Icon set logo

Privacy Policy & Terms of Service

Last updated: February 3, 2026

Privacy Policy

1. Information We Collect

We collect and process the following types of information:

Google User Data (via Firebase Authentication)

When you sign in with Google, we access and store the following information from your Google account:

  • Email address – Used for account identification and communication
  • Display name – Used for personalization in the user interface
  • Profile photo URL – Displayed in your account dashboard
  • Unique user ID – Used for internal account management

This data is obtained through Google's OAuth 2.0 authentication service and is stored in our Firebase Firestore database. We only request the minimum permissions necessary for authentication.

Usage Data

We automatically collect and store:

  • Icon generation counts – Tracks your usage against plan limits
  • Logo generation counts – Tracks logo generation usage (2 credits per logo for Pay as You Go users)
  • Billing period information – Start dates and reset schedules for usage tracking
  • Subscription plan details – Current plan (free, pay-as-you-go, or pro)
  • Timestamps – Account creation date, last login, generation request times
  • Stripe Customer ID – Links your account to payment records (for paid users)

Content You Provide

  • Logo images – Uploaded by you for brand analysis
  • Text prompts – Icon and logo descriptions and generation parameters
  • Style preferences – Selected icon/logo styles, colors, and design choices
  • Logo generation inputs – Brand name, tagline, industry, logo type, and custom instructions

2. How We Use Google User Data

Google user data obtained through Firebase Authentication is used exclusively for the following purposes:

  • Account Creation & Authentication – Your Google email and UID are used to create and authenticate your account, allowing you to sign in securely
  • Service Provision – Your profile information (name, photo) is displayed in the user interface to personalize your experience
  • Usage Tracking – Your user ID is linked to generation requests to enforce plan limits and track usage across billing periods
  • Communication – Your email address may be used to send service-related notifications, billing updates, or respond to support requests
  • Account Management – All collected data is associated with your user account stored in Firebase Firestore to maintain service continuity

We do NOT:

  • Share your Google user data with third parties for advertising or marketing purposes
  • Use your data to train AI models (see Third-Party AI Services section below)
  • Access any other Google services or data beyond what is explicitly requested during sign-in
  • Sell or rent your personal information to anyone

3. Data Storage & Security

Where We Store Data:

  • Firebase Firestore (Google Cloud) – All user profile data, authentication records, and usage metadata are stored in Google's Firebase Firestore database. Firebase is SOC 2 Type II certified and complies with GDPR, CCPA, and other data protection regulations.
  • Stripe – Payment information (credit card details, billing addresses) is handled directly by Stripe and is not stored on our servers. We only store the Stripe Customer ID reference.

Security Measures:

  • All data transmission uses HTTPS/TLS encryption
  • Firebase Security Rules restrict database access to authenticated users only
  • Server-side operations use service account credentials stored as environment variables (never in source code)
  • We implement rate limiting to prevent abuse and unauthorized access

4. Third-Party AI Services & Data Sharing

To provide our core icon generation features, we share certain data with third-party AI providers:

Google Gemini API

Data Shared: When you upload a logo for brand analysis, we send:

  • Your uploaded logo image (converted to base64)
  • Text prompts requesting color palette extraction and style analysis

Purpose: Gemini analyzes your logo to extract brand colors (HEX codes) and suggest matching icon styles, ensuring visual consistency with your brand identity.

Data Usage by Google: We do not control how Google processes or stores data sent to the Gemini API. Please review Google's Privacy Policy and the Google API Services User Data Policy for details.

Recraft AI

Data Shared: When you request icon or logo generation, we send:

  • Your text prompts describing the desired icon or logo
  • Selected style preferences (e.g., line, solid, gradient for icons; wordmark, lettermark, etc. for logos)
  • Brand colors extracted from your logo (if provided)
  • Logo generation parameters (brand name, tagline, industry, logo type, style modifiers)
  • Technical parameters (size, format, etc.)

Purpose: Recraft processes this information to generate custom icon and logo artwork that matches your specifications and brand identity.

Data Usage by Recraft: We do not control Recraft's data practices. Please review Recraft's Privacy Policy for information on how they handle data sent to their API.

Important Note: We do not share your Google authentication data (email, name, profile photo) with AI providers. Only the content you explicitly provide (logos, icon/logo prompts, preferences) is transmitted to these services for processing.

5. Data Retention & Deletion

How Long We Keep Your Data:

  • Account Data – Retained as long as your account is active to provide the service
  • Usage Logs – Billing period data is retained for the current and previous period for accounting and dispute resolution purposes
  • Generated Content – We may temporarily cache generated icons and logos for performance, but do not permanently store your generated artwork
  • Backups – Database backups may retain deleted data for up to 30 days for disaster recovery

Account Deletion:

You can request full account deletion at any time:

  1. Go to your Account page while signed in
  2. Click the "Request Account Deletion" button
  3. Your deletion request is recorded with a timestamp
  4. Our team will review and complete deletion within 30 days

Upon deletion, we remove: your Google authentication data (email, name, photo), usage history, subscription records, and all associated metadata. Stripe payment records may be retained for legal compliance (tax, fraud prevention) as required by law.

For urgent deletion requests, contact: hello(at)iconset(dot)ai

6. Your Rights (GDPR & CCPA)

You have the following rights regarding your personal data:

  • Access – Request a copy of all personal data we hold about you
  • Correction – Update inaccurate profile information through your Account page
  • Deletion – Request account deletion as described above
  • Portability – Receive your data in a machine-readable format (contact support)
  • Objection – Object to specific data processing activities (contact support)
  • Withdraw Consent – Revoke permissions by deleting your account

To exercise these rights, contact us at: hello(at)iconset(dot)ai

7. Cookies & Analytics

We use cookies for essential functionality and optional analytics. We follow a privacy-first, opt-in approach:

Essential Cookies (Always Active)

These cookies are necessary for core functionality and do not require consent:

  • Authentication Cookies – Firebase Auth uses cookies to maintain your secure login session
  • Cookie Consent Preference – Stores your cookie consent choice (accept/reject) in browser localStorage
  • Security Cookies – CSRF protection and session validation

Optional Cookies (Require Your Consent)

These cookies are disabled by default and only activated if you explicitly accept them:

  • Firebase Analytics – Collects anonymous usage statistics (page views, feature usage, icon generation patterns) to help us improve the service. Managed by Google's Firebase Analytics service.

How it works: When you first visit our site, analytics tracking is disabled. Our cookie consent banner will appear, and you can choose:

  • "Accept Optional" – Enables Firebase Analytics to collect anonymous usage data
  • "Reject Optional" – Keeps analytics disabled and closes the banner
  • No action – Analytics remains disabled until you make a choice

Your consent choice is stored locally and respected across all sessions. You can change your preference at any time by clearing your browser's localStorage and revisiting the site.

What we DON'T use:

  • Third-party advertising cookies or tracking pixels
  • Cross-site tracking or retargeting cookies
  • Social media tracking cookies (e.g., Facebook Pixel, Twitter tracking)
  • Any cookies for selling your data to third parties

8. Changes to Privacy Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. Material changes will be communicated via email or an in-app notice. Continued use of the service after changes indicates acceptance of the updated policy.

Terms of Service

1. Service Features & Plan Limits

Our service offers two main features: Icon Generation and Logo Generation. Access and usage limits depend on your subscription plan:

Free Plan

  • 4 icon generations per month
  • 2 icon styles (Outline and Broken Line)
  • Logo analysis feature available
  • 2 logo generations per month (limited styles and layouts; downloads require upgrade)

Pay as You Go

  • 20 icon generations per £1.99 purchase (1 credit = 1 icon)
  • Logo generation: 2 credits per logo
  • All 11 icon styles available
  • SVG & PNG downloads for icons and logos
  • Credits never expire

Pro Plan

  • Icon generation: 1 credit per icon
  • Logo generation: 2 credits per logo
  • 500 credits per month (resets on billing date)
  • All 11 icon styles available
  • SVG & PNG downloads for icons and logos
  • See fair use policy below for usage examples

Pro Plan Fair Use Policy: Pro is intended for reasonable, non-abusive usage. To maintain service quality and manage costs, Pro users are subject to a monthly fair usage cap of 500 credits (resets on your billing anniversary date). Credit consumption:

  • Icon generation: 1 credit per icon
  • Logo generation: 2 credits per logo

This allows for flexible usage combinations within the 500-credit monthly cap. For example:

  • 500 icons and 0 logos
  • 0 icons and 250 logos
  • 100 icons and 200 logos (500 total credits)
  • Any combination totaling 500 credits or less

If you consistently require higher limits for legitimate business use, please contact support at hello(at)iconset(dot)ai to discuss custom enterprise pricing options tailored to your needs.

2. Account Deletion

To request deletion of your account and personal data, please use the "Request Account Deletion" button on your Account page. Requests are recorded and processed by our team. We will review and complete deletion within 30 days of your request. If you need urgent assistance, contact hello(at)iconset(dot)ai

3. Data Processing & Firebase

We use Firebase services for authentication, minimal user profile storage, and optional persistence of generation metadata (for example: non-sensitive generation request counts, timestamps, and small audit logs). Firebase authentication and data access are protected by industry-standard security rules and encrypted credentials. All server-side operations follow security best practices, and sensitive credentials are never exposed to client code or included in source control.

4. Payments & Billing (Stripe)

All payment processing is handled by Stripe. We do not store full payment card details on our servers — Stripe processes card data directly according to their PCI-compliant flow. By purchasing a paid plan or using paid features you agree to Stripe's terms and privacy policy in addition to ours. We use secure webhook integration to record subscription and billing events with industry-standard verification methods.

5. Third‑Party AI Services

Our service relies on third‑party AI providers to deliver its core features:

Google Gemini – Used for logo analysis and brand extraction. When you upload a logo, we send the image to Gemini's API to analyze design elements, extract color palettes (as HEX codes), and suggest matching icon styles. This analysis helps ensure generated icons maintain visual consistency with your brand.

Recraft AI – Used for both icon and logo generation. When you request icon or logo creation, we send your prompts, brand colors, style preferences, logo type, brand name, tagline, industry, and any uploaded logo images to Recraft's API. Recraft processes this data and returns generated icon or logo artwork in SVG or PNG format. Generated content is displayed to you and may be temporarily cached for performance.

By using our service, you acknowledge that your prompts, uploaded images (such as logos), and generation parameters (style selection, colors, brand information, etc.) may be transmitted to these third-party providers. We do not guarantee quality, accuracy, originality, or fitness for any particular purpose of AI-generated results. Users remain responsible for ensuring any generated content is legally usable for their needs and does not infringe third-party rights. We do not control and take no responsibility for how third-party AI providers process, store, or use your data, including whether they use it for training their AI models. Please review the privacy policies and terms of service of Google Gemini and Recraft AI for details on their data practices.

6. User Content, Generated Assets & Intellectual Property

You retain ownership of any content you upload (for example, logos for brand analysis). By submitting content and requesting generated icons or logos, you grant us a non-exclusive, worldwide, royalty-free license to use, store, and transmit that content to third-party services as necessary to provide the service (including AI providers and payment processors).

Generated Content Ownership:

  • Pay as You Go and Pro users receive full copyright ownership of all icons and logos they generate, including commercial usage rights without attribution requirements.
  • Free plan users receive a non-exclusive license for icons they generate for personal and commercial use. Free users can generate 2 logos per month (limited styles/layouts; downloading logos requires an upgraded plan).

You must not submit content that infringes third-party intellectual property rights. You are responsible for ensuring your use of generated assets complies with applicable laws and does not violate third-party rights.

7. Acceptable Use

You agree not to use the service to generate, host, or distribute content that is illegal, violates privacy or publicity rights, promotes hate or violence, or otherwise violates our Acceptable Use policies. Automated, abusive, or high-volume behavior that materially increases our operating costs may lead to rate-limiting, suspension, or a request to move to a commercial plan.

8. Limitation of Liability & Disclaimers

To the fullest extent permitted by law, the service and all content are provided "as is" and we disclaim all warranties, express or implied. We are not liable for indirect, incidental, consequential, or punitive damages arising from your use of the service, including but not limited to reliance on AI-generated outputs. Where local law limits these disclaimers, liability will be limited to the maximum extent allowed.

9. Data Retention & Deletion Requests

We retain customer data for as long as needed to provide the service, to comply with legal obligations, and to enforce our agreements. You may request deletion of your account and associated data via the Account page; deletion requests are reviewed and processed as described above. Note that backups or cached copies may persist for a short period after deletion.

10. Changes to These Terms

We may modify these terms from time to time. Material changes will be communicated to active users by email or an in-app notice. Continuing to use the service after a change constitutes acceptance of the updated terms.

11. Contact

For questions about billing, data, or policy, contact support at hello(at)iconset(dot)ai