PxShot
Log inSign up free

Privacy Policy

Last updated: January 1, 2026

Introduction

PxShot ("we," "us," or "our") is operated by AXOX Web Solutions. This Privacy Policy explains how we collect, use, and protect your personal information when you use our screenshot API service at pxshot.dev.

Information We Collect

We collect the following types of information:

  • Account information: Email address and hashed password when you register.
  • API usage data: URLs captured, screenshot metadata (format, dimensions, file size, duration), timestamps, and API key identifiers.
  • Billing information: Processed via Stripe. We store only your Stripe customer ID and subscription ID — we do not store credit card details.
  • Technical data: IP addresses, request headers, and error logs for security and debugging purposes.

How We Use Your Information

  • To provide and operate the screenshot API service
  • To enforce rate limits and plan quotas
  • To process payments and manage subscriptions
  • To send transactional emails (account confirmation, password reset)
  • To detect and prevent abuse or fraudulent activity
  • To improve our service based on aggregate usage patterns

Data Retention

We retain screenshot metadata (URL, format, dimensions) for up to 90 days. Raw screenshot image data is never stored on our servers — screenshots are streamed directly to the caller. Account data is retained for the duration of your account and for 30 days after deletion.

Third-Party Services

  • Cloudflare: Infrastructure, edge network, and Browser Rendering. Subject to Cloudflare's privacy policy.
  • Stripe: Payment processing. We share only what Stripe requires (email, amount) to process payments.
  • Resend: Transactional email delivery.

Cookies

We use localStorage (not cookies) to store your authentication token and theme preference on the client side. No tracking cookies are set.

Your Rights

You may request access to, correction of, or deletion of your personal data at any time by contacting us at privacy@axoxweb.com. Account deletion will remove all associated data within 30 days.

Security

API keys are stored as one-way hashes. Passwords are hashed using bcrypt. All data is transmitted over HTTPS. We do not store plaintext credentials.

Contact

For privacy-related questions, contact us at privacy@axoxweb.com.