This Privacy Policy explains what data Image Converter by Sovrest
("the Extension") processes, how it is processed, and your rights
as a user.

By installing or using the Extension, you agree to this Policy.

1. Who we are

Data Controller: Sovrest
Contact: info@sovrest.com
Telegram: https://t.me/sovrestbot

2. What the extension does

The Extension converts images between formats (PNG, JPG, WebP,
GIF, AVIF, TIFF, BMP) directly in your browser.

Two processing paths are used:

(a) CLIENT-SIDE — for PNG, JPG, WebP, GIF, BMP.
Images never leave your computer. Conversion happens
locally using your browser's OffscreenCanvas API.

(b) SERVER-SIDE — for AVIF, TIFF only.
Browsers cannot encode these formats reliably, so the
Extension sends the image to our processing server.

3. Data we process

3.1. Locally (on your device):

• Image files you select for conversion.
• Your settings (default output format, quality, name
  strategy, resize options) — stored in your browser's
  chrome.storage.local. These never leave your device.
• Your license key, license JWT, refresh token, device
  ID — stored in chrome.storage.local. Used to verify
  your Pro license offline (RSA-2048).

3.2. Sent to our server (https://streamgive.online) — ONLY
when converting to AVIF or TIFF:

• The image file (binary upload).
• Target format and quality value.
• A per-install identifier "X-Guest-Id" header
  (random UUID, not linked to your identity).

3.3. Server-side handling:

• Images are processed IN MEMORY and discarded
  immediately after conversion. We do NOT save uploaded
  images to disk or any database.
• We do NOT log the contents of your images.
• Our HTTP access logs record only: timestamp, HTTP
  method, route (e.g. "/api/convert/image"), status
  code, and request duration. No file content, no IPs,
  no personal identifiers.
• The X-Guest-Id header is used as a rate-limiting key
  (stored short-term in Redis) and is overwritten
  every 60 seconds.

3.4. We do NOT use cookies, analytics, ad networks, or
tracking pixels. The Extension contains no third-party
SDKs.

4. Permissions we request and why

• storage — to save your settings and license locally.
• downloads — to save converted images to your Downloads
  folder.
• host_permissions for https://streamgive.online/* — to
  send AVIF/TIFF conversions to our server.
• identity — reserved for optional Google sign-in used to
  claim a license bought without an account. Not used unless
  you explicitly press "Sign in with Google".

5. Third parties

• Sovrest License System (https://sovrest.com) — when you
  activate a Pro license, the Extension communicates with
  Sovrest's license servers to verify your key. See
  https://sovrest.com/pages/privacy for Sovrest's general policy.
• No other third-party services. No advertising networks.
  No analytics platforms.

6. Data retention

• Your settings and license remain in your browser until
  you uninstall the Extension or clear browser data.
• Server-side: images are NEVER stored. Rate-limit counters
  (X-Guest-Id) expire automatically after 60 seconds.
• Access logs (route + status only) are retained at most
  30 days for operational debugging.

7. Your rights

You can at any time:

• Delete the Extension — this removes all locally stored
  data including your license.
• Deactivate your Pro license inside the Extension —
  frees up a device slot.
• Request deletion of any server-side data — write to
  info@sovrest.com (note: we don't actually store
  images or personal data, but we'll confirm in writing
  that nothing of yours exists in our systems).

8. Children

The Extension is not directed at children under 13. We do not
knowingly collect data from children.

9. Changes to this policy

We may update this Policy. The "Last updated" date at the top
reflects the latest revision. Material changes will be
announced inside the Extension and on https://sovrest.com.

10. Contact

Questions or complaints:
email — info@sovrest.com
telegram — https://t.me/sovrestbot