RapidRAW Logo RapidRAW

Privacy Policy

Effective Date: June 3, 2026

1. Introduction

This Privacy Policy describes how Latent GmbH ("we", "us", "our") collects, uses, and protects your personal information when you use the RapidRAW software ("Software"), our website ("Website"), and the optional RapidRAW Cloud subscription service ("Services").

2. Data Controller

The entity responsible for the processing of your personal data (the data controller) is:

Latent GmbH
c/o profetas gmbh
Ringstrasse 25
6010 Kriens
Switzerland
UID: CHE-422.552.416
Email: timon@cybertimon.ch

3. Information We Collect

We collect the following types of information when you use our Cloud Services:

  • Account Information: When you sign up for the RapidRAW Cloud subscription via our Website, our authentication provider (Clerk) collects your email address and provides us with a unique user ID. This account is used to link your desktop application to your subscription.
  • Payment Information: Our Merchant of Record (Lemon Squeezy) handles your payment details on their secure checkout pages. We do not see or store your full credit card number. We only receive limited transaction metadata via webhooks (e.g., subscription status) necessary to provision your API quotas.
  • User Content for Cloud Services: To provide the cloud-based AI generative features, the specific image crop, mask, and text prompt you select in the desktop editor are sent to our API and processed by our AI infrastructure provider (Modal Labs).
  • Technical and Usage Data: We collect basic technical data, such as API request counts and quota usage, to prevent abuse (rate limiting) and ensure the stability of the Service.

4. How We Use Your Information (And How We DON'T)

We use your information solely to provide, maintain, and secure the Service. Specifically:

  • To create and manage your account across the Website and the Desktop app.
  • To execute your cloud-based AI generation requests.
  • Content Moderation & Safety: To comply with our payment processors' strict policies against illegal or highly explicit (NSFW) content, your prompts and generated image outputs are processed by an automated safety filter. If a safety violation is detected, the generation is blocked and the event is logged to enforce our Terms of Service.

ZERO AI TRAINING: We respect your copyright and privacy as a photographer. Your images, masks, and prompts are NEVER used to train, fine-tune, or improve any AI models. Our AI infrastructure provider (Modal Labs) is contractually bound to process your data only to fulfill your immediate generation request.

5. Data Sharing and Third Parties

We do not sell your personal data. We only share it with trusted third-party service providers who are essential for operating the Service:

  • Authentication: Clerk, for secure user sign-up and login across web and desktop.
  • Payment Processing: Lemon Squeezy, acting as our Merchant of Record to handle subscriptions and global taxes.
  • API Gateway & Caching: Hetzner Online GmbH (Germany), for routing API requests, verifying quotas, and providing highly encrypted, transient caching to ensure low latency.
  • AI Infrastructure Provider: Modal Labs, Inc. (USA), for executing the generative AI computations securely on serverless GPU clusters.

6. Data Security and Retention

We implement stringent technical and organizational measures to protect your personal data. All data in transit is encrypted using TLS 1.3, and data at rest (such as transient API caches on our Hetzner servers) is encrypted using AES-256 block storage encryption.

We retain your account information for as long as your subscription is active. User Content (images/masks) is subject to a strict Zero-Data-Retention policy. It is only temporarily cached on our API middleware to fulfill your request and is permanently and irrevocably expunged by automated garbage collectors and our AI provider's strict Time-to-Live (TTL) policies shortly after processing.

7. Your Rights under Swiss FADP and GDPR

Depending on your location, you have rights regarding your personal data under the Swiss Federal Act on Data Protection (FADP) and the General Data Protection Regulation (GDPR). These include the Right of Access, Rectification, Erasure, and Objection to processing.

To exercise any of these rights, please contact us at timon@cybertimon.ch.

8. International Data Transfers

Some of our service providers (like Modal Labs and Clerk) are located in the United States. We ensure that any transfer of your personal data outside of Switzerland or the European Economic Area is protected by appropriate legal safeguards, such as the Swiss-U.S. Data Privacy Framework (DPF) or Standard Contractual Clauses (SCCs) embedded in our Data Processing Agreements.

9. Children's Privacy

Our Services, including the payment processing via Lemon Squeezy, are exclusively intended for users who are at least 18 years of age. We do not knowingly collect personal information from minors.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page.