Privacy Policy

Last Updated: January 29, 2025

Effective Date: January 29, 2025

        Key Points:
        We do NOT store or retain your photos on our servers
Photos are processed in real-time by Google's AI and immediately discarded
Weekly subscribers: 13 transformation credits per week
Monthly subscribers: 50 transformation credits per month
We collect minimal data (only device ID and usage statistics)

    

1. Introduction

Welcome to Aura Beauty Studio ("we," "our," or "the App"). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our iOS mobile application. We are committed to protecting your privacy and handling your data in an open and transparent manner.

By using Aura Beauty Studio, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our App.

2. Information We Collect

2.1 Information You Provide Directly

Photos and Images: When you use our transformation features, you provide photos either by:
- Taking a photo with your device camera
- Selecting a photo from your device photo library
Transformation Preferences: Your selections of makeup styles, hair colors, nail designs, and other beauty transformation options

IMPORTANT - Photo Processing: Your photos are sent to Google's Gemini AI service for processing and transformation. We do NOT store, retain, or save your photos on our servers. Photos are processed in real-time and immediately discarded after the transformation is complete. The transformed images are returned directly to your device.

2.2 Information Collected Automatically

Device Identifier: A unique identifier for your device (stored securely in your device's Keychain), used to:
- Track your subscription status
- Count your transformation usage
- Sync your data across app sessions
Usage Data:
- Number of transformations performed (total, weekly, and monthly)
- Types of transformations selected
- App features accessed
- Session duration and frequency
- App crashes and errors
Subscription Information:
- Subscription type (weekly or monthly)
- Subscription status (active, expired, cancelled)
- Purchase receipts (managed by Apple and RevenueCat)
- Days remaining in subscription period

2.3 Information We Do NOT Collect

We explicitly do NOT collect:

Your name, email address, or phone number
Precise geolocation data
Biometric data for identification purposes
Social media profiles or contacts
Payment card information (handled entirely by Apple)

3. How We Use Your Information

3.1 Primary Purposes

We use the collected information for the following purposes:

Provide AI Transformation Services: Process your photos using artificial intelligence to apply makeup, change hairstyles, add nail art, and apply other beauty enhancements
Enforce Usage Limits: Track transformation credits to enforce subscription limits:
- Weekly subscribers: 13 transformations per 7-day cycle
- Monthly subscribers: 50 transformations per 30-day cycle
Manage Subscriptions: Verify subscription status, process purchases, handle renewals, and restore purchases
App Functionality: Enable core features, save transformation history locally on your device, and provide before/after comparisons
Improve Our Services: Analyze usage patterns to improve app performance, fix bugs, and develop new features
Customer Support: Respond to your requests, questions, and provide technical support

3.2 Legal Bases for Processing (GDPR)

We process your personal data based on the following legal grounds:

Consent: You provide explicit consent when you grant camera and photo library permissions
Contract Performance: Processing is necessary to provide you with the transformation services you subscribed to
Legitimate Interests: We have legitimate interests in improving our app, preventing fraud, and ensuring security

4. How We Share Your Information

4.1 Third-Party Service Providers

We share your information with the following third-party services to operate our App:

Google Gemini AI (Google LLC)

What We Share: Your photos (converted to base64 format) and text prompts describing the desired transformation
Purpose: AI-powered image processing and beauty transformation
Data Retention: Google does not store or retain your images. Images are processed in real-time and immediately discarded per Google's API terms
Location: Google's servers (global infrastructure, primarily US-based)
Privacy Policy: https://policies.google.com/privacy

RevenueCat, Inc.

What We Share: Device identifier, subscription status, purchase receipts
Purpose: Subscription management, purchase verification, revenue analytics
Location: United States
Privacy Policy: https://www.revenuecat.com/privacy

Firebase/Google Analytics (Google LLC)

What We Share: Device identifier, app usage events, session data
Purpose: App analytics, performance monitoring, crash reporting
Location: United States
Privacy Policy: https://firebase.google.com/support/privacy

Important Note on Facial Data: While your photos may contain facial features, we do NOT use facial recognition technology for identification, authentication, or marketing purposes. Your photos are processed solely to apply beauty transformations. We comply with Apple's strict guidelines prohibiting the use of facial mapping data for marketing, advertising, or data mining purposes.

4.2 We Do NOT:

Sell your personal information to third parties
Share your photos with advertisers
Use your photos for training our own AI models
Share your data for marketing purposes
Provide your information to data brokers

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court, government agency, or law enforcement).

5. Data Storage and Security

5.1 Where Your Data is Stored

On Your Device: Transformation history (original and transformed photos) is stored locally in your device's app storage
Our Backend Server: Device identifier, subscription status, and usage counts (hosted on Render.com infrastructure)
Third-Party Services: As described in Section 4.1

5.2 Security Measures

We implement appropriate technical and organizational security measures to protect your information:

Encryption in Transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption
Secure Storage: Device identifiers are stored securely in iOS Keychain (hardware-encrypted)
Access Controls: Limited access to backend systems with authentication and authorization
No Photo Storage: We do not store photos on our servers, eliminating the risk of photo data breaches
Regular Updates: We keep our systems and dependencies up-to-date with security patches

        Data Security Note: While we take reasonable measures to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
    

6. Data Retention and Deletion

6.1 Retention Periods

Photos: NOT retained on our servers (processed in real-time only). Locally stored transformation history remains on your device until you delete the app or clear app data
Device Identifier: Retained while you have the app installed and for 90 days after account deletion to prevent abuse
Usage Data: Retained for 24 months for analytics purposes, then automatically deleted
Subscription Data: Retained while subscription is active and for 7 years after cancellation (for tax and legal compliance)

6.2 How to Delete Your Data

You can request deletion of your data by:

Opening the App
Going to Settings
Tapping "Delete Account"
Confirming your request

Alternatively, email us at support@aurabeautystudio.com with your device identifier.

Alternatively, email us at m_tas@outlook.com with your device identifier.

Upon account deletion:

Your device identifier will be removed from our systems within 30 days
Usage statistics will be anonymized
Locally stored photos on your device will remain until you delete the app
Subscription history will be retained for legal compliance (7 years)

7. Your Privacy Rights

7.1 Rights for All Users

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate data
Deletion: Request deletion of your data (subject to legal retention requirements)
Opt-Out: Disable analytics tracking (contact us for instructions)
Withdraw Consent: Revoke camera/photo permissions in iOS Settings > Privacy > Aura Beauty Studio

7.2 GDPR Rights (European Economic Area Users)

If you are located in the EEA, you have additional rights under GDPR:

Data Portability: Receive your data in a machine-readable format
Restrict Processing: Request limitation of how we process your data
Object to Processing: Object to processing based on legitimate interests
Automated Decision-Making: We do not make automated decisions with legal or significant effects without human intervention
Supervisory Authority: Lodge a complaint with your local data protection authority

7.3 CCPA/CPRA Rights (California Users)

If you are a California resident, you have rights under CCPA/CPRA:

Right to Know: Request disclosure of personal information collected, used, or shared
Right to Delete: Request deletion of personal information
Right to Opt-Out: We do not sell your personal information
Right to Non-Discrimination: We will not discriminate against you for exercising your rights
Right to Correct: Request correction of inaccurate personal information
Sensitive Personal Information: Your photos may contain sensitive biometric data. We process them solely to provide the transformation service you requested

7.4 Exercising Your Rights

To exercise any of these rights, contact us at:

Email: m_tas@outlook.com
In-App: Settings > Privacy Rights Request

We will respond to your request within 30 days (GDPR) or 45 days (CCPA).

8. Children's Privacy

Our App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at m_tas@outlook.com, and we will delete such information from our systems.

9. Subscription and Usage Limits

9.1 Credit System

Aura Beauty Studio operates on a credit-based subscription model:

Weekly Subscription: 13 transformation credits per 7-day cycle
- Credits reset every 7 days from your subscription start date
- Unused credits do not roll over to the next cycle
Monthly Subscription: 50 transformation credits per 30-day cycle
- Credits reset every 30 days from your subscription start date
- Unused credits do not roll over to the next cycle

9.2 Beyond Limits

Once you reach your credit limit:

You will not be able to perform additional transformations until your credits reset
You will be notified before using your last credit
You can upgrade to a higher tier or wait for your credits to reset
No additional transformations are supported beyond your subscription limits

9.3 Fair Use Policy

By continuing to use the App, you acknowledge and accept these usage limits. Attempts to circumvent these limits may result in account termination.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have data protection laws that differ from the laws of your country.

When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as:

Standard Contractual Clauses approved by the European Commission
Adequacy decisions by the European Commission
Privacy Shield certification (where applicable)

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

We will update the "Last Updated" date at the top of this policy
For material changes, we will notify you via:
- In-app notification
- Email (if you provided one)
- Prominent notice in the App
Your continued use of the App after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Third-Party Links and Services

Our App may contain links to third-party websites, services, or content. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any information.

13. California Residents - Do Not Sell My Personal Information

We do not sell your personal information as defined by the California Consumer Privacy Act (CCPA). We have not sold personal information in the past 12 months. If our practices change, we will update this policy and provide you with an opt-out mechanism.

14. EU Representative

For users in the European Union, our designated representative can be contacted at:

Email: m_tas@outlook.com

15. Data Protection Officer

For data protection inquiries, you may contact our Data Protection Officer at:

Email: m_tas@outlook.com

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: m_tas@outlook.com

Privacy Inquiries: m_tas@outlook.com

Data Protection Officer: m_tas@outlook.com

Email: m_tas@outlook.com

Response Time: We aim to respond to all privacy inquiries within 30 days.

17. Consent

By using Aura Beauty Studio, you consent to this Privacy Policy and agree to its terms. If you do not agree with this policy, please do not use our App.