Privacy Policy

We collect the following categories of personal data when you use GlowUp AI: Account data: Your email address and password (stored encrypted) when you create an account. Skin photos: Photos you voluntarily submit for AI skin analysis. These are stored privately and associated only with your account. AI analysis results: The skin scores and insights generated from your photos, stored in your personal history. Lifestyle logs: Sleep, hydration, diet, stress, and exercise data you optionally choose to log. Skincare products: Product names and ingredient lists you add to your routine. Usage data: How you interact with the app (pages visited, features used) to help us improve the product. Device data: Browser type, device type, and IP address for security purposes.

GlowUp AI processes facial photographs for the purpose of AI-powered skin analysis. These photos may constitute biometric data under certain jurisdictions including the Illinois Biometric Information Privacy Act (BIPA) and the EU General Data Protection Regulation (GDPR). By submitting a photo for analysis, you explicitly consent to: — The processing of your facial image by OpenAI's GPT-4o Vision API solely for the purpose of generating your personal skin analysis — The storage of your photos in your private account on Supabase encrypted cloud storage — The association of analysis results with your account history We do not: — Share your photos with any third party except OpenAI solely for analysis processing — Use your photos to train AI models — Sell or license your photos or biometric data to anyone — Store photos beyond the period of your active account You may delete all your photos and data at any time from Profile → Data & Privacy.

We use your data exclusively to: — Provide and improve the GlowUp AI service — Generate personalized skin analysis and insights — Send you notifications you have opted into — Process subscription payments via Stripe (payment data is handled entirely by Stripe — we never store card numbers) — Comply with legal obligations We do not use your data for advertising targeting, do not sell it to data brokers, and do not share it with third parties except as described in Section 4.

GlowUp AI uses the following third-party services: OpenAI (openai.com) — processes your skin photos for AI analysis. Subject to OpenAI's Privacy Policy. Supabase (supabase.com) — stores your account data, photos, and history in an encrypted database. Stripe (stripe.com) — processes subscription payments. We never store your payment card details. Google Analytics (optional, if enabled in your cookie preferences) — anonymous usage analytics. Each provider is contractually bound to protect your data and may not use it for their own purposes.

If you are located in the European Economic Area, you have the right to: Right of access — request a copy of all data we hold about you. Right to erasure — request deletion of your account and all associated data. Right to portability — request your data in a machine-readable format. Right to rectification — correct any inaccurate personal data. Right to restrict processing — limit how we use your data. Right to object — object to processing based on legitimate interests. To exercise any of these rights, email privacy@glowupai.com or use the deletion tool in Profile → Data & Privacy within the app.

If you are a California resident, you have the right to: Know what personal information we collect and how it is used. Request deletion of your personal information. Opt out of the sale of your personal information. GlowUp AI does not sell personal information. Non-discrimination for exercising your CCPA rights. To submit a CCPA request, email privacy@glowupai.com with the subject line 'CCPA Request'.

We retain your data for as long as your account is active. If you delete your account, all personal data including photos, logs, and analysis results is permanently deleted within 30 days. Aggregated, anonymized analytics data (not tied to your identity) may be retained indefinitely.

We use the following cookies: Necessary cookies: Session tokens and security cookies required for the app to function. These cannot be disabled. Analytics cookies (optional): Google Analytics cookies to understand usage patterns. Disabled unless you consent. Marketing cookies (optional): Used to measure the effectiveness of advertising campaigns. Disabled by default. Manage your cookie preferences at any time via the Cookie Settings link in the footer.

For any privacy questions or requests: Email: privacy@glowupai.com We aim to respond within 5 business days.