Privacy Policy
Last updated: 15 June 2026
Who we are
The Fridge Gallery is an app that helps families preserve, celebrate and share their children's artwork — photos of crayon drawings, paintings, sculptures and everything in between. It is operated by Gee IT Pty Ltd, in Australia. In this policy “we” means Gee IT Pty Ltd, and “you” means the parent or family member who holds an account.
Children don't have accounts
Only adults — parents and grandparents — create accounts and sign in. Child profiles are created and managed entirely by the parent. We deliberately collect the minimum about a child: a first name, an optional birth year (year only, never a full date of birth) and an optional photo. A child's information is visible only to members of your family and, to the extent you choose, to people you share a gallery link with.
What we collect and why
| What | Why |
|---|---|
| Your email address | To sign you in and send important account notices |
| Password (stored only as a one-way hash — we never see it) | Authentication, if you use email sign-in |
| Your role (parent or grandparent) | Access control — parents have more permissions |
| Your avatar photo (optional) | To show your name and face within the family |
| Child profiles — first name, optional birth year, optional photo | Labelling and displaying artwork in the gallery |
| Artwork — the photo you take, plus an optional title, story, medium and date | Preserving and displaying the artwork |
| Memory photos and notes (e.g. first day of school) | Family milestones, kept alongside the art |
| Comments and reactions | Family members responding to artwork |
| Gallery room details — school, teacher, year-level label, note (all optional) | Adding context to the 3D gallery |
| Sharing & invite records (tokens, who accepted, expiry) | Running grandparent invites and share links |
| Subscription plan, status and a billing reference ID | Managing your subscription (we never store card numbers) |
If you sign in with Google, Apple or Facebook (mobile app only), we receive only what that provider gives us — typically your email and a unique identifier. We never receive your posts, contacts or other data from those services.
AI image processing — what goes to AI and what doesn't
This matters, so we're specific.
- Artwork photos ARE processed by AI.When you upload a drawing or painting, the photo is sent to our AI image service (fal.ai) to clean it up — correcting the camera angle and lighting while faithfully preserving the child's exact marks and colours. The result is the “enhanced” version in your gallery.
- Sculpture photos ARE processed by AI.Each angle photo is sent to fal.ai for background removal, and — if you choose the paid 3D model feature — to fal.ai's 3D generation service to build the model.
- Memory photos are NOT processed by AI. Family milestone photos are converted to a standard colour format and stored as-is. They are never sent to any AI service.
- Avatar photos are NOT processed by AI. They are simply cropped to a square.
We use AI only to deliver the features you ask for — never to profile you or for advertising. Your images are sent to fal.ai only for the specific job, and we don't keep copies with them afterwards. How fal.ai handles data it receives is governed by fal.ai's own privacy policy; we encourage you to review it.
Where your data is stored
Your accounts, profiles, artwork and images are stored in Australia (Sydney):
| Type of data | Where it lives | Region |
|---|---|---|
| Accounts, child profiles, artwork details, comments, reactions, sharing records, subscriptions | Supabase (PostgreSQL) | Sydney, AU |
| Artwork photos, memory photos, avatars, 3D models, export archives | Wasabi object storage | Sydney, AU |
| Image processing (geometry, renditions, format conversion) | Fly.io worker | Sydney, AU |
To run the service, some operational data is handled by providers outside Australia: artwork and sculpture images are sent to fal.ai (USA) for AI processing; background jobs are coordinated by Inngest (USA) using identifiers and status codes (not image content); and web requests pass through Vercel's global edge network. The full list is below.
Subprocessors
These third parties handle data on our behalf. We do not use third-party analytics, advertising networks or behavioural tracking.
| Service | What they do | Data they receive | Region |
|---|---|---|---|
| Supabase | Database & authentication | Account emails, family data, artwork details, subscription records | Sydney, AU |
| Wasabi | Object storage | Artwork images, memory photos, avatars, 3D models, export archives | Sydney, AU |
| Fly.io | Image processing worker | Artwork & memory images, transiently during processing | Sydney, AU |
| fal.ai | AI image enhancement & 3D generation | Artwork and sculpture photos only — not memory photos or avatars | USA |
| Inngest | Background job orchestration | Job, artwork and user IDs and status codes — no image content | USA |
| Vercel | Web app hosting & API | HTTP requests in transit (no persistent user-data storage) | USA / global edge |
| Cloudflare | Content delivery (caching of gallery thumbnails), when enabled | Cached thumbnail/display images | Global edge |
| Apple / Google / Facebook | OAuth sign-in (mobile app only) and in-app purchases | Your email and a sign-in identifier; subscription receipts | Their infrastructure |
| Expo | Push notifications (mobile app) | Device push tokens | USA |
Payments and push notifications are part of our architecture and may not be active for every user yet.
Sharing outside your family
Your gallery is private by default. Data reaches people outside your family only when you choose:
- Share links you create. A public gallery (
/g/…) or flipbook (/fb/…) link lets anyone with the link view that artwork without logging in. The link is unguessable and isn't listed or indexed by us — the token is the only way to reach it — and you can revoke it at any time. Note: a gallery share link also shows any room details you've added — including school name, teacher name and year level — to anyone who has the link. - Grandparent & family invites. When you invite someone, they become a member of your family and can see your artwork, react and comment. You control who is invited, and invite links expire after 14 days.
We do not sell your data, share it with advertisers, or use it for anything other than running the service.
Data retention
- We keep your artwork and account data for as long as your account exists. Your child's artwork is yours — we will not delete it silently.
- Export archives: when you prepare a download, the download link expires after one hour; the archive file itself is kept in our storage until you delete your account.
- Share links do not expire automatically — they stay active until you revoke them. Invite links expire after 14 days.
- Temporary files created during the upload pipeline are removed once processing finishes or the artwork is deleted.
If you delete your account (see the Data Deletion page), we delete your data within 30 days.
Your rights
- Access & export.You can download a full ZIP archive of your family's artwork and memories at any time from the web app — free, forever, even after you cancel a paid plan. The archive includes the original and enhanced versions of each artwork (as JPEG, plus the original file if you uploaded HEIC/PNG/WebP) and your memory photos.
- Correct. You can edit child profiles, titles and captions directly in the app.
- Delete. See the Data Deletion page.
- Object or restrict. Email us with any concern at privacy@thefridgegallery.com.
In Australia, you can also lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Security
- All data in transit is encrypted with HTTPS/TLS.
- Original, enhanced, framed and back-of-artwork images always require an authenticated session or a valid share token. Gallery thumbnails and display images may be served via a content-delivery network by unguessable URL.
- Passwords (for email sign-in) are stored as a one-way hash by Supabase Auth — we can't read or recover them.
- Database access is enforced by row-level security so a query can only return data belonging to your own family.
- Internal service-to-service calls use HMAC-signed payloads.
Cookies & tracking
The web app uses a session cookie to keep you signed in. We do not use advertising cookies, tracking pixels, or third-party analytics. The mobile app keeps your session in the device's secure storage.
Changes to this policy
If we make a material change — such as adding a new AI subprocessor or changing how we handle children's data — we'll update the date above and, where appropriate, notify you by email.
Contact
Gee IT Pty Ltd — privacy@thefridgegallery.com. To delete your data, see the Data Deletion page.