Last updated: May 27, 2026
At Pigeon Post, we help you celebrate your most important relationships through AI-driven creativity and physical mail. This policy explains how we handle your data when you use our mobile application and services.
1. Information We Collect
To provide the Pigeon Post experience, we collect the following categories of data:
- Account Information: Your name, email address, and password when you create an account.
- User Content (Photos): Images you upload to "Train the AI" or "Keep the Quirks" profiles.
- Friends & Family Vault: Names, birthdays, relationship types (e.g., "Mom," "Brother"), and physical shipping addresses for your recipients.
- Payment Information: Processed securely through Apple In-App Purchases or our third-party payment processor; we do not store full credit card numbers on our servers.
2. How We Use Your Information
We use your data strictly for app functionality and service delivery:
- AI Personalization: We process your uploaded photos to create custom, illustrated card art that features your likeness or the likeness of your loved ones.
- Milestone Reminders: We use stored birthdays to send you automated push notifications so you never miss a special occasion.
- Physical Fulfillment: We use recipient addresses to print and mail your physical cards via our "Pick & Send" service.
- Communication: We use your email to send order confirmations and support updates.
3. Data Sharing and Third-Party Services
We do not sell your personal data. We only share information with third parties necessary to perform the following services:
- OpenAI (AI artwork and message generation): When you create a card, we send the following data to OpenAI, L.L.C. via their API: the photograph(s) you upload as reference, the first name of the card's recipient, the occasion the card celebrates, and your relationship to the recipient. We use OpenAI's gpt-image-1 (image generation) and gpt-4o-mini (message text generation) models to produce the artwork and inside-message text on your cards.
Per OpenAI's API Data Usage Policy (https://openai.com/policies/api-data-usage-policies), OpenAI does not use API inputs or outputs to train its models, retains data for up to 30 days for abuse monitoring (then deletes it), and we have not opted into any data-sharing, fine-tuning, or zero-retention exception that would alter these defaults. These protections are equivalent to or stronger than those described in this policy.
We obtain explicit, separate user consent for this data sharing through an in-app prompt at sign-up before any data is sent. - Print & Mail Partners: Shipping addresses and card designs are shared with our fulfillment partners to print and deliver your physical cards.
- Analytics & Session Recording: We use third-party analytics and session-recording tools (including PostHog) to understand how users navigate the app and to improve the experience. These tools may record screen interactions during your session. We mask sensitive information — including payment details, addresses, and personal photos — so they are not captured in recordings. We do not sell this data.
We do not send your email, password, full name, payment information, mailing address, or any other data not directly required to generate or fulfill your card to any of these third parties.
4. Data Retention and Your Rights
- Control: You can edit or delete any photo, contact, or address in the "Friends & Family" vault at any time within the app.
- Deletion: Upon request or account deletion, we will remove your personal identifiers and uploaded photos from our active databases.
- Access: You have the right to request a copy of the data we have stored for your account.
5. Security
We implement industry-standard encryption (SSL/TLS) to protect your data during transit and use secure cloud storage for your account information.
6. Children’s Privacy
Pigeon Post is designed for users aged 13 and older. We do not knowingly collect personal information from children under 13.