Privacy Policy

Last updated: April 23, 2026

gpdedup is a macOS app that helps you find and review duplicate photos in your Google Photos library. This policy describes what the app does with your data. Short version: nothing leaves your Mac except the direct calls the app makes to photos.google.com on your behalf.

1. Who we are

The app is published by Franz Enzenhofer, operating as Fullstack Optimization, based in Vienna, Austria. See the Impressum for full trader details. Contact: arti.ficial@fullstackoptimization.com.

2. What the app does

• Connects directly to photos.google.com over HTTPS using your own authenticated Google session.
• Reads library metadata and thumbnail-sized images needed to detect likely duplicates.
• Lets you review duplicate groups and, only after explicit confirmation, move selected duplicates to Google Photos Trash.

3. What the app does not do

• It does not permanently delete photos. Every "delete" is a move-to-Trash with a 60 day Google restore window.
• It does not upload your library, original files, or metadata to any server we operate.
• It does not include analytics SDKs, crash reporters, ad networks, or third-party tracking.
• It does not sell, rent, or share your Google Photos data with third parties.

4. Data stored on your Mac

• Google session secrets (a session cookie) are stored in the macOS Keychain, protected by the OS.
• App preferences are stored in the standard macOS UserDefaults location for this app.
• Thumbnail cache files may be stored under your macOS Caches directory to speed up repeat scans. You can delete the cache at any time from the app or from Finder.

5. Network use

The app talks directly to Google Photos endpoints to enumerate your library, fetch thumbnails, and move explicitly approved items to Trash. No network traffic is ever routed through a server operated by the developer.

6. Your choices

• You can sign out at any time from the app. Signing out removes the stored session material from the Keychain.
• You can delete the thumbnail cache from the app or from Finder.
• You can restore trashed items from Google Photos Trash for 60 days at photos.google.com.
• You can uninstall the app by dragging it to the Trash. That removes the app; your Google Photos library is untouched.

7. Privacy manifest declarations

The app bundles an Apple privacy manifest (PrivacyInfo.xcprivacy) declaring exactly three system API uses, each with Apple's documented reason code:

• UserDefaults (CA92.1): to read and write the app's own preferences.
• File timestamp (C617.1): to show file ages in the review UI.
• Disk space (E174.1): to check free space before writing the thumbnail cache.

The manifest declares no tracking, no tracking domains, and no collected data types.

8. Legal basis (GDPR)

Because the app does not transmit your personal data to any service we operate, we do not process your personal data under GDPR. Data you see in the app is either stored locally on your Mac or exchanged directly between your Mac and Google. Google's handling of your Google Photos data is governed by Google's own privacy policy.

9. Children

gpdedup is not directed at children under 13. We do not knowingly process personal data of children.

10. Changes to this policy

If we change this policy, the "Last updated" date at the top will change. Material changes are announced in the app's release notes.

11. Support

Questions: arti.ficial@fullstackoptimization.com. Bug reports and feature requests: support page.

Disclaimer. gpdedup is NOT affiliated with, endorsed by, or sponsored by Google LLC. Google Photos is a trademark of Google LLC.