Privacy Policy
Last Updated: February 5, 2026
How Jobim Protects Your Images and Data:
- Jobim is an AI-powered photo enhancement and generation app. We enhance your existing photos and create new AI-generated portraits.
- Jobim's AI technologies are not used to identify or authenticate people in your images.
- You retain full control and ownership of all images you upload, enhance, and generate using Jobim. We don't sell, trade, or claim ownership of any of your images.
- We do not use your images to train public AI models. Third-party processing providers operate under their own terms and privacy policies.
- Your images are safeguarded with industry-standard security measures, including encryption and secure cloud storage.
1. Overview
Reno Labs, LLC ("Jobim," "we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy describes how we collect, use, store, and protect your information when you use our iOS mobile application and related services (collectively, the "Service").
Company Information:
- Legal Entity: Reno Labs, LLC (Delaware)
- Address: 131 Continental Dr Suite 305, Newark, DE 19713, US
- Contact: support@renolabshq.com
By using Jobim, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, do not download, install, or use the Service.
2. What Data We Collect and Why
We collect different types of information for various purposes to provide and improve our Service to you.
a) Service Delivery
Purpose: To deliver the core functionality of photo enhancement and AI portrait generation.
Data Collected:
- User Identifiers: Sign in with Apple identifier (if you use Apple sign-in), Google account identifier (if you use Google sign-in), and a unique user ID generated by our system
- Device Information: Device model/type, iOS version, device language, and region
- Push Notifications (Optional): If you enable push notifications, we process an APNs token to deliver notifications and maintain device registration.
- Subscription Information: Active subscription status, subscription type (weekly/monthly), credit balance, transaction history
- App Preferences: Onboarding completion status (stored to maintain progress across devices), theme preferences, and feature interactions.
- App Interaction Data: Features used, session duration, button clicks, navigation patterns
- Photos and Images:
- Reference Photos (Selfies): Photos you upload to create AI-generated portraits or to use as a base for AI Remixes. We require access to your photo library and camera through iOS permissions that you must explicitly grant.
- Enhanced Photos: Photos you process using our enhancement features (Color Fixer, Photo Enhancer, Background Remover, Old Photos Restorer)
- Text Prompts: Text descriptions you provide to our AI Composer to generate images from scratch.
- AI-Generated Images: Images created or modified by our AI models based on your reference photos, text prompts, or remixes.
- Face Data (Biometric Information): Information about faces in your uploaded images, including estimated location and shape of facial features. For certain features, we may also infer gender information locally to improve portrait generation accuracy (e.g., hair style generation).
Biometric Data Notice: Depending on your jurisdiction's laws (including the Illinois Biometric Information Privacy Act for Illinois residents), face data may be considered biometric data or biometric identifiers. By uploading images to Jobim, you provide informed consent for us to collect, use, store, and share face-related information solely for the following purposes:
- Enhancing your photos through AI-powered portrait generation
- Creating AI portraits and remixes you specifically request
Retention: Face data associated with your reference photos is retained for as long as you maintain those reference photos or Personas in your account (to enable future AI generation without re-uploading). Face data is permanently deleted within 30 days when you delete your Persona, reference photos, or account, or upon your deletion request.
No Sale or Profit: We do not sell, lease, or trade your face data or biometric information to third parties. We do not use face data to identify or authenticate you or others. Third-party AI processors (Replicate) may receive face data solely to fulfill your generation requests and are contractually prohibited from using it for other purposes.
Security: We use industry-standard security measures, including encryption in transit and at rest, to protect your face data from unauthorized access.
- Image and Processing Metadata: Technical information needed to process your request (for example, image size/format and feature selections). We do not use this information to identify or authenticate you.
b) Customer Support
Purpose: To respond to your inquiries and provide technical assistance.
Data Collected:
- Name and email address (if provided)
- Content of your communications with us
- In-app Reports: Data you provide when reporting inappropriate AI content (including the image being reported and the reason for the report).
- Screenshots or images you share for troubleshooting purposes
c) Service Improvement
Purpose: To improve app stability, performance, and user experience.
Data Collected:
- User identifiers and mobile identifiers
- Device information (device model, OS version, etc.)
- Subscription information
- Network activity information (IP address, connectivity, latency, error logs)
- App interaction data
- In-app survey responses and feedback (if you choose to participate)
- Technical processing metadata (for example, image dimensions/format and feature selections)
- We may use de-identified or aggregated data to understand performance and improve the Service. If we need to use images beyond providing the Service, we will do so only with appropriate safeguards and, where required, your consent.
d) Troubleshooting & Crash Reports
Purpose: To identify and fix technical issues, crashes, and bugs.
Data Collected:
- User and device identifiers
- Device information
- Crash logs and error reports
- Network connectivity information
e) Analytics & Personalization
Purpose: To understand how users interact with the app and customize the user experience.
Data Collected:
- User identifiers
- App interaction data
- A/B test participation and results
- Feature usage patterns
- Inferences about user preferences and behavior
3. How Long We Keep Your Data
We retain different types of data for different periods based on the purpose of collection:
Generated and Enhanced Photos
- Storage: All AI-generated portraits and enhanced photos are stored in your in-app Gallery indefinitely until you manually delete them.
- Your Control: You can delete any photo from your Gallery at any time through the app interface.
- Backups: Deletion may take time to fully propagate across active systems and backups.
Reference Photos (Selfies)
- Storage: Reference photos you upload are retained to enable future AI generation requests with the same person/face.
- Purpose: This allows you to create new AI portraits without re-uploading your selfies each time.
- Discovery Matching: During the "Persona Mapping" process, we perform scanning and matching of your local photo library. This process happens entirely on-device. We do not upload your entire library or biometric hashes to our servers. Only the reference photos you explicitly approve are uploaded for AI generation.
- Your Control: You can request deletion of your reference photos by contacting support, and you can also request account deletion through the app where available.
Face-Related Processing
- Processing: We may process face-related information in your images to provide AI portrait generation and enhancement (for example, to detect faces and improve results).
- No Identification: We do not use facial recognition to identify or authenticate you or others.
- Retention: Any retention of images used for face-related processing follows the retention rules for your reference photos and gallery images described above.
Images for Feature Improvement
- Storage: With appropriate anonymization or your explicit consent, we may retain images to improve AI features and identify bugs.
- Anonymization: Images retained for this purpose are processed to remove personally identifiable information where possible.
Subscription and Account Data
- Storage: Retained as long as your account is active.
- Deletion: Deleted when you request account deletion or after a reasonable period of account inactivity.
Credit and Transaction History
- Purchase Records: Credit package purchases and subscription history are retained while your account is active and for up to 7 years after account deletion to comply with tax and financial recordkeeping laws
- Credit Balance: Your current credit balance (from purchased packages, subscriptions, or ad-earned credits) is maintained in real-time while your account is active
- Credit Usage History: Records of credit consumption (which features used credits and when) are retained for up to 2 years for customer support and dispute resolution purposes
- Ad-Earned Credits: Ad-earned credits expire 14 days after being earned. Once expired, the credits are removed from your balance but the transaction record may be retained for analytics and audit purposes
Support Communications
- Storage: Retained for up to 2 years to maintain support history and quality.
4. Third-Party Services
We use trusted third-party service providers to deliver our Service:
AI Processing Providers
- Replicate: Powers AI portrait generation and image enhancement features. Privacy Policy: https://replicate.com/privacy | Terms: https://replicate.com/terms
- Data Shared: Your uploaded images (and related processing data) may be sent to Replicate solely to process your request and return results. Replicate processes data according to its own privacy policy and our contractual arrangements.
Authentication Providers
- Sign in with Apple: If you choose Apple sign-in, we receive a unique identifier and (if you choose to share it) your email address and name.
- Google Sign-In: If you choose Google sign-in, we receive an account identifier and profile information (such as email and name) according to your Google settings and permissions.
Cloud Infrastructure
- We use secure cloud infrastructure to store and deliver your Gallery images and reference photos (for example, object storage such as Cloudflare R2).
- All data in transit is encrypted using industry-standard protocols.
Payment Processing
- Apple App Store: All subscription and credit purchases are processed through Apple's In-App Purchase system. We do not collect or store your payment information.
- Apple's privacy policy applies to payment data: https://www.apple.com/legal/privacy/
Advertising (Ad-Supported Credits)
If you choose to watch ads to earn credits, we work with advertising partners (such as Google AdMob) who may collect certain data in order to serve and measure ads. Note: Ad-supported features and related data collection apply only to users in the United States.
Data Collected by Google AdMob:
- Device Identifiers: Advertising ID (IDFA โ if you allow tracking), device model, operating system version
- Ad Interaction Data: Ad views, clicks, video completions, time spent viewing ads
- Technical Data: IP address, user agent, app version, network connection type
- Approximate Location: Inferred from IP address (not precise GPS location)
App Tracking Transparency (ATT): When you first use ad-supported features, iOS will prompt you to allow or deny tracking. Your choice affects ad personalization:
- Allow Tracking: Google AdMob may use your Advertising ID (IDFA) to deliver personalized ads based on your activity across apps and websites
- Deny Tracking: We request non-personalized ads from Google AdMob. Ads will still be shown, but they will not be based on your cross-app activity. AdMob will use limited data (e.g., context of the app, approximate location) to serve ads.
You can control tracking at any time in iOS Settings (Settings > Privacy & Security > Tracking).
Google AdMob Privacy Policy: https://policies.google.com/privacy
Ad-Earned Credits Expiration: Credits earned by watching ads are promotional and expire 14 days after they are earned.
Data Sharing Limitations
We do not sell your personal data or images to third parties. Data is shared with third-party providers only as necessary to deliver the Service and only under appropriate data processing agreements.
5. AI-Specific Disclosures
Generative AI Features
Jobim uses generative artificial intelligence models to create portrait images based on your uploaded selfies. Here's what you should know:
- How It Works (AI Portrait & Remix): You upload reference photos (selfies), and our AI models generate new portrait images or modify existing ones in various styles.
- How It Works (AI Composer): You provide a text prompt, and our AI models generate a completely new image based on your description.
- Input and Output: Your uploaded selfies and text prompts are the "Input," and the generated images are the "Output." You retain ownership of both.
- Face Data Processing: We use AI models to analyze facial features for portrait generation. This data is used exclusively to generate the requested output and is not used to identify or authenticate individuals across sessions. Face models created for your "Personas" are stored securely and deleted if you delete the Persona or your account.
- Training: We do not use your images or prompts to train public AI models.
5.1 User Responsibility and Third-Party Personas
Jobim allows you to create AI Personas for individuals other than yourself. You are solely responsible for ensuring you have the legal right and authorization to upload and process images of any third party. Jobim does not verify authorization and disclaims all liability for unauthorized likeness processing. Please see our Terms of Service for more details.
AI Model Limitations
- AI-generated images may not always be perfect and can sometimes produce unexpected results.
- We implement safety filters to prevent generation of inappropriate content, but no system is 100% perfect.
- You are responsible for how you use AI-generated images (see our Terms of Service for prohibited uses).
6. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal data under various privacy laws, including:
- General Data Protection Regulation (GDPR) โ for users in the European Economic Area (EEA), UK, and Switzerland
- California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA) โ for California residents
- Other applicable state and international privacy laws
General Privacy Rights (Available to All Users)
Access and Portability
- Request a copy of your personal data we have collected
- Download your Gallery images directly from the app
- Request a machine-readable export of your data (available upon request)
Deletion ("Right to Be Forgotten")
- Delete individual photos from your Gallery at any time through the app
- Request deletion of your reference photos and face data
- Request complete account deletion through the in-app Account Settings or by contacting support
Correction
- Update your profile information through the app settings
- Contact support to correct any inaccurate personal data
Opt-Out Rights
- Marketing Communications: Opt out of promotional emails (if any) via unsubscribe links
- Ad Tracking: Control through iOS Settings > Privacy & Security > Tracking
- Data for AI Training: Contact us to ensure your images are not used for model training
Additional Rights for GDPR Users (EEA, UK, Switzerland)
If you are located in the European Economic Area, United Kingdom, or Switzerland, you have additional rights under the GDPR:
- Right to Object: Object to processing of your personal data for certain purposes
- Right to Restriction: Request restriction of processing in certain circumstances
- Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format
- Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent (this does not affect the lawfulness of processing before withdrawal)
- Right to Lodge a Complaint: File a complaint with your local data protection authority if you believe your rights have been violated
Additional Rights for California Residents (CCPA/CPRA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to Know: Request disclosure of the categories and specific pieces of personal information we collect, use, disclose, and sell
- Right to Delete: Request deletion of your personal information (subject to certain exceptions)
- Right to Opt-Out of Sale/Sharing: We do not "sell" personal information as traditionally defined. However, ad-supported features may involve "sharing" for targeted advertising as defined under CPRA. You can opt out by denying App Tracking Transparency (ATT) when prompted or through iOS Settings > Privacy & Security > Tracking.
- Right to Correct: Request correction of inaccurate personal information
- Right to Limit Use of Sensitive Personal Information: While we collect face data (which may be considered sensitive under CPRA), it is used exclusively for app functionality (AI portrait generation). You can limit this by not uploading photos.
- Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights
"Do Not Sell or Share My Personal Information": We do not sell your personal information. If you wish to opt out of potential "sharing" for advertising purposes as defined under CPRA, disable tracking through iOS Settings > Privacy & Security > Tracking, or do not use ad-supported credit features.
How to Exercise Your Rights
To exercise any of these rights, please contact us at support@renolabshq.com with the subject line "Privacy Rights Request" and specify:
- Your name and email address associated with your account
- The specific right you wish to exercise
- Your location (to determine applicable law)
We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.
Authorized Agents (California): California residents may designate an authorized agent to make requests on their behalf. Authorized agents must provide proof of authorization.
7. Security Measures
We implement industry-standard security measures to protect your data:
- Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS/SSL protocols
- Secure Storage: Your images and data are stored on secure cloud infrastructure with encryption at rest
- Access Controls: Limited employee access to personal data on a need-to-know basis
- Regular Security Audits: We regularly review and update our security practices
Important: While we strive to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.
7A. Data Breach Notification
In the event of a data breach that compromises your personal information, we will:
Notification Timeline
- GDPR Users (EEA, UK, Switzerland): Notify the relevant supervisory authority within 72 hours of becoming aware of the breach (where feasible), and notify affected users without undue delay if the breach poses a high risk to your rights and freedoms
- California Residents: Notify affected California residents without unreasonable delay and in the most expedient time possible, consistent with California Civil Code ยง 1798.82
- Other Users: Notify affected users in accordance with applicable state, federal, and international data breach notification laws
Notification Method
Breach notifications will be delivered via:
- Email (to the email address associated with your account)
- In-app notification (if you are an active user)
- Prominent notice on our website and app (for large-scale breaches)
Notification Content
Breach notifications will include:
- Description of the breach and the types of personal information involved
- Estimated date or date range of the breach
- Steps we are taking to investigate and mitigate the breach
- Recommended actions you can take to protect yourself
- Contact information for questions and assistance
We maintain an incident response plan and conduct regular security assessments to minimize the risk of data breaches.
8. Children's Privacy
Age Requirement: Our Service is not available to individuals under the age of 16. We do not knowingly collect personal information from children under 16.
Parental Consent: If you are between 16 and the legal age of majority in your jurisdiction, your parent or guardian must review and agree to this Privacy Policy on your behalf and supervise your use of the Service.
If You Are a Parent: If you believe your child under 16 has provided us with personal information, please contact us immediately at support@renolabshq.com and we will delete that information.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country.
We ensure that such transfers comply with applicable data protection laws and that your data receives an adequate level of protection wherever it is processed.
Legal Requests and Safety
We may access, preserve, and disclose information about you or your use of the Service if we reasonably believe doing so is required or appropriate to:
- Comply with applicable law, legal process, or lawful requests from public authorities
- Enforce these terms and policies, or investigate potential violations
- Detect, prevent, or address fraud, security, or technical issues
- Protect the rights, property, and safety of our users, the public, or Jobim
If you have questions about law enforcement requests, you can contact us at support@renolabshq.com.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.
We will notify you of any material changes by:
- Updating the "Last Updated" date at the top of this Privacy Policy
- Posting a notification in the app
- Sending you an email notification (if you have provided your email address)
Your continued use of the Service after changes become effective constitutes your acceptance of the updated Privacy Policy.
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:
Email: support@renolabshq.com
Mail:
Reno Labs, LLC
131 Continental Dr Suite 305
Newark, DE 19713
United States
Your Privacy Matters
We are committed to protecting your privacy and being transparent about how we handle your data. If you have any questions or concerns, please don't hesitate to reach out.