Privacy & Data Processing Statement
Effective Date: January 1, 2026
Overview
NiftyImages provides a cloud-based platform for creating dynamic and personalized images for email and other digital communications. The platform generates image content at the time it is requested using information supplied by the customer.
NiftyImages is designed to minimize the processing of personal data. Subscriber personalization values are processed only as necessary to generate the requested image and are not retained after processing is complete.
This statement describes the information NiftyImages collects, the information it does not retain, and our approach to data privacy and security.
Subscriber Personal Data
NiftyImages does not maintain subscriber databases or retain subscriber personal information for marketing, analytics, or profiling purposes.
When a customer chooses to personalize an image, personalization values (such as a subscriber's name, loyalty balance, location, coupon code, or other merge tag) may be transmitted to NiftyImages solely for the purpose of generating the requested image.
These values are processed only for the time necessary to render the image and are not stored, retained, or used for any secondary purpose.
Specifically:
- NiftyImages does not maintain databases of subscriber names, email addresses, phone numbers, customer IDs, or other personally identifiable information (PII)
- NiftyImages does not build subscriber profiles or behavioral records
- NiftyImages does not have access to customer subscriber lists or email campaign databases
- Personalization values are used only to generate the requested image and are not retained after processing has been completed
Information Collected
NiftyImages collects only the operational information necessary to provide, secure, and support the service. This information may include:
- Customer account information (administrator name, business email address, company name, billing information)
- User authentication credentials
- Account configuration settings
- Operational and diagnostic logs required for troubleshooting, monitoring, and security
- Aggregate platform usage metrics that do not identify individual email recipients
This information is used solely to operate, secure, maintain, and improve the NiftyImages platform.
Data Processing
NiftyImages processes only the information required to fulfill a customer's request for dynamic image generation.
When an image is requested:
- Personalization values supplied by the customer are processed transiently in memory for the purpose of rendering the requested image
- No subscriber records are created or retained after the image has been generated
- Subscriber information is not used for analytics, advertising, profiling, or any purpose unrelated to rendering the requested image
- NiftyImages does not enrich, correlate, or combine subscriber information with other datasets
NiftyImages acts solely as a technical service provider for rendering dynamic image content. Customers remain responsible for determining the purpose and legal basis for collecting and using subscriber information within their own systems.
Data Retention
Subscriber personalization values are processed only transiently during image generation and are not retained once the image has been rendered.
Operational information may be retained only as necessary for:
- Service operation
- Security monitoring
- Troubleshooting and technical support
- Billing and invoicing
- Legal, accounting, and regulatory compliance
Retention periods are based on operational and legal business requirements.
Third-Party Sharing
NiftyImages does not sell, rent, or share subscriber personal data with third parties because subscriber personalization values are not retained.
Infrastructure providers that support delivery of the NiftyImages service (such as cloud hosting providers) may process operational information solely as necessary to provide the service and are subject to appropriate contractual and security obligations.
NiftyImages does not disclose customer information except where required by law or with the customer's authorization.
Customer Responsibilities
Customers are responsible for determining which personalization values are sent to NiftyImages and for ensuring their use complies with applicable privacy and data protection laws, including but not limited to:
- General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA), as amended
- Other applicable regional or national privacy regulations
Customers remain the data controller for subscriber information used within their marketing programs.
User Rights
Because NiftyImages does not retain subscriber personal data after image generation, requests to access, correct, delete, or export subscriber information should be directed to the organization that originally collected the information.
Requests relating to customer account information maintained by NiftyImages may be submitted through NiftyImages Support.
Security
NiftyImages implements administrative, technical, and organizational safeguards designed to protect customer information and the integrity of the platform.
These safeguards include, where applicable:
- Encrypted communications using HTTPS/TLS
- Secure cloud infrastructure hosted on Microsoft Azure
- Role-based access controls for authorized personnel
- Ongoing platform monitoring and operational security practices
- Regular security updates and vulnerability remediation processes
Security measures are reviewed periodically and updated as appropriate to maintain the confidentiality, integrity, and availability of the platform.
Changes to this Statement
NiftyImages may update this Privacy & Data Processing Statement from time to time to reflect changes in our services, legal requirements, or operational practices. The current version will be made available upon request or published through official NiftyImages documentation.
Contact
Questions regarding this Privacy & Data Processing Statement may be directed to:
NiftyImages
Website: https://www.niftyimages.com
Support: https://support.niftyimages.com