Your data exists to serve you better — not to be sold. Here's exactly what we collect, why, and how we protect it.
SkinCompass ("we", "us", "our") respects your privacy. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have about your data.
This policy applies to all users of SkinCompass, including visitors to our website, free Barrier Assessment users, Pay-Per-Map purchasers, SkinCompass Members, and SkinCompass Pro subscribers.
We collect the following categories of information when you use SkinCompass:
• Account information: Your email address, password (encrypted), and account creation date.
• Quiz responses: The answers you provide when taking any Skin Map quiz. These are the primary input our scoring engines use to generate your personalized reports.
• Payment information: When you make a purchase, payment processing is handled by Stripe. We do not store your credit card numbers, CVV codes, or banking details directly. We only retain the transaction ID and basic billing metadata from Stripe.
• Usage data: Information about how you interact with the Service, such as which Skin Maps you've taken, when you last visited, and which features you use.
• Device and browser information: Standard technical data like browser type, device type, IP address, and operating system, collected for analytics and security purposes.
• Optional photo uploads: For features like AI shade-match or photo log (Pro only), photos may be processed. Wherever possible, this happens entirely on your device using IndexedDB — your photos are never transmitted to our servers.
We use the information we collect for the following purposes:
• To generate your personalized Skin Map reports through our scoring engines
• To provide, maintain, and improve the Service
• To process payments and manage subscriptions
• To send transactional emails (purchase confirmations, account updates, password resets)
• To send optional product updates and skincare insights (only if you opt in)
• To respond to your support inquiries
• To detect, prevent, and address fraud, security breaches, or technical issues
• To conduct anonymized research and analytics to improve our scoring engines and the Service overall
We do not sell, rent, or trade your personal information to third parties for marketing purposes. Ever.
This is a core commitment, not a checkbox claim. Your skin data, quiz responses, and personal details exist only to serve you better — not to be packaged and sold.
We share limited information only with the following categories of trusted service providers, and only as needed to operate the Service:
• Stripe: For payment processing. Stripe receives the information needed to process your payment securely.
• Supabase: Our database and authentication provider. Your account data and quiz responses are stored securely in their infrastructure.
• Email service providers: For sending transactional emails (e.g., Resend, SendGrid).
• Analytics providers: For anonymized usage analytics (e.g., aggregate behavior patterns, not individual identification).
• haut.ai (Pro tier only): For users who opt in to AI Skin Coach or AI Photo Analysis features. Photos processed by haut.ai are subject to their own privacy policy.
We may also disclose information if required by law, court order, or to protect the rights, property, or safety of SkinCompass, our users, or others.
Your data is stored in secure cloud infrastructure with industry-standard encryption in transit (HTTPS/TLS) and at rest. We use Supabase for primary data storage, which is built on top of AWS with enterprise-grade security.
While we take reasonable measures to protect your information, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security, but we follow best practices to minimize risk.
Optional photo features (AI shade-match, photo log) use IndexedDB on your device. These photos are not transmitted to our servers unless you explicitly opt in to a Pro feature that requires server-side processing (e.g., haut.ai integration).
You have the following rights regarding your personal information:
• Access: You can view and download your account data and report history at any time from your account settings.
• Update: You can update your account information, including email and password, through your account settings.
• Delete: You can request account deletion by contacting support. Upon verified request, we will delete your account and associated data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., tax records).
• Opt out of marketing emails: You can unsubscribe from marketing emails at any time using the link at the bottom of any email. Transactional emails (purchase confirmations, password resets) cannot be opted out of as long as you have an active account.
• Data portability: You can request a copy of your data in a machine-readable format by contacting support.
SkinCompass uses cookies and similar tracking technologies for the following purposes:
• Essential cookies: Required for the Service to function (e.g., keeping you logged in).
• Analytics cookies: To understand how users interact with the Service (anonymized, aggregate data).
• Preference cookies: To remember your settings and preferences.
You can control cookies through your browser settings. Disabling essential cookies may prevent the Service from functioning correctly.
SkinCompass is based in the Republic of Korea but serves users globally. Your data may be transferred to, stored, and processed in countries other than your own, including the United States (Stripe, Supabase infrastructure).
We ensure that all international data transfers are subject to appropriate safeguards as required by applicable data protection laws, including GDPR for EU users and similar regulations elsewhere.
SkinCompass is not intended for children under 13. We do not knowingly collect personal information from children under 13.
If you believe we have collected information from a child under 13, please contact us immediately and we will delete the information.
Users between 13 and 17 should have parental or guardian consent before using the Service.
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the bottom of this page and notify users of material changes via email or in-app notification.
We encourage you to review this policy periodically to stay informed about how we protect your information.
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please reach out via our contact page.
Last updated: May 25, 2026