Privacy Policy

We value your privacy. This Policy explains what data we collect, how we use it, how we share it, and the choices you have. If you do not agree with this Policy, please do not use FaceSup.

1. Scope

This Policy applies to the FaceSup mobile applications, websites, and related services (the "Service"). It does not cover third-party services we do not control.

2. Information We Collect

2.1 Account Information

When you create an account or authenticate with a third party, we collect identifiers such as your name, email address, profile image, and authentication tokens.

2.2 Content You Provide

We process the content you upload or create in the Service, including photos you remix, edited images, style selections, favorites, and any user-generated content.

2.3 Device and Usage Data

We collect device information (model, operating system, language, app version) and usage information (features used, time stamps, interactions, crash logs) to operate and improve the Service.

2.4 Approximate Location

We may derive an approximate location from your IP address to provide region-appropriate data sources and regulatory settings. We do not collect precise GPS location unless you explicitly enable it for a specific feature.

2.5 Cookies and Similar Technologies

Our websites use cookies and similar technologies for essential functionality, analytics, and remembering your preferences. You can control cookies through your browser settings.

2.6 Biometric and Face Data

In connection with providing AI-powered photo editing features, we collect and process facial geometry data as follows:

• Local Face Detection: The Service utilizes Apple's Vision framework to detect and analyze facial features locally on your device. Facial geometry coordinates and detection metadata are processed exclusively during the active editing session and are not persisted in storage or transmitted to external servers.
• AI-Powered Processing: When you elect to apply an AI filter or effect, your selected photograph is temporarily transmitted to Google's Gemini AI service for processing and generation of the filtered output. All transmitted data is subject to industry-standard encryption in transit. Neither we nor Google retain, store, or use such data beyond completion of the immediate processing request.
• Third-Party Service Providers: Facial data contained within photographs may be shared with the following third-party processors:
  • Google Cloud Platform (Gemini AI API) — processes image data to generate AI-powered filter effects and transformations
  • Google Firebase — facilitates user authentication and application infrastructure (does not access, process, or store photograph content)
• Data Retention and Deletion: Facial detection data is immediately discarded upon conclusion of each editing session. Photographs transmitted for AI processing are not retained by the Service or by third-party APIs following completion of the processing operation. No long-term storage of biometric identifiers or photographic content occurs.
• User Consent and Control: Access to your device's photo library requires explicit permission via system-level authorization prompts. You retain full discretion over which photographs to process. We do not access, collect, or process any photographic content except as specifically initiated and authorized by you for the express purpose of delivering requested editing features.

3. How We Use Information

• Provide, maintain, and improve the Service and its features.
• Process and transform photos with AI-powered creative effects.
• Personalize content, such as suggested styles or effects.
• Communicate with you about updates, security, and support.
• Detect, prevent, and address fraud, abuse, and technical issues.
• Comply with legal obligations and enforce our Terms.

4. Legal Bases for Processing (EEA/UK)

Where required, we rely on one or more legal bases: performance of a contract (to provide the Service), legitimate interests (to improve and secure the Service), consent (for optional features and marketing), and compliance with legal obligations.

5. Sharing of Information

We do not sell personal information. We may share information with:

• Service providers who process data on our behalf under confidentiality obligations.
• Analytics and crash reporting partners to understand performance and reliability.
• AI processing partners when necessary to deliver creative effects and transformations.
• Law enforcement or authorities when legally required or to protect rights and safety.

6. Data Retention

We retain data for as long as necessary to provide the Service, resolve disputes, and comply with legal obligations. You may request deletion of your account and associated content, subject to certain exceptions.

7. Your Rights and Choices

• Access, correct, or delete personal data, subject to verification and applicable law.
• Object to or restrict certain processing, and request portability in some regions.
• Withdraw consent where processing is based on consent.
• Control cookies and marketing preferences.

8. Children's Privacy

FaceSup is not directed to children under 13 (or as required by local law). We do not knowingly collect personal information from children without appropriate consent.

9. Security

We use administrative, technical, and organizational measures designed to protect information. No system is completely secure, and we cannot guarantee absolute security.

10. International Transfers

We may transfer, store, and process information in countries outside your own. Where required, we implement appropriate safeguards such as standard contractual clauses.

11. Changes to This Policy

We may update this Policy from time to time. Material changes will be communicated through the app or website. Your continued use of the Service indicates acceptance of the updated Policy.

12. Contact

Questions or requests? Email privacy@face-sup.com.

Last updated: 2025-12-03