Glow Check Privacy Policy
Effective date: 2025‑10‑01
Glow Check (“we”, “us”, “our”) provides AI‑assisted skin and style analysis. This Privacy Policy explains what we collect, how we use and share it, how long we keep it, and your choices.
1) What we collect
- Account data: email, display name, profile settings.
- Photos and face data (“Face Data”): user‑submitted images, face landmarks/segments, quality metrics, and analysis scores derived from your photos.
- Usage and device data: app events, device model/OS, diagnostics.
- Purchase data: subscription status and identifiers from Apple/Google/RevenueCat. No full card numbers are received by us.
2) How we use data
- Provide core features: run skin/style analysis, generate scores and recommendations, show progress over time.
- Personalize content: routines, plans, reminders you opt into.
- Support, safety, fraud prevention, and legal compliance.
- Analytics to improve performance (in aggregate and de‑identified where possible).
We do not sell your personal data. We do not use Face Data to identify you or for advertising.
3) Face Data – detailed disclosures (required by App Store 5.1.1(i))
- Purpose: to analyze your skin/style, compute scores, and show progress.
- Processing location: analysis is performed on device or securely in the cloud when needed for the feature you use.
- Retention (no indefinite storage):
- Temporary processing copies: deleted within 24 hours after analysis completes.
- Originals you explicitly save to your profile: stored until you delete them or delete your account.
- Derived analysis results (scores, non‑reconstructable vectors): retained up to 12 months to show trends, then deleted or irreversibly de‑identified. We keep this period to provide long‑term progress charts.
- Third parties that receive Face Data and why:
- Google Cloud Vision/ML services (if a feature requires cloud inference): used solely to run the requested inference. Images are transmitted over TLS and not retained for model training; temporary copies are deleted within 24 hours.
- Supabase (storage/auth): stores only the photos you choose to keep in your profile and related metadata; encrypted at rest and in transit.
- Third parties that do not receive Face Data:
- Apple App Store / Google Play Billing / RevenueCat: subscription status and receipts only; no photos or Face Data are shared.
- We do not use Face Data for identity verification, advertising, model training, or selling.
- Your controls: you can delete any photo, clear analysis history, or delete your account at any time; we will remove Face Data and associated results from our systems (including third‑party storage we control) within 30 days, subject to lawful retention obligations.
-Temporary processing copies may be stored securely on servers located in the United States or the European Union, depending on region, and are automatically deleted within 24 hours.
4) Other data sharing
- Service providers under contract (cloud hosting, analytics, error reporting) access only what’s necessary to operate the service, under confidentiality and security terms.
- Legal, safety, or merger events: as required by law or to protect users; or as part of a transfer with notice and the same protections.
5) Security
- Encryption in transit (TLS) and at rest for stored content.
- Access controls, least‑privilege, and audits.
- We cannot guarantee absolute security, but we take commercially reasonable measures and continually improve safeguards.
6) Your rights and choices
- Access, correction, deletion, and portability of your data.
- Withdraw consent for Face Data processing at any time by turning off analysis features and deleting stored content.
- Opt‑out of marketing communications (where applicable).
Requests: anixagency7@gmail.com
7) International transfers
- We may process data in countries other than yours. We use approved transfer mechanisms (e.g., SCCs) where required.
8) Children
- Not intended for children under 13 (or the age required in your region). We do not knowingly collect data from children.
9) Legal bases (EEA/UK)
- Performance of a contract (provide the app), consent (Face Data processing and optional features), legitimate interests (security, analytics), and legal obligations (tax, fraud prevention).
10) Data retention summary
- Temp processing copies: ≤ 24 hours.
- Saved originals (user‑chosen): until you delete or delete your account.
- Derived analysis results: up to 12 months (then deleted/de‑identified).
- Billing/transaction records: per legal/accounting requirements.
- Support logs: ≤ 12 months unless needed longer for safety/legal reasons.
11) Contact
Glow Check Support
Email: anixagency7@gmail.com
12) Changes
We will update this policy as needed and post the new effective date. Material changes will be notified in‑app or by email where required.
13) Region‑specific notices
- California: we do not “sell” or “share” personal information as defined by the CCPA/CPRA. You may exercise rights described above.
- EEA/UK/Switzerland: you have rights of access, deletion, portability, objection/restriction, and to lodge a complaint with your supervisory authority.
14) No medical advice; limitation of liability
Results are cosmetic/wellness insights only and not medical advice. Always consult a qualified professional for medical concerns. To the maximum extent permitted by law, Glow Check and its providers are not liable for decisions made based on app outputs.