Privacy Policy

Last Updated: November 15, 2024

At Miresa AI, we value our users' privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you use the Miresa AI mobile application ("App").

1. Information We Collect

1.1 Personal Information

  • Name and surname
  • Email address
  • Profile photo
  • Date of birth
  • Skin type and characteristics

1.2 Skin Analysis Data (Including Face Data)

  • Facial Photographs: High-resolution images of your face captured via device camera for skin analysis purposes only. These images are NOT used for facial recognition, biometric identification, or any authentication purposes.
  • AI Analysis Results: Derived data including scores (0-100) for 10 skin health categories: redness, dark circles, shine/oiliness, pore size, dryness, blemishes, firmness, brown spots, wrinkles, and eye bags.
  • Skin Health History: Historical records of your skin analysis over time to track progress.
  • Product Usage Records: Information about skincare products you've logged or analyzed.

Important: We collect face data solely for skin health analysis. We do NOT create facial recognition templates, we do NOT use your face data for identification purposes, and we do NOT share your face data for advertising or marketing.

1.3 Usage Data

  • App usage statistics
  • Device information (model, operating system)
  • IP address
  • Location data (with your permission)

2. How We Use Your Information

We use the collected information for the following purposes:

  • Providing personalized skincare recommendations
  • Conducting AI-powered skin analysis
  • Improving app performance
  • Providing customer support
  • Security and fraud prevention
  • Fulfilling legal obligations

3. Information Sharing

We may share your personal information with third parties in the following situations:

3.1 Face Data Sharing with Third-Party Service Providers

Your facial photographs are shared with the following third parties for processing purposes only:

  • OpenAI (GPT-4 Vision API): We send your facial photographs to OpenAI's secure servers for AI-powered skin analysis.
    • Purpose: To analyze your skin health across 10 categories
    • Data Sent: Base64-encoded facial photographs
    • Retention: OpenAI processes images immediately and does NOT retain them after the API call completes
    • Training: OpenAI does NOT use customer API data to train their models
    • Privacy Policy: https://openai.com/policies/privacy-policy
  • Supabase (Cloud Storage): We store your facial photographs and analysis results on Supabase's secure cloud infrastructure (AWS-backed).
    • Purpose: Secure storage of your skin analysis images and results
    • Security: Industry-standard encryption (SSL/TLS in transit, AES-256 at rest)
    • Access Control: Role-based access control and row-level security policies
    • Privacy Policy: https://supabase.com/privacy

We do NOT:

  • Sell your face data to third parties
  • Share your face data with advertisers
  • Use your face data for marketing purposes
  • Share your face data with social media platforms
  • Provide your face data to employers or insurance companies
  • Use your face data for facial recognition or identification

3.2 Other Information Sharing

  • Business Partners: For product recommendations with your consent (does not include face data)
  • Legal Requirements: For legal obligations and court orders
  • Business Transfer: In case of company merger or acquisition

4. Data Security

We use industry-standard security measures to protect your data:

  • SSL/TLS encryption
  • Secure data centers
  • Regular security audits
  • Access control and authentication
  • Data backup and recovery systems

5. Children's Privacy

Our App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.

6. Data Deletion and Account Cancellation

You have the right to delete your account and all your data. To delete your data:

  • Within the app: Profile → Settings → Privacy → Delete Account
  • By email: Send a request to support@miresa.ai

Your deletion request will be processed within 30 days. Some data may be retained longer due to legal obligations.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your app experience:

  • Essential Cookies: For core app functionality
  • Analytics Cookies: For usage statistics
  • Functional Cookies: To remember your preferences

8. User Rights

Under GDPR and applicable privacy laws, you have the following rights:

  • Right to access your data
  • Right to request data correction
  • Right to request data deletion
  • Right to object to data processing
  • Right to data portability
  • Right to object to automated decision-making

9. International Data Transfers

Your data may be stored on servers outside the European Economic Area, within a secure and legal framework. Appropriate security measures are in place for these transfers.

10. Privacy Policy Changes

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or app notification.

11. Contact

If you have questions about our privacy policy, please contact us:

12. Data Retention Periods

  • Account Information: While your account is active
  • Facial Photographs & Skin Analysis Data: Retained while your account is active, up to a maximum of 5 years or until you request deletion. Upon account deletion, all face data is permanently deleted within 24-48 hours.
  • Usage Data: 2 years
  • Support Records: 3 years
  • OpenAI Processing: Face data sent to OpenAI is processed immediately (2-5 seconds) and NOT retained after the API call completes

Your Control: You can delete individual skin analysis results or your entire account at any time via Profile → Settings → Privacy → Delete Account. Deletion requests are typically processed within 24 hours.

This privacy policy contains the terms you agree to by using the Miresa AI application. Please check for updates regularly.