Skip to main content
Privacy Policy

Privacy Policy

Last updated: April 2025

1. Introduction

MetadataMonster ("we", "us", "our") operates the website metadata.monster and the associated backend service at api.metadata.monster. This privacy policy explains what data we collect, why we collect it, and what rights you have under the EU General Data Protection Regulation (GDPR / DSGVO) and the German Bundesdatenschutzgesetz (BDSG).

2. Data Controller

The data controller responsible for data processing on this website is:

MetadataMonster
Email: [email protected]

If you have any questions about data protection, you can contact us at the email address above at any time.

3. Core Principle: Your Files Stay Private

When you use MetadataMonster to view or remove metadata from images, all file processing happens entirely in your web browser using client-side JavaScript (Canvas API, FileReader API, and the exifr library). Your files are never uploaded to any server. They remain on your device at all times.

We have no technical ability to access, read, or store any file you process through the browser-based tool.

4. Data We Collect

4.1 Anonymous Visitors (No Account)

If you use MetadataMonster without signing in, the following applies:

  • No personal data is collected unless you grant analytics consent.
  • Local storage (browser) stores two functional preferences: your theme choice (mm_theme) and your consent decision (mm_consent). These are strictly necessary for the service you requested and do not require consent under Art. 5(3) of the ePrivacy Directive (2002/58/EC).
  • No processing reports are submitted to our servers for anonymous users.

4.2 Anonymous Processing Statistics (No Consent Required)

Every time you remove metadata from a file — regardless of whether you are signed in or have granted analytics consent — we send two pieces of information to our server:

  • File format — the MIME type of the processed file (e.g. image/jpeg).
  • Metadata categories removed — the types of metadata that were stripped (e.g. "EXIF", "GPS", "XMP"). Only the category names are sent, never the actual metadata values.

This data is fully anonymous. The server endpoint does not read, log, hash, or store the source IP address, and the request contains no session identifier, user agent, cookie, or any other information that could identify you. The data is stored as aggregate daily counters (e.g. "JPEG + GPS: +1") and cannot be linked to any individual, even when combined with all other data we hold.

Because this data is anonymous within the meaning of GDPR Recital 26, the regulation does not apply to it and no consent is required. We use these statistics solely to understand which file formats and metadata types are most common, in order to prioritise technical improvements to the service.

4.3 Analytics (Only With Your Consent)

If you accept analytics in the consent banner, we collect the following via our in-house tracking system (no third-party analytics services are used):

  • Session ID — a random identifier generated per browser session (crypto.randomUUID()). It is not linked to your identity.
  • Page visited and event type (e.g. page view, file processed).
  • Referrer URL and user agent string.
  • IP address — anonymised immediately on the server using a daily-rotating SHA-256 hash. The raw IP address is never stored.

If you decline analytics or have not yet made a choice, no tracking data is collected or sent. Events are silently discarded both client-side and server-side.

Legal basis: Art. 6(1)(a) GDPR — your explicit consent. You can withdraw consent at any time by clearing your browser's local storage for this site.

6. Third-Party Services

6.2 No Advertising or Analytics Third Parties

We do not use Google Analytics, Facebook Pixel, or any other third-party advertising or analytics service. All analytics are processed by our own in-house system as described in section 4.2.

7. Data Storage and International Transfers

Anonymous processing statistics are stored in Google Cloud Firestore. Anonymous processing statistics are stored exclusively as aggregate counters with no link to any user or request.

Google Cloud infrastructure may process data in the EU or other regions. Where data is transferred outside the EU/EEA, it is protected by the EU-US Data Privacy Framework or EU Standard Contractual Clauses (SCCs) in accordance with Art. 46 GDPR.

8. Data Retention

  • Anonymous processing statistics: retained indefinitely as aggregate counters. These are fully anonymous and cannot be linked to any individual.
  • Consent-based analytics events: retained for analysis purposes. IP hashes rotate daily and cannot be linked back to you.
  • Local storage data: remains on your device until you clear your browser data.

9. Your Rights Under GDPR

Under the EU General Data Protection Regulation and the German BDSG, you have the following rights. You can exercise them at any time by contacting us or using the built-in tools in your account:

  • Right of access (Art. 15 GDPR): you can request a copy of your personal data at any time.
  • Right to rectification (Art. 16 GDPR): you can request correction of inaccurate personal data.
  • Right to erasure (Art. 17 GDPR): you can delete your account and all associated data at any time via the account settings. Deletion is immediate and irreversible.
  • Right to data portability (Art. 20 GDPR): you can export all your data in machine-readable JSON format via the account settings.
  • Right to restriction of processing (Art. 18 GDPR): you can request that we limit how we process your data in certain situations.
  • Right to object (Art. 21 GDPR): you can object to processing of your personal data at any time. For analytics, you can withdraw consent via the consent banner or by clearing local storage.
  • Right to withdraw consent (Art. 7(3) GDPR): you can withdraw your analytics consent at any time. Withdrawal does not affect the lawfulness of processing performed before withdrawal.

11. Children's Privacy

MetadataMonster is not directed at children under 16 years of age (the age of digital consent under German law, BDSG §8 in conjunction with Art. 8 GDPR). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

12. Right to Lodge a Complaint

If you believe that our processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority (Art. 77 GDPR), in particular in the EU member state of your habitual residence, place of work, or the place of the alleged infringement.

13. Changes to This Policy

We may update this privacy policy to reflect changes in our practices or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

14. Contact

For any questions or requests regarding this privacy policy or your personal data, please contact us at:

Email: [email protected]