← Back to FitCheck
Privacy Policy
Last updated: August 29, 2025
Quick Summary: We collect only what's needed to rate your outfits. Your photos are stored securely, payments are handled by Stripe, and we never sell your data. You can delete everything anytime.
1. Information We Collect
1.1 Information You Provide
| Data Type |
What We Collect |
Why We Need It |
| Account Info |
Email, password, username |
Account creation and login |
| Photos |
Outfit images you upload |
AI analysis and feedback |
| Payment Info |
Name, email (via Stripe) |
Premium subscription billing |
| Usage Data |
Outfit checks, wardrobe saves |
Service functionality |
1.2 Information Automatically Collected
- Device Information: Browser type, OS, device type
- Log Data: IP address, access times, pages viewed
- Cookies: Session cookies for authentication
- Analytics: Basic usage statistics (anonymized)
1.3 Information We DON'T Collect
- Credit card numbers (handled by Stripe)
- Precise location data
- Biometric data from photos
- Health or medical information
- Social media passwords
2. How We Use Your Information
2.1 Primary Uses
- Outfit Analysis: Process photos through AI to generate fashion feedback
- Account Management: Maintain your account and preferences
- Service Delivery: Provide outfit checks and wardrobe features
- Billing: Process payments and manage subscriptions
- Communication: Send service-related emails (receipts, password resets)
2.2 We Will Never
- Sell your personal data to third parties
- Use your photos for advertising
- Share your outfit ratings publicly without permission
- Send marketing emails without consent
- Use facial recognition on your photos
3. How We Store and Protect Your Data
3.1 Storage Locations
- User Data: Supabase (PostgreSQL database) - encrypted at rest
- Photos: Supabase Storage - secure cloud storage
- Payment Data: Stripe - PCI compliant payment processor
- Analytics: Server logs - retained for 30 days
3.2 Security Measures
- SSL/TLS encryption for all data transfers
- Encrypted database storage
- Secure authentication with hashed passwords
- Regular security updates and monitoring
- Limited employee access to user data
- Two-factor authentication available
4. AI and Photo Processing
How AI Processes Your Photos:
- Photos are analyzed by OpenAI's GPT-4 Vision API
- Analysis focuses on clothing and style only
- No facial recognition or personal identification
- Photos are not used to train AI models
- Temporary processing only - OpenAI doesn't store images
5. Third-Party Services
We use trusted third-party services to operate FitCheck:
| Service |
Purpose |
Data Shared |
| Stripe |
Payment processing |
Name, email, payment method |
| Supabase |
Database & storage |
All user data and photos |
| OpenAI |
AI outfit analysis |
Photos (temporarily for processing) |
| Vercel |
Website hosting |
IP addresses, basic analytics |
Each service has their own privacy policy:
6. Cookies and Tracking
6.1 Essential Cookies
- Authentication: Keep you logged in
- Security: Prevent unauthorized access
- Preferences: Remember your settings
6.2 What We Don't Use
- No advertising cookies
- No cross-site tracking
- No social media pixels
- No behavioral targeting
7. Your Privacy Rights
You have the right to:
- ✅ Access your data
- ✅ Correct inaccurate data
- ✅ Delete your account and data
- ✅ Export your data
- ✅ Opt-out of communications
- ✅ Restrict processing
7.1 GDPR Rights (European Users)
If you're in the European Economic Area, you have additional rights:
- Right to be Forgotten: Request complete deletion of your data
- Data Portability: Receive your data in a portable format
- Consent Withdrawal: Withdraw consent at any time
- Lodge Complaints: File complaints with supervisory authorities
- Object to Processing: Object to certain types of processing
7.2 CCPA Rights (California Users)
If you're a California resident, you have the right to:
- Know: What personal information we collect and how it's used
- Delete: Request deletion of your personal information
- Opt-Out: We don't sell data, but you can opt-out of any sharing
- Non-Discrimination: Equal service regardless of privacy choices
8. Data Retention and Deletion
| Data Type |
Retention Period |
Deletion Process |
| Account Data |
Until account deletion |
Immediate upon request |
| Photos |
Until manually deleted |
Permanent deletion within 30 days |
| Payment Records |
7 years (legal requirement) |
Automatic after period |
| Server Logs |
30 days |
Automatic rotation |
8.1 Account Deletion
When you delete your account:
- All photos are permanently deleted
- Personal information is removed
- Subscription is cancelled immediately
- Some data may be retained for legal compliance
- Deletion is irreversible
9. Children's Privacy
FitCheck is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we discover a child under 13 has provided us with personal information, we will delete it immediately.
For users aged 13-18:
- Parental consent is recommended
- Be cautious about sharing photos
- Parents can request account deletion
10. International Data Transfers
Your data may be transferred to and processed in:
- United States: Where our servers are located
- Other countries: Where our service providers operate
We ensure appropriate safeguards are in place for international transfers, including:
- Standard contractual clauses
- Data processing agreements
- Compliance with local laws
11. Marketing and Communications
11.1 What We Send
- Transactional Emails: Receipts, password resets (always sent)
- Service Updates: Important changes, security alerts (always sent)
- Marketing Emails: Only with your explicit consent (opt-in)
11.2 Unsubscribe
You can unsubscribe from marketing emails anytime via:
- Unsubscribe link in emails
- Account settings
- Emailing support@fitcheck.to
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Updating the "Last updated" date
- Sending an email for significant changes
- Requiring consent for material changes
13. Contact Us
For privacy questions, concerns, or to exercise your rights:
Privacy Contact:
- Email: privacy@fitcheck.to
- Support: support@fitcheck.to
- Website: https://fitcheck.to
Data Protection Officer:
For GDPR inquiries: dpo@fitcheck.to
14. Legal Bases for Processing (GDPR)
We process your data based on:
- Contract: To provide the service you signed up for
- Consent: For marketing communications and cookies
- Legitimate Interest: For security and fraud prevention
- Legal Obligation: To comply with laws and regulations
15. Do Not Track
FitCheck respects Do Not Track (DNT) browser settings. When DNT is enabled:
- We don't track your browsing behavior
- We don't use analytics cookies
- Essential cookies for functionality still work
Your privacy matters to us. We're committed to protecting your data and giving you control over your information.