We don't see your files.

• Your images. No file you select is uploaded, transmitted, or copied to any server we operate. The Canvas API and WebAssembly encoders run in your browser tab.
• Filenames or contents. We have no record of what you converted, when, or what was in it.
• Personal information. We don't ask for your name, email, phone, address, payment, or any identifier. There is no account.
• Biometric, health, or financial data. None — Pixelmint has nothing that would let you supply it.

Two narrow categories, both optional, both disclosed before they happen:

2.1 Browser storage (your preferences)

If you click Accept on the consent banner, we save your theme, text size, high-contrast preference, reduced-motion preference, and underline-links preference in your browser's localStorage under these keys:

• pm-consent — your consent decision
• pm-theme — light, dark, or system
• pm-fs — text-size preference
• pm-hc — high-contrast on/off
• pm-rm — reduced-motion on/off
• pm-ul — underline-links on/off

This data never leaves your device. It exists only so your settings persist between visits. If you click Essential only, none of this is saved — your preferences apply for the session only.

You can clear it any time via your browser's site-data settings, or by opening the accessibility menu and choosing Reset to defaults.

2.2 Analytics (only if you accept)

If you click Accept on the consent banner, we load Google Analytics 4 (measurement ID G-JWDF94NQ7P) to measure aggregate, anonymous page views and referrers. We enable anonymize_ip, so your IP address is truncated by Google before storage.

What GA receives: page URL, referrer, screen size, language, and an anonymized IP. What GA does not receive: your name, email, the files you converted, or any contents from your conversions.

If you click Essential only, the Google Analytics script is never loaded and no analytics data is sent. You can also change your decision later by clearing your site data — the banner will reappear.

Google's own privacy stance: policies.google.com/privacy. To opt out across all sites, install the Google Analytics Opt-out Browser Add-on.

We also load Vercel Web Analytics when you accept. Vercel Web Analytics is cookieless and does not track individuals across sites; it records anonymous, aggregate page views. Details: vercel.com/docs/analytics/privacy-policy.

To enable certain encoders (AVIF, JPEG XL, QOI, TIFF, GIF, PDF), we load WebAssembly and JavaScript modules from public CDNs on first use:

• esm.sh — for AVIF, JPEG XL, QOI WebAssembly modules
• jsDelivr (esm.run / cdn.jsdelivr.net) — for gifenc, utif2, jsPDF

These CDNs see only that some browser requested the encoder file. They never receive your images. Their own privacy policies govern those requests.

If you accept analytics, the Google Analytics script (gtag.js) is loaded from googletagmanager.com and beacon requests are sent to google-analytics.com. These requests carry anonymous, aggregate visit data only — never your images or filenames.

4.1 California (CCPA / CPRA)

Pixelmint does not sell or share personal information as those terms are defined in the California Consumer Privacy Act. We collect no personal information to sell. Because we hold no personal information about you, requests under CCPA rights to know, delete, correct, or opt out of sale/sharing have nothing to return or delete — but you may still contact us and we will confirm in writing.

4.2 Children's Online Privacy (COPPA)

We do not knowingly collect information from children under 13. Pixelmint requires no account or identifier from anyone.

4.3 Other state privacy laws

Pixelmint complies with state privacy laws in Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), and other US jurisdictions to the same extent: we don't collect personal information, so there is nothing to disclose, port, or delete.

The most secure data is data we never have. Beyond that:

• The site is served over HTTPS.
• All client-side preferences are stored in your browser's own sandbox and isolated to the Pixelmint origin.
• We have no servers that store user data, so there is no breach surface we could expose.

If this policy changes materially we will update the Last updated date at the top. If you have questions, accessibility concerns (see our accessibility statement), or any privacy request, contact the site operator listed on the homepage or via the repository issues.

1. Open your browser's developer tools (F12 or right-click → Inspect).
2. Open the Network tab and clear it.
3. Drag an image into Pixelmint and convert it.
4. Look at the Network panel: zero requests are made during the conversion.
5. (Encoder modules for AVIF / JXL / QOI / GIF / TIFF / PDF are fetched once on first use from a public CDN — your image is never one of those requests.)