votes you cast and scans you opt to share publicly on the global /top feed.
  • Basic logs (IP, user agent, request timestamps) from our hosting provider for security and debugging. Not sold or shared.

Face blur

Every photo runs through on-device face detection in your browser BEFORE upload. Any detected faces are pixelated so the original face never reaches our server. This is not perfect — faces facing away, partially covered, or very small may not be detected. If a face slipped through, you can delete the scan.

Photos that don't make the cut

If the AI classifier returns “Not an AI ad” (a selfie, food, random object, an ad for something not AI-related), the photo is deleted immediately from storage and no scan record is saved. Zero persistence.

What we do NOT do

  • We don’t track you across other websites.
  • We don’t sell your data.
  • We don’t collect anything from your camera roll — only the frame you actively capture.
  • We don’t make your photos public unless you tap the opt-in toggle.
  • We don’t process biometric data — faces are blurred, never identified.

Third parties

The app relies on a small number of standard third-party infrastructure providers to operate. The operator chooses these providers and may change them over time without notice.
  • An AI classification provider— each photo is sent via a short-lived signed URL (expires within 2 minutes) to a third-party AI model for AI-ad classification. That provider’s data policy governs the fetch.
  • A cloud database and storage provider— hosts your scan records and the private photo bucket.
  • A cloud hosting provider— serves the app and runs server-side functions.
  • A mapping provider— serves map tiles. Your coordinates are used client-side to render the map.
  • An open-source face-detection model— runs entirely in your browser before upload. No photo data is sent to its publisher.

Regions

AI or Not is accessible globally. The operator does not actively market to or target users in any specific jurisdiction. See the Terms for the data protection commitments we apply regardless of where you are.

International data transfers

The app’s infrastructure providers are hosted in the United States. If you use AI or Not from outside the US, your scans and request metadata are processed and stored on US-based servers. By using the app you acknowledge this transfer. The operator does not transfer your data to any third parties beyond the infrastructure providers described above.

Deletion

To delete your scans, contact the operator. We’ll wipe all rows tied to your anonymous user ID and the underlying photos from storage. Self-serve delete is on the roadmap.

Contact

Questions, takedown requests, or concerns: open an issue or reach out to the project operator.