Privacy Policy
Last updated: 20 June 2026
This Privacy Policy explains how Teddy App Labs (“we”, “us”, “our”) collects, uses, and protects information when you use GlowKit (the “App”). GlowKit is a private AI skin routine and progress tracker for cosmetic, non-medical self-care. We designed it so that trust comes first — especially around your scan photos.
The short version. Free users can complete one guided scan with scan-quality feedback and a locked result preview. GlowKit Pro reveals the full result and ongoing progress tools. Full cloud analysis sends the photo you choose to GlowKit's cloud service and may share it with OpenRouter and OpenAI as AI vision providers solely to create your cosmetic scan result. The prepared scan photo and cosmetic result can be stored privately under your Supabase account so progress can sync. Apple Sign In can link that account for recovery and cross-device continuity. We do not sell your photos, show them in advertising, or use them to train AI models. You can delete local scan history from inside the App and request account data deletion at any time.
1. Information we collect
We aim to collect as little as possible. Depending on how you use the App, this may include:
- Photos you scan. Selfies or images you choose to analyze. The photo may be saved locally on your device for scan history. Full cloud analysis can also store a prepared scan photo privately for your account history — see Section 2.
- Scan results. Your GlowScore, signal breakdown, product guide, routine, locked reveal state, and progress history, stored locally and, for cloud-backed account progress, in Supabase.
- Account identifiers. GlowKit starts with a private Supabase account for sync. Apple Sign In can link that account if you choose to make it recoverable across installs and devices.
- Purchase information. Your subscription, trial, restore, and Pro entitlement status, managed through Apple and RevenueCat. We do not receive or store your full payment card details.
- Product interaction analytics. Coarse app events such as onboarding page, scan funnel state, paywall source, purchase or restore outcome bucket, and delete-data outcome. These events do not include photos, raw GlowScore, signal values, scan IDs, Supabase IDs, Apple identity, email, free-form text, or ad identifiers.
- Diagnostic data. Crash, performance, and error information used to keep the App reliable and separate test/debug traffic from production usage.
- Support communications. If you email us, we keep your message and contact details to respond.
2. How we handle your photos
GlowKit has two scan paths:
- Free locked preview. Free users can complete one guided scan. The preview is generated on device and saved locally as a locked result unless you unlock Pro.
- Full cloud analysis. When full analysis runs, your selected photo is transmitted securely to GlowKit's cloud service and may be shared with OpenRouter and OpenAI as AI vision providers solely to generate your GlowScore, five visible signals, product guide, routine, and progress record.
- Private account history. For full cloud analysis, the prepared scan photo can be stored privately in Cloudflare R2 under your Supabase account so progress can sync.
- Optional account recovery. Apple Sign In can link your Supabase account so synced history can follow your account across installs and devices.
We never sell your photos, share them with advertisers, or use them to train machine-learning models. Saved scan photos are private to your device or account and can be deleted through the local or account data flow.
3. Face data and AI providers
GlowKit does not collect Face ID templates, biometric identifiers, faceprints, or identity verification data. The only face data GlowKit collects is the selfie or face photo you choose for a scan and the cosmetic visual signals derived from that photo, such as GlowScore, clarity, hydration, texture, even tone, radiance, product guidance, and routine suggestions.
We use this face data only to provide the scan you request, improve scan-quality feedback, create cosmetic and non-medical results, save your private progress history, and support account recovery or sync if you link Apple Sign In.
For full Pro cloud analysis, your selected photo is sent to GlowKit's Cloudflare Worker and may be shared with OpenRouter and OpenAI as AI vision providers. They receive the image and prompt needed to return the cosmetic analysis and act as service providers for this purpose. OpenRouter requests are configured to prefer zero-data-retention routes where available. OpenAI API inputs and outputs are not used to train OpenAI models by default and may be retained by OpenAI for a limited abuse-monitoring period under OpenAI's API terms. GlowKit does not authorize any AI provider to use scan photos for advertising or model training.
Synced scan photos are stored privately in Cloudflare R2; scan metadata and derived results are stored in Supabase. Local scan photos and results remain on your device until you delete them in the App or remove the App. Cloud-synced photos, metadata, and results remain until you request account data deletion.
4. How we use information
We use information only to operate and improve GlowKit, specifically to:
- Run scan-quality checks and create your locked scan preview or full Pro result.
- Generate your GlowScore, 5-signal breakdown, product guide, and explainable routine.
- Show your progress trend, scan history, and before/after comparisons.
- Manage your subscription, free trial, and restore-purchase requests.
- Understand activation, scan reliability, paywall conversion, and privacy-control usage through coarse product analytics.
- Maintain reliability, prevent abuse, separate debug/test traffic, and fix problems.
- Respond to your support requests.
5. Sharing & service providers
We do not sell your personal information. We share data only with service providers who help us run the App, and only as needed to provide the service. These may include:
- OpenRouter and OpenAI, which may perform the AI vision analysis described above for full Pro cloud scans.
- Supabase and Cloudflare, which provide account sync, database storage, Worker hosting, and private R2 scan photo storage.
- Apple, which processes payments, manages App Store subscriptions, and may provide OS-level diagnostics.
- RevenueCat, which manages Pro entitlements, restore status, and subscription access.
- PostHog Cloud US, which provides product interaction analytics dashboards for coarse app events.
- Diagnostics providers, which help us understand crashes, performance, and errors.
These providers are bound by contractual obligations to protect your information and use it only for the services they provide to us. We may also disclose information if required by law or to protect rights and safety.
6. Data retention
Local scan photos, scan results, routines, and history remain on your device until you delete them in the App or remove the App. Cloud-synced scan photos, scan metadata, and account history remain available until you request account data deletion. AI providers process scan photos to return the requested result; GlowKit does not authorize them to use scan photos for advertising or model training. Purchase records are retained by Apple and RevenueCat under their policies. Product interaction analytics, support emails, and diagnostics are kept only as long as needed for the purposes described above, then deleted or aggregated.
7. Your choices & rights
- Delete your data. You can delete local scan history, photos, routine history, preferences, reminders, the local analytics join identifier, and the Apple-linked session from within the App. You can request cloud account data deletion by contacting us.
- Access & correction. You may request a copy of, or correction to, the personal information we hold about you.
- Withdraw consent. You can stop scanning at any time; without photos, no new analysis takes place.
- Regional rights. Depending on where you live (for example under GDPR or the CCPA), you may have additional rights, including to erasure or to object to certain processing.
To exercise any of these rights, contact us at [email protected].
8. Security
We use industry-standard safeguards, including encryption in transit, to protect your information. No method of transmission or storage is completely secure, but we work to protect your data and limit what we collect in the first place.
9. Children
GlowKit is not directed to children under 13 (or the minimum age required in your region). We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us so we can remove it.
10. International users
We may process and store information in countries other than your own. Where we transfer data internationally, we take steps to ensure it receives an appropriate level of protection consistent with this policy and applicable law.
11. Changes to this policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify you in the App. Continued use of GlowKit after an update means you accept the revised policy.
12. Contact us
Questions about privacy? Reach our team at [email protected]. For general help, see our Support page.
Teddy App Labs · GlowKit (bundle ID com.teddyapplabs.glowkit) · glowkit.org
A note on health. GlowKit provides general wellness and cosmetic insight only. It is not a medical device and does not diagnose, treat, or cure any condition. See our Terms of Use for details.