Privacy Policy

Effective date: May 2, 2026

Last updated: May 2, 2026


This Privacy Policy describes how [Company Legal Name] ("we," "us," or "our"), a United States company, collects, uses, discloses, and protects information in connection with My Vanity Beauty / Vanity (the "Service") — including our consumer mobile application, our websites and web properties that link to this policy, and our application programming interface ("API").

By creating an account, accessing, or using the Service, you agree to this Privacy Policy. If you do not agree, do not use the Service.

For questions about this policy, contact us at: sce@myvanitybeauty.com Postal address: [U.S. business address]


  1. SCOPE AND ROLES

Consumers are individuals who download and use our mobile app or otherwise interact with consumer-facing features. Authorized personnel are limited staff and service providers who may access information as described in Section 6 when necessary to operate, secure, and support the Service (including trust and safety).

We describe the categories of information the Service is designed to process based on our product and infrastructure. Specific fields may change as features evolve; we will update this policy when practices materially change.


  1. INFORMATION WE COLLECT

We collect information that you provide directly, information generated when you use the Service, and limited information from third-party sources as described below.

2.1 Account, Authentication, and Security

Identifiers and account data include your name, username, email address, profile photo (if you add one), account identifiers, and authentication credentials. Passwords are stored using industry-standard hashing; we do not store plaintext passwords.

Email verification: We may send transactional messages such as verification, password reset, magic-link sign-in, and welcome messages to your email address.

Social sign-in (optional): If you choose Sign in with Google or Sign in with Apple, we receive information from those providers as permitted by your settings with them. OAuth-related tokens may be stored as needed to maintain your session and account linkage.

Sessions and device context: To keep you signed in and protect accounts, we maintain session records that may include IP address and browser or app user agent strings.

Administrative and safety signals: We may process flags related to account status (for example, suspension or enforcement actions), moderation roles for internal tools, and similar operational records.

2.2 Profile, Preferences, and Beauty-Related Information

If you complete a profile or onboarding flows, we may collect your bio, cover image, location, website link, and social links you choose to add. We may also collect demographics you choose to share, such as date of birth, as well as beauty preferences and attributes like skin type, skin tone, hair type, porosity, goals, interests, favorite brands, and concerns. Health-adjacent information such as allergies is treated as sensitive where applicable law defines it that way. Providing this information is optional unless a specific feature clearly requires it.

2.3 Content You Create and Social Activity

Depending on how you use the Service, we may process posts and media (text, images, videos, tutorials, polls, product reviews, tags, visibility settings, drafts, and engagement metrics), comments, likes, reposts, votes, and similar interactions. We also process club names, descriptions, membership, roles, and club-related posts; product library records; routine definitions, steps, timers, and completion notes; and journal entries including dates, scores, concerns, and notes.

2.4 Messaging

When you use direct messaging, we process message content, conversation identifiers, read and delivery timestamps, and metadata needed to deliver messages in real time.

2.5 Notifications

We process in-app notification records, push tokens and device identifiers if you opt in to push notifications, and your notification preferences including per-channel toggles, digest preferences, optional marketing email preferences, and quiet-hours settings.

2.6 Search and Discovery

We may store search queries, optional search type, and coarse result counts associated with your account to improve search experiences and product analytics.

2.7 Safety, Integrity, and Support

We may process reports you submit, mute and block lists you create, and operational logs generated by our servers and vendors for security, debugging, performance, and abuse prevention.

2.8 Inferred or Generated Outputs

We may generate and store insights or suggestions related to your routines or usage where the product provides such features.

2.9 Product Catalog and Third-Party Product Data

To power barcode lookup and product discovery, we maintain a cosmetic product catalog that may include information sourced from public databases such as Open Beauty Facts. That catalog information is generally not personal data, but your interactions with products (such as scans, saves, and reviews) can be associated with your account.

2.10 Optional Use of Generative AI (Onboarding Assistance)

Certain onboarding or personalization flows may use Google Gemini or another configured Google generative model to suggest routines or related content based on information you submit in that flow. When this feature is enabled, inputs and outputs may be processed on Google's infrastructure subject to Google's terms and policies. We do not use consumer direct messages as training data for public model providers unless we specifically disclose it and obtain any consent required by law.


  1. SOURCES OF INFORMATION

We collect information from you directly, from your device (such as camera, photos, and notifications), from authentication partners (Google and Apple) when you use those sign-in methods, from service providers that host our infrastructure, and from public or licensed datasets such as Open Beauty Facts.


  1. HOW WE USE INFORMATION

We use information to create and authenticate accounts, operate social features, store and deliver photos and videos, send transactional and marketing emails, deliver push notifications, provide messaging and real-time updates, personalize beauty-related recommendations, maintain catalogs, moderate content, investigate reports, enforce our terms, comply with law, and analyze product usage in aggregated or de-identified forms.

We do not use payment card data in our current consumer flows. If we add payments, we will update this policy.


  1. LEGAL BASES (U.S. RESIDENTS)

We process information as necessary to perform our contract with you, to pursue legitimate interests such as securing accounts, preventing fraud, improving the product, and conducting analytics, and to comply with legal obligations. Where law requires consent for specific processing, we will obtain it separately.


  1. HOW WE SHARE INFORMATION

6.1 Service Providers

We use vendors for cloud hosting and databases, object storage and media infrastructure (such as Google Firebase and Google Cloud Storage), email delivery (such as Resend), mobile operations (such as Expo for push notifications and over-the-air updates), authentication infrastructure, and AI inference providers (such as Google generative AI) for the limited flows described in Section 2.10.

6.2 Community Visibility

Content you post or profiles you make public may be visible to other users, indexed internally for search, and accessible to moderators for safety, depending on your settings.

6.3 Legal, Safety, and Business Transfers

We may disclose information to comply with law or legal process, to protect the safety and integrity of users or the public, or in connection with a merger, acquisition, or sale of assets.

6.4 No Sale of Personal Information

We do not sell personal information for money as a core business practice. If we ever engage in activities that constitute a "sale" or "sharing" under U.S. state privacy laws, we will provide the legally required notices and choices.


  1. COOKIES AND SIMILAR TECHNOLOGIES

In our mobile application, we rely on tokens and local storage for authentication and app functionality rather than browser cookies. On web properties, we may use cookies for session management, security, and preferences. You can control cookies through browser settings, though disabling certain cookies may affect sign-in functionality.


  1. RETENTION

We retain information for as long as your account is active and for a reasonable period afterward to resolve disputes, enforce agreements, comply with law, and secure our systems. If your account supports self-service deletion, you may request deletion through in-product controls where available. We may retain certain records where law requires or where necessary to prevent re-abuse.


  1. SECURITY

We implement technical and organizational measures including access controls, encryption in transit, and secure handling of credentials and session material. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.


  1. . CHILDREN'S PRIVACY

The Service is not intended for children under 13, and we do not knowingly collect personal information from children under 13 consistent with COPPA. If you believe we have collected information from a child under 13, contact us and we will take steps to delete it. Teenagers between 13 and 17 should use the Service only with a parent or guardian's involvement where required.


  1. YOUR U.S. STATE PRIVACY RIGHTS

Depending on where you live, applicable state privacy laws may grant you the right to know what personal information we collect, access specific pieces of it, request deletion, correct inaccurate information, opt out of certain processing, and appeal our decisions. To submit a request, email sce@myvanitybeauty.com with "Privacy Request" in the subject line. We will not discriminate against you for exercising your privacy rights.

California residents may request information about disclosures of personal information to third parties for direct marketing purposes under California Civil Code Section 1798.83. We do not currently engage in that type of disclosure; if that changes, we will update this section.


  1. INTERNATIONAL USERS

We are a U.S.-based company. If you access the Service from outside the United States, your information may be processed in the United States and other countries where we or our vendors operate. Where required, we implement appropriate safeguards for cross-border transfers.


  1. THIRD-PARTY LINKS AND INTEGRATIONS

The Service may contain links to third-party sites or integrations. Their practices are governed by their own policies. We are not responsible for third-party sites or services.


  1. . AUTOMATED DECISION-MAKING

We do not use automated decision-making that produces legal or similarly significant effects solely based on profiling. Certain in-product recommendations or ranking signals may personalize what you see but do not constitute fully automated decisions with such legal effects.


  1. . CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. We will post the updated version and revise the "Last updated" date. If changes are material, we will provide additional notice as required by law.


  1. . CONTACT

[Company Legal Name] [U.S. business address] Email: sce@myvanitybeauty.com

00:00:00:00