Privacy Policy
This policy describes what information the Know Your Skin mobile application (the "app") collects, how it is used, who it is shared with, and your rights regarding it. The operator of the app is referred to as "we" or "us".
1. Information we collect
- Account information. Email address, display name, and a hashed password; or the opaque user identifier provided by Apple or Google if you sign in with those services.
- Profile information. Optional details about your skin such as skin type, concerns, sensitivities, allergies, pregnancy status if disclosed, date of birth, and country. You provide these yourself.
- Skincare activity. Products you add to your shelf, routines you log, journal entries, mood ratings, and photos you take inside the app.
- Device information. Model, OS version, app version, and diagnostic data required to investigate crashes.
- Approximate location. Used only to fetch local weather and UV data when you explicitly grant location permission. We do not store precise coordinates.
- Photos. When you take a product scan, progress photo, or selfie, we store the image on our servers (via Cloudflare R2) for the purposes described below.
2. How we use the information
- Provide the core features of the app: shelf, routines, journal, tracking, recommendations.
- Personalize recommendations based on your skin profile.
- Process product photos with third-party AI services (Google Cloud Vision for OCR, OpenAI for ingredient and skin analysis) to extract text and analyze skin condition.
- Show local weather and UV so the app can suggest appropriate sunscreen behavior.
- Investigate bugs and crashes.
3. Data we do not collect or do
- We do not sell personal data.
- We do not use third-party advertising SDKs or tracking pixels.
- We do not share photos or journal content with advertisers.
- We do not use your data to train public AI models.
4. Third-party service providers
The following providers process data on our behalf, limited to what is needed for the feature they support:
- Sign in with Apple — authentication.
- Google Sign-In — authentication.
- Cloudflare R2 — image storage.
- Google Cloud Vision API — OCR on product label photos.
- OpenAI — ingredient and skin analysis on the photos you submit to the analyzer.
- OpenWeather — local weather and UV data.
5. Retention and deletion
We retain your data for as long as your account exists. You can delete your account from inside the app (Settings → Delete Account) or via the instructions on our account deletion page. Deletion removes your profile, shelf, tracking, journal entries, and photos within 30 days, except where we are required to retain records for legal or fraud-prevention reasons.
6. Children
The app is not directed to children under 13, and we do not knowingly collect information from them. If you believe a child has provided personal information to us, please contact us at the address below and we will promptly delete it.
7. Your rights
Depending on your jurisdiction (GDPR, UK GDPR, CCPA/CPRA, and similar regimes), you may have the right to access, correct, export, or delete the personal data we hold about you, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. We will respond within the timeframe required by applicable law.
8. International data transfers
Our servers and some of our service providers operate outside your country of residence. Where required, we rely on standard contractual clauses or equivalent safeguards to protect data transferred internationally.
9. Security
We protect data in transit with TLS and store passwords using a one-way hash. No method of transmission or storage is perfectly secure; we cannot guarantee absolute security.
10. Changes to this policy
We will update this page and change the "Last updated" date above when the policy changes materially.
11. Contact
Questions about this policy: [email protected].