Last updated · April 29, 2026

Privacy Policy

GlowCheck AI ("we," "us," "our") respects your privacy. This policy describes how we collect, use, and protect information when you use the GlowCheck AI mobile application and our website at glowcheckai.app.

Overview

GlowCheck AI is a personal skincare companion. We were designed around a single uncompromising idea: the most personal data you have should never leave your hands unless it’s strictly necessary to deliver the service. Photos and depth signals from your face are processed on your device first; what we send to our analysis provider is the minimum necessary to generate your personalized results, and our servers keep none of it.

We do not sell your data. We do not share your face data with advertisers, data brokers, ad networks, or any third party for advertising or marketing.

Information We Collect

We collect only what is necessary to provide the service:

  • Account information. Your sign-in identifier (Sign in with Apple) and an optional display name.
  • Profile information. Age, gender, skin type, skin concerns, allergies, skincare goals, budget preference, and lifestyle factors (sleep quality, stress level) that you provide during onboarding.
  • Skin and routine data. Glow Scores, products in your routine, routine completions, daily check-in responses, water intake logs, and similar data you enter or generate by using the app.
  • Face Scan data. See the Face Data and TrueDepth Usage section below for full detail.
  • Health data. If you connect Apple Health, we read sleep duration data to personalize your analysis. This data is included in analysis requests sent to our AI provider (see How We Use Information).
  • Device information. iOS version, device model, and app version — used solely for compatibility and diagnostics. We do not use a third-party crash reporting service.
  • Optional location. Coarse location, only if you enable UV alerts, used to fetch the local UV index via Apple WeatherKit.

Face Data and TrueDepth Usage

GlowCheck AI uses Apple’s ARKit framework with ARFaceTrackingConfiguration, which utilizes your iPhone’s TrueDepth camera, in our Face Scan feature. We collect:

  • 2D facial photographs (up to 8 thumbnails per scan)
  • Depth summary statistics (min, max, and average values only — never the raw depth buffer)
  • A one-way hash of face mesh vertex coordinates used for scan quality validation within a single session (the original mesh is never stored, and the hash is not used for facial recognition or identification)
  • Eye blink values used in real time only for scan quality checks
  • Skin color samples (undertone, redness, under-eye darkness)

This data is used solely to generate your personalized skin analysis and verify scan quality. We do not use face data for facial recognition, biometric identification, or re-identification across sessions.

Photographs and skin samples are sent via HTTPS to our backend, which acts as a secure proxy and forwards the request to Anthropic’s Claude API for analysis. Our backend does not store, log, or persist face data. Compressed scan thumbnails are stored locally on your device only and are never uploaded to iCloud or our servers. We do not share face data with advertisers, data brokers, ad networks, or any third party for advertising or marketing. Account deletion removes all locally stored face data.

How We Use Information

  • To generate your personalized skin analysis, Glow Score, and routine recommendations. Analysis requests sent to our AI provider include your profile information (name, age, gender, skin type, concerns, allergies, goals, budget), recent scan history, check-in data, routine compliance, and — if connected — Apple Health sleep data, alongside your scan photographs.
  • To remember your preferences, products, and progress across sessions.
  • To send the optional notifications you have enabled (UV alerts, routine reminders, hydration nudges).
  • To look up product information when you scan a barcode.

We do not use your information to train advertising models, build profiles for marketing, or sell to third parties.

Sharing & Disclosure

We share information only with the following categories of service provider, and only as required to deliver the app:

  • Anthropic (Claude API) — receives the payload required for skin analysis, which includes your profile information, scan photographs, and relevant context as described above. Anthropic processes the request under their data processing terms and does not retain prompt or image content for model training.
  • Apple — sign-in tokens, in-app purchase receipts, WeatherKit requests (which include your approximate location), and HealthKit data are handled per Apple’s standard developer terms.
  • Open Beauty Facts and Open Food Facts — when you scan a product barcode, we query these public databases to retrieve product names and ingredient lists. Only the barcode number is sent; no personal data is included.
  • Cloud infrastructure provider (Railway) — hosts our HTTPS proxy. The proxy forwards requests to Anthropic and does not store, log, or persist request or response content. The only data stored on our server is referral codes and referral relationships (no images, no profile data, no scan results).

We may disclose information if compelled by valid legal process, or to protect the rights, safety, or property of GlowCheck AI, our users, or the public.

Data Storage & Retention

  • Account and routine data is encrypted in transit (TLS 1.2+) and stored in your device’s secure app sandbox.
  • Compressed skin scan thumbnails are stored locally on your device indefinitely until you delete your account.
  • Product scan data is automatically deleted after 30 days.
  • Face Scan thumbnails and metadata are stored locally on your device and deleted when you delete your account.
  • No scan images or face data are stored on our servers or uploaded to iCloud.
  • We follow the principle of least privilege internally: very few people can access production systems, and access is logged.

No system is perfectly secure. If we ever discover a breach affecting your data, we will notify you promptly as required by applicable law.

Cookies & Website Analytics

The GlowCheck AI website uses a small number of strictly necessary cookies and privacy-preserving, aggregated analytics. We do not use third-party advertising trackers, retargeting pixels, or social-media trackers. The mobile app does not use cookies.

Your Rights

You can manage your data directly from the app’s Settings:

  • Delete your entire account, which removes all server-side account data (referral records) and all locally stored data on the device, including scan history, check-ins, routines, and face scan thumbnails.
  • Disable notifications, location access, and camera access from iOS Settings at any time.

If you reside in the EEA, UK, California, or another jurisdiction with applicable privacy laws, you have additional rights including the right to access, correct, and port your data, the right to object, the right to restrict processing, and the right to lodge a complaint with your local data protection authority. Contact us at the address below to exercise these rights.

Children's Privacy

GlowCheck AI is not directed to children under 13, and we do not knowingly collect data from anyone under 13. If you believe a child has provided us with personal information, please contact us and we will delete it.

Changes to this Policy

If we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you in the app. Continued use of the service after changes take effect constitutes acceptance of the updated policy.

Contact Us

Questions, requests, or concerns? Write to us at glowcheckai@gmail.com. We aim to respond to every privacy request within 30 days.