// Trust & Security Report

    LetsEnhance, Inc. logo

    LetsEnhance, Inc.

    AI-powered image enhancement and upscaling platform with free and premium tiers, including Claid.ai for e-commerce product imagery automation and APIs for enterprise integration.

    Certifications held

    2

    Maturity

    Growth

    Trains on your data

    Yes

    Trust center

    No

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    GDPR
    HELD

    From help documentation (verbatim): 'we are fully compliant with the GDPR and CCPA law policies.' This is a self-attested compliance posture, not a third-party certification or audit.

    Verify on help.letsenhance.io
    CCPA
    HELD

    From help documentation (verbatim): 'we are fully compliant with the GDPR and CCPA law policies.' This is a self-attested compliance posture, not a third-party certification or audit.

    Verify on help.letsenhance.io
    > Show 8 unconfirmed / not-held certifications
    SOC 2 Type 1
    NOT CONFIRMED

    No public evidence of certification found across privacy policy, MSA, help documentation, or public sources.

    source: letsenhance.io
    SOC 2 Type 2
    NOT CONFIRMED

    No public evidence of certification found across privacy policy, MSA, help documentation, or public sources.

    source: letsenhance.io
    ISO 27001
    NOT CONFIRMED

    No public evidence of certification found across privacy policy, MSA, help documentation, or public sources.

    source: letsenhance.io
    HIPAA
    NOT CONFIRMED

    Not mentioned in any vendor documentation. Service is not positioned for healthcare or covered entity use.

    source: letsenhance.io
    PCI DSS
    NOT CONFIRMED

    No public evidence of certification found. Payment information is encrypted but no PCI DSS certification mentioned.

    source: letsenhance.io
    ISO 27017
    NOT CONFIRMED

    No public evidence of certification found across any vendor documentation.

    source: letsenhance.io
    ISO 27018
    NOT CONFIRMED

    No public evidence of certification found across any vendor documentation.

    source: letsenhance.io
    ISO 27701
    NOT CONFIRMED

    No public evidence of certification found across any vendor documentation.

    source: letsenhance.io

    // Privacy & AI training

    Trains on customer data

    Yes

    Data processing agreement

    Not offered

    Data region

    Data processing location not explicitly specified in available documentation. Company has offices in San Francisco, CA (per MSA) and is Ukraine-based startup.

    Master Service Agreement permits Let's Enhance to 'use, copy, store, modify, reproduce Your Content' for service improvement and 'creating de-identified data for business purposes.' No explicit opt-out for AI training mentioned. Data controller/processor model: customers act as data controllers, Let's Enhance as data processor.

    // Security controls

    Encryption in transit

    Industry standard encryption mentioned; payment information specifically encrypted

    letsenhance.io

    Encryption at rest

    Personal details and stored data encrypted on servers, accessible only at account level

    help.letsenhance.io

    Access controls

    Data accessible only from account level; users responsible for account security

    help.letsenhance.io

    Data retention

    Data retained for duration of active account; 12 months maximum after account closure

    letsenhance.io

    Security safeguards

    MSA commits to 'industry best standards for administrative, physical, and technical safeguards'

    letsenhance.io

    Breach notification

    No breach notification procedure detailed in available documentation

    letsenhance.io

    Incident response

    Not explicitly documented

    letsenhance.io

    // Products & data scope

    UpscalerImage Enhancement

    data: User-uploaded images

    Increases resolution up to 512 MP for print and web use; supports JPEG, PNG, WebP

    EnhancerImage Enhancement

    data: User-uploaded images

    Improves photo quality and corrects colors; Prime mode for general use, Gentle mode for fine details

    RestorerImage Restoration

    data: User-uploaded images

    Repairs damage, reduces noise, corrects exposure; designed for old/damaged photos

    Face EnhancerPortrait Enhancement

    data: User-uploaded images with faces

    Specialized enhancement for portrait and facial imagery

    Anime UpscalerSpecialized Upscaling

    data: User-uploaded anime/art images

    Optimized for anime and illustrated artwork upscaling

    Background RemovalImage Manipulation

    data: User-uploaded images

    Automated background removal tool

    Image to VideoVideo Generation

    data: User-uploaded images

    Converts still images to video; can be used in conjunction with enhancement tools

    Video UpscalerVideo Enhancement

    data: User-uploaded video files

    Upscales video resolution and quality

    Text EnhancerOCR/Text Enhancement

    data: User-uploaded images with text

    Enhances text clarity in scanned documents and images

    Claid.aiEnterprise E-Commerce

    data: Product images and catalogs

    Batch processing for e-commerce product imagery; automates background, quality, consistency

    Enhancer APIAPI

    data: Images submitted via API

    Programmatic access to enhancement functionality for enterprise integration

    Upscaler APIAPI

    data: Images submitted via API

    Programmatic access to upscaling functionality for enterprise integration

    // What to watch

    • No SOC 2 or ISO 27001 certification despite being a data processing company handling sensitive user images — unusual for B2B/enterprise positioning
    • AI training on customer data permitted under MSA without explicit opt-out mechanism
    • Data privacy concerns noted in third-party reviews regarding unclear commercial rights and data usage
    • Limited liability cap ($1000) in MSA raises concerns for enterprise customers handling high-value content
    • No standalone DPA provided; data processing terms embedded in MSA only
    • Encryption standards described only as 'industry standard' without specifics (no mention of AES-256, TLS 1.2+, etc.)
    • No breach notification procedure documented in public materials
    • Billing practices allow unilateral term changes with ongoing authorization to charge payment methods
    • GDPR/CCPA compliance claimed but not independently verified through third-party audit
    • Security safeguards described as 'industry best standards' but no formal audit or certification backs this claim

    // At a glance

    Pricing model

    Freemium with per-credit consumption; paid tiers (monthly subscriptions); enterprise pricing available

    Self-hostable

    No

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on LetsEnhance, Inc.'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-07-07. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    letsenhance.io

    > Browse all vendor trust reports