How Photodrop handles your photos

Photodrop is operated by 4 Lichtjaar, a company registered in the Netherlands at Jacob Israel de Haanstraat 264, 1508 VG Zaandam, Chamber of Commerce (KvK) number 95376909, VAT number NL005147914B24. You can reach us at privacy@photodrop.nl for anything in this notice.

When you upload a photo at a venue, the venue's operator is shown the photo for moderation purposes. We act as the data processor for them; the venue is the controller for what appears on their TV.

• Your photo. The image you choose to upload at a venue. The image is server-side compressed for display but we keep the original as a backup.
• Payment information. Processed by Mollie. We receive a payment ID and status — never your card number.
• Email + password (admin accounts only). Stored hashed by Supabase Auth. Guests don't create accounts.
• Technical data. Standard server logs (IP, user agent, request times) for security and abuse prevention. No analytics or tracking cookies.

To run the service you asked for. Showing your photo on the venue's TV is the entire point. Legal basis: contract (the moment you pay, you're entering into one).

To moderate content. Photos run through an automated NSFW check (Sightengine). Flagged photos are reviewed by the venue's staff before they go on screen. Legal basis: legitimate interest (preventing offensive content in a public venue).

To prevent abuse. Logs are kept long enough to investigate misuse. Legal basis: legitimate interest.

• Photos that went on the TV: kept for the duration of the event (typically a single night). You can request earlier deletion at any time.
• Rejected photos: the file is removed from storage immediately. The database row stays as an audit record for 30 days.
• Payment records: kept for 7 years as required by Dutch tax law.
• Admin accounts: kept as long as you have an active venue. Deleted on request.
• Server logs: 30 days.

We use a small number of subprocessors. Every one is GDPR-compliant and bound by a Data Processing Agreement.

• Supabase (database, storage, auth) — hosted in the EU. Photos and account data live here.
• Mollie (payments) — processes your card details directly; we never see them.
• Sightengine (NSFW moderation) — receives the image URL to score. Sightengine doesn't retain images.
• Resend (transactional email) — receives admin email addresses to deliver login + password-reset messages.
• Vercel (hosting) — processes incoming requests; doesn't see image content beyond what's needed to serve them.

Under GDPR you can:

• Ask us to delete your photo or admin account.
• Ask us what data we hold about you.
• Ask us to correct it.
• Object to processing, or withdraw consent at any time (for photos, that means deletion).
• Lodge a complaint with your national data protection authority (in NL: the Autoriteit Persoonsgegevens).

Email privacy@photodrop.nl and we'll respond within 30 days.

We only use cookies that are strictly necessary to keep you signed in (Supabase session cookies). No analytics, no advertising, no third-party trackers.

Photodrop is for adults using licensed venues. Don't post photos of minors without consent of their parents or guardians. We will delete photos of identifiable minors on request without questions.

If we change anything substantive we'll update the date at the top and notify venue admins by email.

privacy@photodrop.nl for privacy questions and data requests. billing@photodrop.nl for commercial enquiries. For service issues, talk to your venue's staff first.

See also our Terms and Conditions for the full legal framework.