Privacy Policy

Last updated: May 14, 2026

This policy describes what information the Know Your Skin mobile application (the "app") collects, how it is used, who it is shared with, and your rights regarding it. The operator of the app is referred to as "we" or "us".

1. Information we collect

• Account information. Email address, display name, and a hashed password; or the opaque user identifier provided by Apple or Google if you sign in with those services.
• Profile information. Optional details about your skin such as skin type, concerns, sensitivities, allergies, pregnancy status if disclosed, date of birth, and country. You provide these yourself.
• Skincare activity. Products you add to your shelf, routines you log, journal entries, mood ratings, and photos you take inside the app.
• Device information. Model, OS version, app version, and diagnostic data required to investigate crashes.
• Approximate location. Used only to fetch local weather and UV data when you explicitly grant location permission. We do not store precise coordinates.
• Photos. When you take a product scan, progress photo, or selfie, we store the image on our servers (via Cloudflare R2) for the purposes described below.
• Affiliate click events. When you tap a "Buy on Amazon" (or similar) link inside the app, we record the event for commission attribution and internal analytics. See section 6 below for what is logged and how long it is retained.

2. Face data

Some features of the app rely on photos of your face ("face data"): the onboarding selfie used to estimate your skin type and tone, the daily progress selfies you log in the journal, and the 7-day / 30-day progress comparison. This section describes exactly how that face data is handled.

• What we collect. Photos of your face that you voluntarily capture inside the app. We do not generate or store a faceprint, face template, face geometry, or any other biometric identifier. We do not perform face recognition and we cannot identify you from your photos.
• Why we store it. Progress selfies are stored so that you can view them on your timeline, compare them over time, and so the app can run the periodic skin-progress analyses you have requested. The onboarding selfie is processed once for skin-type estimation and is not retained after the analysis completes.
• How long we store it. Progress photos remain in your account for as long as your account exists, or until you delete the individual photo or your account, whichever happens first. When you delete a photo it is removed from our storage within 30 days. When you delete your account, all of your face photos are removed from our storage within 30 days. The onboarding selfie is discarded immediately after the analysis result is returned and is never persisted on our servers.
• Who we share it with, and why.
  • OpenAI — we send your selfies to OpenAI's API so its vision model can return a skin-condition analysis (skin type, visible concerns, progress notes). This is the only purpose for which the photo is sent. Per OpenAI's API data usage policy, content submitted through the API is not used to train OpenAI's models, and is retained by OpenAI for up to 30 days solely for abuse and misuse monitoring, after which it is deleted. See OpenAI's API data usage policy and OpenAI's privacy policy.
  • Cloudflare R2 — we store progress photos in Cloudflare R2 object storage so the app can display them back to you. Cloudflare acts only as a storage processor on our behalf; it does not analyze the photos, does not use them for any purpose of its own, and retains them only for as long as we keep them in our bucket. See Cloudflare's privacy policy.
• Who we do not share it with. We do not sell face data, we do not share it with advertisers or data brokers, we do not use it to train any AI model (ours or a third party's), and we do not share it with any third party other than the two processors named above.

3. How we use the information

• Provide the core features of the app: shelf, routines, journal, tracking, recommendations.
• Personalize recommendations based on your skin profile.
• Process product photos with third-party AI services (Google Cloud Vision for OCR, OpenAI for ingredient and skin analysis) to extract text and analyze skin condition.
• Show local weather and UV so the app can suggest appropriate sunscreen behavior.
• Investigate bugs and crashes.

4. Data we do not collect or do

• We do not sell personal data.
• We do not embed third-party advertising SDKs or tracking pixels in the app. Tapping an outbound affiliate link sends you to the retailer's site, where their own tracking applies (see section 6).
• We do not share photos or journal content with advertisers.
• We do not use your data to train public AI models.

5. Third-party service providers

The following providers process data on our behalf, limited to what is needed for the feature they support:

• Sign in with Apple — authentication.
• Google Sign-In — authentication.
• Cloudflare R2 — image storage.
• Google Cloud Vision API — OCR on product label photos.
• OpenAI — ingredient and skin analysis on the photos you submit to the analyzer.
• OpenWeather — local weather and UV data.
• Amazon Associates — commission attribution for outbound product links. When you tap a "Buy on Amazon" link, your browser is redirected to Amazon with our Associates tag appended; Amazon may set its own cookies and process the visit under Amazon's privacy notice.

6. Affiliate links and click tracking

The app participates in the Amazon Associates Program and may participate in other retailer affiliate programs in the future. When you tap an affiliate "Buy" link, we log the click on our servers so we can (a) reconcile commissions paid by the retailer and (b) understand which products are popular. Each click record contains:

• Your account ID (if you are signed in) and country code.
• The product ID, retailer, marketplace, and ASIN you tapped.
• A truncated hash of your IP address (not the IP itself) and your device user-agent string, used for fraud detection.
• A timestamp.

We retain click records for up to 24 months for accounting and analytics. The legal basis for this processing is our legitimate interest in running and auditing the affiliate program (Art. 6(1)(f) GDPR). Affiliate click records are deleted (or unlinked from your account) when you delete your account, subject to the legal-records exception in section 7.

We do not share affiliate click data with advertisers or data brokers. The only parameter shared with Amazon at click time is our Associates tag, which Amazon uses to credit qualifying purchases to us. Amazon's own processing of the resulting visit (cookies, purchase tracking, etc.) is governed by Amazon's privacy notice linked above.

7. Retention and deletion

We retain your data for as long as your account exists. You can delete your account from inside the app (Settings → Delete Account) or via the instructions on our account deletion page. Deletion removes your profile, shelf, tracking, journal entries, photos, and affiliate click records within 30 days, except where we are required to retain records for legal, accounting, or fraud-prevention reasons.

8. Children

The app is not directed to children under 13, and we do not knowingly collect information from them. If you believe a child has provided personal information to us, please contact us at the address below and we will promptly delete it.

9. Your rights

Depending on your jurisdiction (GDPR, UK GDPR, CCPA/CPRA, and similar regimes), you may have the right to access, correct, export, or delete the personal data we hold about you, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. We will respond within the timeframe required by applicable law.

10. International data transfers

Our servers and some of our service providers operate outside your country of residence. Where required, we rely on standard contractual clauses or equivalent safeguards to protect data transferred internationally.

11. Security

We protect data in transit with TLS and store passwords using a one-way hash. No method of transmission or storage is perfectly secure; we cannot guarantee absolute security.

12. Changes to this policy

We will update this page and change the "Last updated" date above when the policy changes materially.

13. Contact

Questions about this policy: [email protected].