Epik AI Photo Editor gained popularity for its AI-powered ability to generate 90s-style graduation photos. However, I have concerns about user privacy and data security due to the app’s information sharing practices as mentioned in its privacy policy.

The app utilizes various third-party service providers for its functionalities, including business analytics and marketing. These providers are granted limited access to user information, including user content, on behalf of Epik AI. However, this access raises concerns about potential misuse or unauthorized disclosure of personal data.

The app also engages with third-party advertising networks, which may share or disclose non-personally identifiable, aggregated, and device-level information with unaffiliated partners and third parties. This includes anonymous usage data, platform types, clicks, and location data. Such practices raise fears about user privacy and the exploitation of personal data for marketing purposes.

Another concern is that the app allows the sharing of user-provided information with other users. This introduces another potential intrusion and unwarranted communications.

In the event of business transfers and affiliations, user information may be shared with companies or organizations connected to SNOW, the parent company of Epik AI. The data may also be transferred to affiliates, subsidiaries, or third parties in cases such as reorganization, merger, sale, or other dispositions of SNOW’s business. This raises concerns about the potential exposure of user information.

Epik AI admits to selling or disclosing various categories of personal information to third parties in the past 12 months. This includes identifiers like real names, addresses, telephone numbers, and email addresses. It also includes internet and electronic network activity information, such as browsing history and interaction with websites.

Users have the option to update or correct their information through the User Account settings. They can also deactivate their accounts, but the app may retain their information as required by law or for business purposes. Users can opt out of promotional communications and limit ad tracking on their devices to avoid interest-based advertising.

The extensive sharing and disclosing practices of Epik AI raise concerns about user privacy, data security, and the ethics of information sharing in the digital age. The growing popularity of these apps calls for a comprehensive assessment and reevaluation of legal frameworks to protect user interests.

Epik AI collects personal information provided by users and obtained through automatic data collection technologies. This includes user-provided information during download, registration, or app usage. It also includes user content like photos, facial scans, and customer service interactions.

In addition to willingly provided information, Epik AI automatically collects in-app purchase information, analytics, location information, behavioral advertising information, log information, metadata, face recognition data, device and usage information, and local storage data.

The collection of such extensive information raises concerns about potential misuse or unauthorized access to sensitive user data. Metadata and face recognition data can provide detailed insights into users’ identities and preferences. Although Epik AI claims not to use this information to identify individuals, the extent of data collected poses potential risks.

Location information collection, with user consent, can lead to the determination of precise user locations, posing increased risk if mishandled or accessed by malicious entities.

Sharing user information with third-party companies for advertising and analytics is another cause for concern. These companies use technologies like cookies and pixels to collect non-personally identifiable information. However, when combined with other collected information, comprehensive user profiles can be created, leading to potential exploitation.

Epik AI assures users that facial image data is permanently deleted within three years or sooner if the initial purpose for collection no longer exists. However, users must understand the implications of extensive data collection.

Users can limit the collection of certain information by adjusting device settings and opting out of interest-based or personalized advertising. However, these measures only partially eliminate the risks associated with collecting sensitive information.

If you use apps that collect user information, be cautious about permissions granted and the information shared, considering the potential dangers associated with data collection. It is important for the National Privacy Commission (NPC) to scrutinize the data collection practices of such apps to protect user privacy and data security.

Users should carefully review privacy policies and make informed decisions about the apps they use, weighing the benefits against the potential risks of information collection and sharing.


Full Stack Developer

About the Author

I’m passionate about web development and design in all its forms, helping small businesses build and improve their online presence. I spend a lot of time learning new techniques and actively helping other people learn web development through a variety of help groups and writing tutorials for my blog about advancements in web design and development.

View Articles