EXIF metadata not stripped from profile image

> url: https://my.informatica.com/profile/username When uploading JPEG/jpg images as profile picture, the EXIF metadata is not removed or changed in any way. if you upload a JPEG/jpg with EXIF metadata on profile picture interface, it isn't stripped. This can lead to disclosure of location or other personal information. and since profile picture is exposed to other users in discussions and posts/blogs, it is not safe to keep the image data as it is. Steps To Reproduce: * take a testing image with any EXIF tags filled (you can test with the attached image on this report) {F4318861} * upload this image in profile picture. * after you upload image download the image from profile picture(by right click) * Use Windows properties tool or any EXIF viewer(i used jimpl web application), check the metadata. * Whatever was there when uploaded should be there when downloaded {F4318862} ^ EXIF data of downloaded profile picture after uploading... Supporting Material/References: > https://hackerone.com/reports/446238 ## Impact As you can see lot of private data including ==Location== is being exposed through profile picture which can be accessed by anyone through questions or posts/blogs written by the customer, which is not safe and must be mitigated, it's always considered best to strip any information available in images to prevent unwanted storage of sensitive data in any form which can be misused.