Privacy Policy
Last updated: July 15, 2026
Your privacy is at the core of how ImageToAnything is built. This page explains, in plain language, exactly what we do (and do not) collect when you use our image and PDF tools, what cookies and advertising look like on this site, and what rights you have under data-protection law.
Browser-side processing — your files never leave your device
Every image and PDF tool on ImageToAnything runs entirely inside your web browser using standard Web APIs — the HTML5 Canvas API, the WebCodecs API, and WebAssembly modules that ship with the page. When you drop a file onto a tool, the file is read from your device into your browser's memory, processed locally by JavaScript and WebAssembly, and then offered back to you as a download.
We do not upload your files to our servers. We do not stream them to a third-party API. We do not log filenames, file contents, EXIF metadata, or any derivative of your image. When you close the tab, every byte of your file is discarded from your browser's memory and cannot be recovered by us under any circumstance — we never had a copy in the first place.
You can verify this yourself in any browser. Open the Developer Tools (F12 or right-click → Inspect), switch to the Network tab, drop a file onto a tool, and watch what happens. You will see no upload request for your file — only the static assets needed to load the page itself.
No accounts, no email, no personal information
ImageToAnything has no signup, no login, no paywall and no email gate. We do not collect your name, email address, phone number, postal address, billing details, IP-derived location, profession, employer or any other personally identifying information in order to deliver our service. The tools work the same whether you arrive once or every day.
The only data the website itself receives is the standard set of fields every web server receives on any request: your IP address (used only to deliver the response and aggregated for traffic analytics), the page URL, the referring URL if one was sent, and the User-Agent string identifying your browser and operating system. We do not link these to your identity.
Hosting, infrastructure and security
The site is served from a global content delivery network over HTTPS only. HTTP requests are automatically redirected to HTTPS, and HSTS is enabled so that compatible browsers refuse to fall back to plain HTTP. Static assets, including the JavaScript and WebAssembly that run our tools, are served with integrity headers and cache controls that protect against tampering and stale code.
Because no user file ever reaches our servers, our infrastructure has no image storage, no upload buckets, and no per-user database. There is nothing for an attacker to exfiltrate that relates to your files, because nothing about your files exists outside your own device.
Cookies and local storage
ImageToAnything uses a small number of strictly-necessary first-party items to make the site work:
- A theme preference (light or dark mode) stored in your browser's
localStorage. - Tool preferences such as your most-recent compression quality or output format, stored locally so you do not have to re-pick them on every visit.
- A cookie-consent flag recording whether you accepted or declined optional cookies, so we do not ask you again on every page load.
We may additionally set optional analytics and advertising cookies — but only after you have agreed via our cookie banner. If you decline, no advertising or analytics cookies are set, and only the strictly-necessary items above remain. You can clear all stored values at any time using your browser's site-data controls.
Analytics
We use privacy-friendly, aggregated analytics to understand which tools and conversion formats are most useful and to spot performance regressions on real devices. Analytics events include the page URL, anonymised approximate location at country level, browser family and screen size — never your IP in full, never your files, never any personally identifying information.
You can opt out of analytics by declining cookies in our banner, by using your browser's tracking-protection feature, or by installing a content blocker. Doing so has no effect on the tools — every feature works identically with analytics disabled.
Advertising (Google AdSense and certified partners)
ImageToAnything is funded by Google AdSense and other certified ad networks. Ads pay for the bandwidth, the developer time and the WebAssembly toolchains that make the tools free. We do not run video pre-rolls, interstitials that block the page, or pop-ups.
When you consent to ads, our advertising partners may use cookies and similar technologies to serve ads based on your prior visits to this and other websites. Google's use of advertising cookies enables it and its partners to serve ads based on your interests. You can:
- Opt out of personalised advertising in Google Ads Settings.
- Visit aboutads.info/choices to opt out of personalised advertising from many third-party vendors at once.
- Decline ads cookies in our cookie banner — Google may still serve non-personalised ads in that case, which do not rely on your browsing history.
Advertisers and ad networks never receive your image files, your conversions, your EXIF data, or any signal derived from how you use the tools. They only see the standard ad-request data the browser sends (page URL, viewport, consent state).
What we do not do
- We do not sell your data. There is nothing to sell — we do not have it.
- We do not train AI or machine-learning models on your images.
- We do not share your files with any third party for any reason.
- We do not embed third-party social-media trackers (Facebook Pixel, X Pixel, etc.).
- We do not fingerprint your device beyond what an ad provider may attempt with your consent.
- We do not require you to disable an ad blocker.
Your rights — GDPR, UK GDPR, CCPA and beyond
Because images are processed locally and we collect no personal data on our servers, most data-protection regulations apply to us in a very limited way. We still respect the rights they grant:
- Right of access: we can confirm that we hold no personal data tied to you as an individual.
- Right of erasure: already met by default — clear your browser's storage to remove every local preference we have ever set.
- Right of objection: decline our cookie banner and no optional cookies are set.
- Right to opt out of sale or sharing (CCPA): we do not sell or share personal information, so there is nothing to opt out of, but a Do Not Track or Global Privacy Control signal sent by your browser is respected.
The legal basis for any processing we do (such as aggregated analytics) is our legitimate interest in keeping the service functional, secure and improving over time. For advertising cookies, the legal basis is your consent, freely given via the cookie banner.
Children
ImageToAnything is not directed at children under 13. We do not knowingly collect personal information from children. Because the tools work entirely in the browser and require no signup, no personal information about anyone — child or adult — is collected during normal use.
Parents and guardians who believe a child has somehow shared personal information through a contact-form submission should email us via the contact page and we will delete the submission immediately.
Data retention
We retain no data about your files because we never receive any. Aggregated analytics records (page views by country and device class) are retained for a maximum of 26 months and then deleted. Contact-form submissions, when you choose to send one, are kept only long enough to answer your question and are then deleted.
Contact and complaints
Questions about this policy, the data we process, or your rights under applicable law: please reach out through our contact page. We respond within 30 days, usually much sooner.
If you live in the EU or UK and believe we have mishandled your data, you also have the right to complain to your national data-protection authority — for example the ICO in the UK, the CNIL in France, or the Data Protection Commission in Ireland.
Questions about your privacy? Get in touch or read our Terms of Use.