Privacy Policy
Last updated: May 2026 (revised)
We collect the minimum we need to run Koloring.ai. This page explains what we collect, why, who we share it with, and how to remove it.
1. Introduction
This Privacy Policy describes how Koloring.ai (“Koloring.ai”, “we”, “us”) collects, uses, and protects information when you visit our website or use our services. It is designed to comply with the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Children’s Online Privacy Protection Act (COPPA), and other applicable privacy laws.
By using Koloring.ai, you agree to the practices described here. If you do not agree, please do not use the service.
2. Information we collect
2.1 Account information
When you create an account using Google Sign-In, we receive your email address and the display name associated with that Google account. We do not receive or store your Google password.
2.2 Usage data
We record basic usage information so we can improve the service and detect abuse:
- Pages you view on Koloring.ai
- Coloring pages you generate, color, or save
- Downloads (anonymized counts only)
- Approximate location (country level, derived from IP)
2.3 Device information
Browser type, operating system, and screen resolution. This is used to debug display issues and choose the right image sizes.
2.4 AI prompts and creations
When you use our AI tools, the text prompts you submit and the images you generate are stored against your account so they appear in your dashboard. Prompts are also sent to a third-party AI technology provider for processing (see §5).
2.5 Uploaded photos
If you use photo-to-coloring conversion, the image you upload is processed temporarily by our AI technology provider. We do not store your original uploaded photos on our servers. The resulting line-art output is saved to your account; the source photo is discarded immediately after conversion completes.
2.6 Colored artwork
If you click “Save” on a colored page, the resulting image is stored against your account so you can find it again in your dashboard.
2.7 Cookies
We use a small number of strictly-necessary cookies: an authentication session cookie, a language-preference cookie, and a bot-protection cookie set by our third-party CAPTCHA provider. We do not use advertising or cross-site tracking cookies.
2.8 Payment information
Payment details (card number, billing address) are collected and stored by our third-party payment processor as Merchant of Record. Koloring.ai does not see or store your payment information at any time. We receive only a customer reference and subscription status.
3. How we use your information
- To provide and improve the service
- To generate custom coloring pages from your prompts
- To save your favorites, colored artwork, and AI creations
- To process subscriptions and manage your plan
- To enforce rate limits and detect abuse
- To respond to support, copyright, and privacy requests
- To analyze aggregate site usage so we can improve features
We do not sell your personal data to anyone. We do not use your data for advertising targeting, retargeting, or building advertising profiles. We do not share your prompts or generated images with third parties except as strictly necessary to operate the service.
4. Tool-specific data handling
Koloring.ai ships six creative tools. Each is built privacy-first; the sub-sections below explain exactly what happens to your data when you use them.
4.1 Photo-to-coloring
When you upload a photo for conversion, our AI describes the image and generates an original coloring page. The uploaded photo is processed in memory and NOT stored permanently. We do not keep copies of your uploaded photos. The generated coloring page (not the original photo) is stored in your account if you are signed in. Anonymous conversions are returned to the browser and not associated with any account.
EXIF metadata (including any GPS coordinates) is stripped from the image before it leaves our server, so location data in a photo never reaches the AI provider.
4.2 Coloring book creator
When you create a coloring book, we compile selected pages into a PDF. The PDF is generated on demand and delivered as a download. We do not store generated PDFs permanently. The list of pages you selected is not retained after the PDF is built.
4.3 Chrome extension (Koloring — Photo to Coloring Page)
Our Chrome extension sends image URLs to our server for processing. We do not access your browsing history, bookmarks, or any data beyond the specific image you choose to convert. The extension requires only contextMenus and activeTab permissions; no host permissions, no content scripts, no third-party requests, no analytics inside the extension itself.
When you click “Turn into Coloring Page” in the right- click menu, a new tab opens to koloring.ai/create with the image URL as a query parameter. From that point on, the site’s normal privacy policy applies.
4.4 Embeddable widget
Our widget runs on third-party websites with the site owner’s consent. It does not track users across sites, set cookies, or collect any personal data. It only activates when a user explicitly clicks the coloring button on a specific image.
On click, the user is sent to koloring.ai with the chosen image URL as a query parameter; nothing about the host page is transmitted to us. The widget makes no analytics calls of its own.
4.5 AR drawing
AR drawing uses your device camera to overlay a coloring page on a real piece of paper. The camera stream stays entirely in your browser — no video frames are uploaded to our servers. We only record an anonymous session count to enforce the daily free tier limit.
4.6 Online coloring canvas
The browser canvas runs entirely on your device. Your work is kept locally until you click “Save”, at which point the finished image (PNG composite of paint plus outline) is uploaded to your private account storage. Pro subscribers’ saves sync across devices; free accounts do not get cloud-saved canvas work beyond a small local history.
4.7 Mobile apps (Amazon Appstore, Google Play, Apple App Store)
Our coloring apps are built for children and their families. They contain no third-party advertising, no ad-tracking SDKs, and no analytics that profile a child. Browsing and coloring work without an account; signing in (optional) uses the same email-based account as the website and only unlocks saved-art sync and Pro.
Coloring pages are downloaded from our own catalogue (line-art images we publish), and offline packs cache those images on your device so kids can color without a connection — that cache is our artwork, not personal data, and you can delete it anytime from the app. Saved colorings are handled exactly as in §4.6 (kept local until you save; uploaded to your private account storage only when signed in).
Purchases: on the Amazon Fire app, Pro is bought through Amazon In-App Purchasing — Amazon processes the payment and we never see your card details; we receive only a purchase receipt, which we verify on our server to unlock Pro on your account. On other stores, Pro may be managed through your koloring.ai account. Account, purchase, and any links that leave the app sit behind a parental gate (see §6).
The current apps do not request camera access or photo-library uploads (the AI photo and AR camera tools are web-only). We request only the minimal device permissions an app needs to store your downloads and saved art.
5. Third-party services
To run Koloring.ai we rely on the following categories of third-party services. These providers process limited data on our behalf under contractual data-protection agreements:
- Authentication provider — handles Google Sign-In on our behalf. Receives only the data needed to verify your identity.
- Payment processor (Merchant of Record) — handles billing, taxes, refunds, and chargebacks. Holds your billing information; we do not.
- Cloud hosting and database services — host the website, user accounts, and stored images.
- Content delivery network — caches and serves images globally so the site loads quickly.
- Bot-protection service — verifies that form submissions are from real humans, not bots. Sets a strictly-necessary cookie.
- AI technology providers — generate coloring pages from your prompts and uploaded photos. Prompts and source photos are transmitted to these providers under data-processing agreements. They are contractually prohibited from using your inputs to train their models.
- Google Analytics — anonymized aggregate analytics. IP addresses are truncated before analytics processing. We do not enable advertising features in Google Analytics.
6. Children’s privacy (COPPA)
Koloring.ai is designed to be safe for children to use under parental supervision. We take the following measures to comply with COPPA and similar international child-protection laws:
- Children can browse and color pages on Koloring.ai without creating an account. No personal information is collected in this anonymous mode beyond standard analytics.
- Account creation requires Google Sign-In, which requires the user to be at least 13 years old (or the equivalent minimum age in their jurisdiction) per Google’s own terms.
- We do not knowingly collect personal information from children under 13 without verifiable parental consent. If you believe we have such data, please email us and we will delete it.
- Parents may request deletion of any data associated with their child’s account at any time by emailing the address in §13.
- We do not sell or transfer child user data to third parties for any purpose other than the operation of the service.
7. Data retention
- Account data — retained for as long as your account is active. Deleted within 30 days of an account-deletion request.
- AI-generated coloring pages — published pages are retained indefinitely as part of the catalog. Pages tied to your account are deleted when your account is deleted.
- Uploaded photos (photo-to-coloring) — discarded immediately after the conversion completes. Never retained.
- Colored artwork — retained until you delete it or your account.
- Analytics data — anonymized and aggregated; retained for a maximum of 14 months.
- Contact form messages — retained for up to 24 months for support history, then deleted.
- Payment records — retained by our payment processor under their own retention policy and as required by tax authorities (typically 5–7 years).
8. Your rights (GDPR & CCPA)
Depending on where you live, you may have the following rights with respect to your personal data. We honor these requests from any user, regardless of jurisdiction.
- Right of access — request a copy of the personal data we hold about you.
- Right of deletion — request deletion of your account and associated data.
- Right of correction — update inaccurate information.
- Right of data portability — receive your data in a machine-readable format.
- Right to object — opt out of analytics or any specific processing activity.
- Right to withdraw consent — withdraw any consent you have previously given, at any time.
- Right to non-discrimination — we will not treat you differently for exercising any of these rights.
To exercise any of these rights, email us at the address in §13. We will respond within 30 days.
10. Security
We take reasonable technical and organizational measures to protect your data:
- All data is encrypted in transit using TLS (HTTPS).
- The database is protected by row-level security policies, so users can only access their own data.
- API endpoints are protected by per-IP rate limiting and input validation.
- Payment information never touches our servers — it is collected and processed entirely by our payment partner.
- Service accounts and API keys are stored in encrypted environment variables, not in source control.
No system is perfectly secure. We will notify affected users without undue delay if a personal-data breach occurs that is likely to result in a high risk to their rights, as required by GDPR Article 34.
11. International data transfers
Koloring.ai is operated globally. Some of our third-party processors are located outside your country of residence. When personal data is transferred outside the EU/EEA or the UK, we rely on appropriate safeguards such as the Standard Contractual Clauses approved by the European Commission and, where applicable, the EU-US Data Privacy Framework.
12. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of the page. For material changes (e.g. new categories of data collection, new third-party processors handling personal data, changes to your rights), we will notify account holders by email at least 14 days before the change takes effect. Your continued use of the service after the effective date constitutes acceptance of the updated policy.
13. Contact us
Questions, requests, or concerns about this policy or your data:
- Email: hello@koloring.ai
- Contact form: koloring.ai/contact
We aim to respond to all privacy requests within 30 days.