Privacy Policy

Effective Date: 4/23/2026

This Privacy Policy describes how Storibox Technologies, Inc. (“Storibox,” “we,” “us,” or “our”) collects, uses, discloses, and otherwise processes information about individuals who access or use our websites, web applications, kiosks, photo galleries, guest-facing services, and related support channels that link to or reference this Privacy Policy (collectively, the “Services”).

This Privacy Policy applies to guest and end-user interactions with the Services. It does not govern information processed by our business customers, venue partners, payment processors, social media platforms, or other third parties that operate their own services and privacy practices.

1. Scope and Acceptance

By accessing or using the Services, you acknowledge that your information will be processed as described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Services.

The Services may be made available in connection with attractions, venues, events, hospitality operators, retailers, and other business partners. In some cases, those partners may independently collect, use, or disclose information under their own policies and notices. We are not responsible for the privacy practices of third parties, and we encourage you to review their privacy materials where applicable.

2. Information We Collect

2.1 Information You Provide to Us

We may collect information you provide directly, including:

• contact information, such as your name, email address, phone number, postal address, and account details;
• photographs, selfies, uploaded images, and related image content;
• purchase, order, fulfillment, redemption, print, or gallery access information;
• communications you send to us, including support requests, survey responses, and feedback;
• any other information you choose to submit through the Services.

2.2 Information Collected Automatically

When you use the Services, we may automatically collect certain information, such as:

• device, browser, operating system, and approximate geolocation information;
• IP address, timestamps, referral URLs, pages viewed, clicks, session data, and other usage information;
• application, kiosk, and diagnostic logs, crash data, and performance information;
• information collected through cookies, pixels, SDKs, local storage, and similar technologies.

2.3 Photo Search and Image Matching Information

Certain Services may allow you to submit a selfie or other image so that we can locate photographs or other content associated with you. Where available, those features may involve automated image comparison, facial matching, or similar technologies. Depending on the deployment, those features may be made available only for a particular venue, event, attraction, or business customer, and may not be available across venues or customers.

2.4 Information from Other Sources

We may receive information from other sources, including:

• our venue or business partners;
• payment processors, order management and e-commerce providers;
• social media platforms and identity providers, where you interact with us through those services;
• service providers that support our hosting, storage, security, analytics, communications, and image processing operations;
• publicly available sources and information lawfully provided by third parties.

3. How We Use Information

We may collect, use, retain, disclose, and otherwise process information for the following purposes:

• to provide, operate, maintain, host, support, and improve the Services;
• to identify, organize, search, retrieve, print, deliver, fulfill, and make available photos, galleries, products, and related content;
• to generate personalized visual products and derivative image outputs, including AI-generated or algorithmically generated cartoons, stylized artwork, themed scenes, commemorative products, and similar guest-facing media products made available to you or your party;
• to enhance, restore, and improve images using automated or AI-assisted processing, including denoising, color correction, sharpening, resizing, background cleanup, and other image-quality improvements;
• to process transactions, orders, redemptions, and customer support requests;
• to authenticate users, manage accounts, and administer access controls;
• to detect, investigate, prevent, respond to, and protect against fraud, abuse, misuse, security incidents, and other harmful, unauthorized, or illegal activity;
• to troubleshoot, debug, monitor, test, repair, maintain quality, and improve the performance, functionality, reliability, and safety of the Services;
• to develop, enhance, train, test, personalize, and improve our services, features, workflows, systems, analytics, and related technologies, including using aggregated, statistical, de-identified, or otherwise lawfully processed information;
• for internal business operations, reporting, auditing, recordkeeping, compliance, and staff training;
• to communicate with you about your orders, access credentials, support matters, account activity, service updates, legal notices, or other administrative matters;
• to send marketing, promotional, and commercial communications about our own or third-party offers, subject to applicable law and your communication preferences;
• to protect our rights, property, personnel, business operations, customers, users, and the public;
• to comply with applicable law, regulation, court order, subpoena, governmental request, or legal process;
• for any other purpose disclosed at the time information is collected or as otherwise permitted by law.

Unless specifically disclosed otherwise, guest photographs are not used to train general-purpose public AI models. We may use images and related data to improve our internal image-processing systems, workflows, quality-control processes, and service functionality, subject to applicable law and appropriate safeguards.

4. Cookies and Similar Technologies

We and our service providers may use cookies, pixels, web beacons, local storage, device identifiers, SDKs, scripts, and similar technologies to operate the Services and collect information automatically.

These technologies may be used to:

• remember your preferences and settings;
• authenticate users and maintain sessions;
• provide and secure site functionality;
• analyze traffic, usage, and engagement;
• debug and improve performance;
• measure campaigns and communications;
• support advertising, personalization, and related marketing functions where permitted by law.

Most browsers allow you to manage cookies through browser settings. If you disable cookies or similar technologies, some portions of the Services may not function properly.

5. How We Disclose Information

We may disclose information to the following categories of recipients:

• our affiliates, subsidiaries, and related companies;
• our service providers, contractors, vendors, and processors that support hosting, storage, payment, communications, analytics, security, image processing, support, printing, logistics, and other business operations;
• our venue, attraction, event, hospitality, retail, and other business partners in connection with the applicable Services;
• payment processors, commerce providers, fulfillment partners, and fraud-prevention providers;
• professional advisors, auditors, insurers, lenders, and financing sources;
• government authorities, regulators, law enforcement, courts, and other parties where required or appropriate under applicable law or legal process;
• parties involved in an actual or proposed merger, acquisition, financing, asset sale, restructuring, bankruptcy, or similar transaction;
• other parties with your direction, consent, or at your request;
• other parties where we determine disclosure is necessary or appropriate to enforce our agreements, protect rights or safety, prevent fraud, or otherwise comply with law.

6. Legal Bases for Processing

Where applicable law requires a legal basis for processing, we may rely on one or more of the following: your consent, performance of a contract, our legitimate interests, compliance with a legal obligation, protection of vital interests, and any other basis permitted by applicable law.

7. Children and Family Photos

The Services are intended for general audiences and are not directed to children to independently register for or use the Services as a primary target audience. However, because the Services may be used at family-oriented venues and events, photographs or other content processed through the Services may include minors.

Where required by law, venue operators, attraction partners, event hosts, parents, guardians, or other authorized adults are responsible for providing any notices, consents, or permissions required for capture or use of photographs and related content at the point of collection. If you believe a child’s information has been processed in a manner inconsistent with applicable law, please contact us using the details below.

8. International Transfers

The Services are operated from the United States and may be processed in the United States and other jurisdictions where we, our affiliates, business partners, or service providers operate. Those jurisdictions may not provide the same level of data protection as your home jurisdiction. By using the Services, you understand that your information may be transferred to, processed in, and accessed from the United States and other jurisdictions, subject to applicable law.

9. Retention

We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, support transactions and account functionality, maintain business and legal records, resolve disputes, enforce our agreements, protect the Services, and comply with applicable law. Retention periods may vary depending on the type of information, the venue or business-customer configuration, contractual requirements, technical constraints, operational needs, and legal obligations.

10. Security

We use administrative, technical, and physical safeguards designed to protect information from unauthorized access, use, alteration, disclosure, or destruction. However, no system, network, transmission method, storage method, or security control is completely secure, and we cannot guarantee absolute security.

11. Your Choices and Rights

11.1 Account and Contact Information

You may update certain account information through the Services where available, or by contacting us. We may need to retain certain information for legal, security, fraud-prevention, recordkeeping, or technical reasons.

11.2 Marketing Communications

You may opt out of marketing or promotional emails by using the unsubscribe link in the communication or by contacting us. Even if you opt out of marketing messages, we may still send transactional, operational, account, support, legal, or service-related communications.

11.3 Cookie Controls

You may control cookies and similar technologies through your browser or device settings, subject to the limitations described above.

11.4 Privacy Requests

Depending on your location and applicable law, you may have the right to request access to, correction of, deletion of, portability of, objection to, or restriction of certain personal information, or to withdraw consent where consent is the basis for processing. We may take steps to verify your identity and authority before responding, and we may decline or limit requests as permitted by law.

12. Sensitive Information and Image-Matching Features

Some information processed through the Services, including facial images or image-matching data, may be considered sensitive under certain laws. We may process such information to provide image retrieval, AI-assisted or algorithmic image enhancement, stylized or cartoon image generation, support, security, troubleshooting, service functionality, analytics, and related legitimate business operations, subject to applicable law and any required notices or permissions.

Unless otherwise stated for a particular deployment, venue, or service flow, image-matching features are intended to help identify photographs or content associated with the relevant user, event, or venue context and are not intended to create a general-purpose identity profile across unrelated venues or customers.

13. Third-Party Sites and Services

The Services may link to or integrate with third-party sites, applications, payment flows, social media platforms, and services. We do not control and are not responsible for the content, security, or privacy practices of those third parties. Your interactions with third-party services are governed by their own terms and privacy policies.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time in our discretion. When we do, we will post the updated version and update the effective date above. Changes become effective when posted unless otherwise stated. Your continued use of the Services after an updated Privacy Policy is posted means you acknowledge the updated Privacy Policy to the extent permitted by law.

15. Contact Us

If you have questions about this Privacy Policy or would like to submit a privacy-related request, please contact us at:

Email: privacy@storibox.com
Mail: Storibox Technologies, Inc., 15400 CR 565A, Suite C, Groveland, FL 34736, USA