PRIVACY POLICY
SkinSnap
This Privacy Policy explains how SkinSnap collects, uses, discloses, and protects your information when you use the SkinSnap mobile application (“App”) and the related web site at https://skinsnap.app (“Site”). By installing or using the App or Site you agree to the practices described below. If you do not agree, please do not use the App or Site.────────────────────────────────────────
A. Information You Provide Directly • Account Data – E-mail address, password, display name, and optionally a profile photo (Firebase Auth). • Facial Image – A single still photograph of your face captured when you tap “Scan” for skin analysis. • Customer Support Data – E-mails or other communications you send to us.B. Information We Collect Automatically • Device Information – Device model, operating-system version, language, and region (collected by Firebase Analytics and Crashlytics). • Usage Data – App launch times, screen views, button taps, crash reports (Firebase Analytics / Crashlytics). • Subscription & Payment Data – Apple transaction ID, product identifier, and payment status (provided by Apple In-App Purchase APIs and Stripe Apple Pay). • Anonymous Device ID – A randomly generated UUID stored in iOS UserDefaults if you use the App without signing in.C. Cookies & Similar TechnologiesWe use Supabase and Stripe session cookies on the Site for secure authentication and payment processing. The App does not use cookies.
• Provide and operate the App and its features. • Perform AI-based skin analysis and deliver personalized recommendations. • Process and manage paid subscriptions, including fraud prevention. • Save your historical analysis so you can track progress. • Send service-related notices such as subscription status or policy changes. • Monitor, analyze, and improve the App’s performance and stability. • Provide customer support and respond to inquiries. • Comply with legal obligations and enforce our Terms of Service.We do NOT use your information for advertising or cross-app tracking.
a. Limited Purpose – Facial images are used only to compute skin-condition scores (acne, wrinkles, etc.) and show them to you. b. Third-Party Processing – Your image is transmitted once to: • OpenAI, LLC (USA) – GPT-4 Vision API (analysis) • Supabase, Inc. (USA) – Encrypted object storage backup c. No other third parties receive or process your facial image. d. Retention – Raw images are automatically deleted 7 days after upload, or immediately when you tap “Delete Scan.” Derived textual analysis persists until you delete your account or specific scan. e. User Control – Settings → “Delete My Data” permanently removes all stored images and results. f. No Sale/Sharing – We do not sell or share facial images or analysis for advertising, identification, or any unrelated purpose.
We rely on the following legal bases: (i) contract necessity to provide the service; (ii) your consent for capturing and processing facial images; (iii) legitimate interests to maintain and improve the App; and (iv) legal obligation for financial-record keeping.
We share the minimum necessary information with: • Apple, Inc. – In-App Purchases and payment dispute resolution. • Stripe, Inc. – Apple Pay token processing (no full card numbers). • OpenAI, LLC – Image analysis. • Supabase, Inc. – Database and file storage hosting. • Google LLC (Firebase, Crashlytics) – Analytics and crash reporting. • Service providers under contract who perform services for us and are bound to keep information confidential.We may also disclose information if required by law or to protect rights, property, or safety. We never sell personal information.
Your information may be processed in the United States and other countries where our service providers operate. We use Standard Contractual Clauses or equivalent safeguards for transfers from the EEA/UK/Switzerland.
• Facial Images – ≤ 7 days (or immediate deletion upon request). • Subscription & Transaction Records – 10 years (legal obligation). • Crash & Analytics Logs – 24 months (aggregated thereafter). • Account Data – Until you delete your account or request erasure.
Depending on your jurisdiction, you may have rights to access, correct, delete, or port your data, and to object to or restrict processing. To exercise these rights, contact privacy@skinsnap.app. We will verify your request and respond within the time period required by law.California residents: we do not “sell” or “share” personal information as defined by the CCPA. We honor Global Privacy Control opt-out signals on the Site.
We use industry-standard safeguards, including: • TLS 1.2+ encryption in transit • AES-256 encryption at rest (Supabase) • Role-based access controls and audit logging • Regular penetration testing and vulnerability scanningNo method of transmission or storage is 100 % secure; therefore we cannot guarantee absolute security.
SkinSnap is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe we have collected such information, contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. Material changes will be announced via in-App notice or email. Continued use after the effective date constitutes acceptance.
SkinSnap, LLC650 California St, San Francisco, CA 94108 USAEmail: privacy@skinsnap.appSupport: https://skinsnap.app/support──────────────© 2025 SkinSnap, LLC. All rights reserved.
We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.