Privacy Policy

Last updated: 28/01/2026

1. Information We Collect

We collect information you provide directly to us when using SkinGenie, including:

  • Facial images for skin analysis (temporarily, see Section 3)
  • AI-generated skin analysis results
  • Account information (email, name) if you create an account
  • Demographic information (age, gender)
  • Skin-related information (skin type, tone, concerns)
  • Environmental factors and lifestyle preferences
  • Saved skincare routines and product preferences

2. How We Use Your Information

We use the information we collect to:

  • Process and analyze facial images using AI technology
  • Generate personalized skincare routines
  • Save and manage your routines (if logged in)
  • Improve our AI recommendations and services
  • Send service-related communications

Legal Basis (GDPR): We process your data based on (a) your consent when you upload images or submit information, (b) our legitimate interest in providing and improving our services, and (c) contract performance when you create an account.

3. Facial Image Data & Retention

We take your privacy seriously, especially regarding facial images:

  • Temporary storage only: Images are stored for seconds during analysis, then automatically deleted
  • Maximum retention: Even if deletion fails, images are automatically purged within 1 hour
  • No training: Your images are NOT used to train AI models
  • No human review: Only automated AI systems process your images
  • Encrypted transfer: All uploads use HTTPS encryption

The analysis results (skin type, concerns, etc.) may be retained if you save a routine, but the original image is never stored.

4. Cookies & Analytics

We use cookies and similar technologies for:

  • Essential cookies: Required for authentication and site functionality
  • Analytics (PostHog): To understand how users interact with our service and improve the experience

You can disable non-essential cookies in your browser settings, though this may affect some functionality.

5. Sharing of Information

We do not sell your personal information. We may share your information with:

  • Supabase: Cloud database and temporary image storage (EU/US)
  • OpenAI: AI skin analysis processing (US)
  • PostHog: Analytics (EU)
  • Vercel: Website hosting (Global CDN)

These providers are contractually obligated to protect your data and only process it as instructed.

6. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Request deletion of your data and account
  • Portability: Receive your data in a portable format
  • Objection: Object to processing based on legitimate interest

To exercise these rights, contact us at skingenie.both674@passmail.net. We respond to requests within 30 days.

7. Data Security

We implement appropriate security measures including:

  • HTTPS encryption for all data transfers
  • Secure cloud infrastructure with access controls
  • Regular security reviews
  • Minimal data retention periods

8. International Transfers

Your data may be processed in the United States and European Union. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required.

9. Children's Privacy

SkinGenie is not intended for children under 13 (or 16 in the EU). We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us and we will delete it.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date.

11. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us at skingenie.both674@passmail.net