// Trust & Security Report

    Dreamlike Tech Ltd. logo

    Dreamlike Tech Ltd.

    AI art generator using Stable Diffusion, with text-to-image, image-to-image, upscaling, and editing capabilities. Free and paid tiers.

    Certifications held

    0

    Maturity

    Startup

    Trains on your data

    Unknown

    Trust center

    No

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    > Show 8 unconfirmed / not-held certifications
    SOC 2 (Type I or II)
    NOT CONFIRMED

    No public evidence of SOC 2 certification on vendor domain or trust center.

    source: dreamlike.art
    ISO 27001
    NOT CONFIRMED

    No public evidence of ISO 27001 certification on vendor domain.

    source: dreamlike.art
    GDPR Compliance
    NOT CONFIRMED

    Website experiencing technical issues (HTTP 522); no public GDPR statement or DPA template found. UK-based company serving EU users should have explicit GDPR compliance documentation, but this is not publicly visible.

    source: dreamlike.art
    HIPAA
    NOT CONFIRMED

    No public evidence; not applicable for consumer AI art platform.

    source: dreamlike.art
    PCI DSS
    NOT CONFIRMED

    No public evidence of PCI DSS compliance.

    source: dreamlike.art
    FedRAMP
    NOT CONFIRMED

    No public evidence of FedRAMP certification.

    source: dreamlike.art
    ISO 27017 (Cloud Security)
    NOT CONFIRMED

    No public evidence of ISO 27017 certification.

    source: dreamlike.art
    ISO 27018 (Personal Data in Cloud)
    NOT CONFIRMED

    No public evidence of ISO 27018 certification.

    source: dreamlike.art

    // Privacy & AI training

    Trains on customer data

    Not stated

    Data processing agreement

    Not offered

    Data region

    Unknown (UK-based company, likely EU servers, but not documented)

    Unknown. Most free AI art platforms use Stable Diffusion or similar models that may train on user-generated content. Dreamlike.art's specific training practices are undocumented. Users should verify directly with vendor at contact@dreamlike.art.

    // Security controls

    Encryption in transit

    Unknown; general claim of 'strong encryption' found in third-party reviews but no vendor documentation

    moge.ai

    Encryption at rest

    Not documented

    dreamlike.art

    Data retention policy

    Not documented; website inaccessible

    dreamlike.art

    Access controls

    Not documented

    dreamlike.art

    // Products & data scope

    Dreamlike.art Free TierAI Art Generation

    data: Prompts, generated images, user account data. Scope of data retention and training use unknown.

    Free plan with 50 daily credits. Users upload prompts and receive AI-generated images. Ownership of generated images claimed by users per search results.

    Dreamlike.art Paid TiersAI Art Generation

    data: Same as free tier plus payment information (processed by payment gateway)

    Subscription-based plans with additional credits. Payment data handling not documented on accessible pages.

    // What to watch

    • Website experiencing persistent HTTP 522 errors; privacy policy and terms of service not accessible for verification
    • No trust center or public security documentation found
    • No third-party security certifications (SOC 2, ISO 27001) publicly claimed
    • GDPR compliance posture unclear for UK company serving EU users; no DPA or explicit compliance statement found
    • AI data training practices undocumented; unclear if user-generated images are used to train models
    • Company appears to be solo/micro-team operation (1 employee per LinkedIn); minimal corporate security infrastructure visible
    • No public commitment to data protection frameworks or standards
    • Payment data handling not documented (critical for compliance in UK/EU)

    // At a glance

    Pricing model

    Freemium (free daily credits + paid subscription for additional credits)

    Self-hostable

    No

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Dreamlike Tech Ltd.'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-07-07. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    dreamlike.art

    > Browse all vendor trust reports