top of page

SkinAura AI Privacy Policy

​

SkinAura AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website and use our services, including the SkinAura facial analysis tool and SkinAuraGPT. By accessing or using our services, you agree to the terms of this Privacy Policy.

​

​Last Updated: December 28, 2025

​

At SkinAura PRO, we’re committed to protecting your privacy and giving you clear control over your information. This Privacy Policy covers the full SkinAura AI ecosystem, including https://skinaura.ai, https://skinaura.pro, and https://skinaura.vip, and explains how we collect, use, share, and protect your information when you use our websites, apps, and professional tools.

​

1. Information We Collect

1.1 Personal Information

We collect information you provide directly to us, including:

  • Name, email address, and contact information
  • Account credentials and profile preferences
  • Skincare routine details, product usage logs, and tracking preferences
  • Communication preferences and SMS opt-in status
  • Professional credentials (for esthetician and dermatologist accounts)

​

1.2 Skin Analysis & Photos

To power AI-driven analysis and progress tracking, we collect:

  • Progress photographs and baseline skin images you upload
  • Facial analysis outputs derived from uploaded images
  • Skin condition tracking data and professional annotations
  • Treatment compliance metrics and routine adherence statistics

​

1.3 Usage & Device Information

We automatically collect:

  • Platform interaction data (e.g., streaks, points, badges, and achievement levels)
  • Device and browser information, operating system, and app version
  • Analytics data about feature usage and engagement patterns
  • SMS delivery confirmations and response data via our integration with Twilio
    • See out Terms & Conditions for detailed SMS program details

​

1.4 Biometric Information (Special Category Data)

When you use facial-image features, we may collect and process biometric identifiers and biometric information as defined by applicable laws (including BIPA, GDPR, and CCPA/CPRA). This may include:

  • Facial images and photographs containing your likeness
  • Facial geometry measurements and facial feature mapping
  • Skin texture, pore, and pigmentation pattern data
  • Identifiers derived from processing facial images through our AI algorithms

​

1.5 Consent and choice:

  • We will present a clear, separate notice and obtain your explicit consent before capturing or processing biometric information.
  • You can withdraw consent at any time in your account settings. If you decline or withdraw consent, you can continue using the platform without biometric features.
  • For Illinois residents (BIPA): we obtain written consent before collecting, capturing, or otherwise obtaining biometric information.

​

2. How We Use Your Information

We use the information we collect to:

  • Deliver and personalize services, including AI-powered skin analysis and routine recommendations
  • Track progress through streaks, levels, rewards, and badges
  • Enable professional-client collaboration and compliance monitoring
  • Send service messages and reminders (including SMS via Twilio) and product reorder notifications
  • Provide analytics dashboards for individuals and professional accounts
  • Improve and develop features, train and evaluate models, and enhance user experience
  • Maintain platform security, prevent misuse, and enforce our policies
  • Communicate with you about support requests, updates, and—only with your consent—promotions

​

3. Sharing Your Information

3.1 With Your Consent

We share information only when you choose to share it, including:

  • With estheticians or dermatologists you select
  • To enable professional annotations and guidance on your skincare journey
  • To support coordinated care between providers you authorize

​

Professional access controls:

  • Professionals can view client data only when the client has explicitly shared access.
  • Access is limited to that specific professional and logged for auditing.

​

3.2 Service Providers

We share information with trusted vendors who help us operate our services, such as:

  • Cloud hosting providers (e.g., SOC 2 Type II–compliant infrastructure)
  • SMS delivery services (e.g., Twilio)
  • AI processing and analytics providers

​

All service providers are bound by agreements to protect your information, use it only to provide contracted services, and apply appropriate security measures. Where biometric information is processed by third parties, we maintain Data Processing Agreements, require adequate safeguards, and restrict use to the contracted purpose.

​

3.3 Legal Requirements

We may disclose information to:

  • Comply with applicable law, legal process, or governmental requests
  • Protect the rights, safety, and property of SkinAura PRO, our users, or the public
  • Investigate and enforce potential violations of our terms and policies

​

3.4 Business Transfers​

If we are involved in a merger, acquisition, or asset sale, your information may be transferred. We will provide notice and require the recipient to honor this Privacy Policy.

​

3.5 No Sale or Profit from Biometric Information

We do not sell, lease, trade, or otherwise profit from biometric information. We share biometric information only as disclosed in this Privacy Policy and only for the purposes you’ve consented to.

​

4. Data Security

4.1 Security Measures

We apply layered safeguards to protect your data, including:

  • Encryption in transit (TLS 1.3) and at rest (e.g., AES-256 for sensitive data)
  • Role-based access controls and multi-factor authentication
  • Regular security audits, vulnerability assessments, and penetration testing
  • Employee privacy and security training and least-privilege access
  • Incident response procedures and continuous monitoring

​

4.2 Data Storage

Your information is stored on secure servers (primarily in the United States) with:

  • SOC 2 Type II–aligned administrative, technical, and physical controls
  • Environmental protections, redundancy, and encrypted backups
  • Continuous monitoring and intrusion detection

​

4.3 Biometric Data Security, Retention, and Deletion

Additional protections for biometric information include:

  • Segregated storage with enhanced access controls and comprehensive audit logging
  • Encryption at rest and in transit; cryptographic key management protocols
  • Vendor oversight and biometric-specific incident response playbooks

​

Retention:

  • While your account is active: we retain biometric information to provide features you’ve enabled.
  • After account deletion or consent withdrawal: we stop processing immediately and delete biometric information within 30 days.
  • Inactivity: biometric information is automatically purged after 3 years of account inactivity.
  • Legal holds: we may retain as required by applicable law or legal proceedings.

​

Destruction:

  • Secure deletion that renders data unrecoverable, including cryptographic key destruction.
  • Verification that data is removed from active systems and backups within the stated timelines.

​

4.4 Breach Notification

If a security incident affects your personal information:

  • We will investigate and contain the incident promptly
  • We will notify affected users without undue delay and within timeframes required by law
  • We will notify regulators when required and share remediation steps we’ve taken

​

5. Your Rights

5.1 Access and Control

You can:

  • Access, update, or correct your information in account settings
  • Download your data in a portable format
  • Delete your account and associated data
  • Opt out of promotional communications while receiving essential service messages

​

5.2 Biometric-Specific Rights

For all users:

  • Provide or withdraw explicit consent for biometric processing at any time
  • Request immediate cessation of biometric data collection and processing
  • Request a copy of biometric information we maintain
  • Request deletion of biometric information independent of account closure

​

For Illinois residents (BIPA):

  • We obtain written consent before collection and provide disclosures about purpose and retention.
  • You may withdraw consent and request deletion at any time, subject to legal requirements.

​

5.3 Region-Specific Rights

California (CCPA/CPRA):

  • Right to know, access, correct, and delete personal information (including biometric information)
  • Right to opt out of sale or sharing of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your rights

​

European Union/EEA/UK (GDPR/UK GDPR):

  • Rights to access, rectify, erase, restrict, object, and data portability
  • Right to withdraw consent (including biometric consent) at any time
  • Right to lodge a complaint with your local supervisory authority

​

5.4 How to Exercise Your Rights

  • Email: privacy@skinaura.pro
  • Use your account privacy controls
  • Contact support through the platform

For biometric-related requests, we may require identity verification. We respond to verified requests within 30 days (or up to 45 days for complex requests) and will explain actions taken.

​​

6. Third-Party Links

Our services may include links to third-party websites or services. Their privacy practices are not our responsibility, and we encourage you to review their privacy policies before sharing information.

​

7. Children’s Privacy

Our services are not intended for users under 16. We do not knowingly collect personal information from children under 16. If we learn that we have, we will delete it and terminate the associated account.

​

8. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes to our services, legal requirements, or best practices.

  • We’ll notify you of material changes via email and/or in-app notices
  • Unless otherwise stated, updates take effect when posted
  • Continued use of our services means you accept the updated Policy
  • For changes impacting biometric processing, we may request renewed consent

​

9. Contact Us

Questions about this Privacy Policy or our privacy practices?

​

SkinAura PRO
Email: privacy@skinaura.pro
Website: https://skinaura.pro
Phone: Available through our platform support

​

Data Protection Officer:
Email: dpo@skinaura.pro

​

This Privacy Policy reflects our commitment to transparency and your right to privacy. By using SkinAura PRO, you’re taking control of your skincare journey—with your data protected every step of the way.

By using SkinAura AI's services, you acknowledge that you have read and understood this Privacy Policy.

HOME.     ABOUT.        PLATFORM.        BLOG.         CONTACT.

Cover_edited_edited_edited.jpg

SkinAura PRO: The Science of Personalized Recommendations. SkinAura AI bridges the gap between your expertise and client consistency. By combining AI-powered skin analysis with your specific in-clinic inventory, our platform delivers Personalized Recommendations that drive retail revenue and ensure client accountability. Give your clients a data-backed routine they can follow—and results they can finally see.

Preview a Sample SkinAura AI Client Report

See the format clients receive—routine steps, priorities, and progress checkpoints designed to improve consistency between visits.

Complimentary

SkinAura AI logo

Contact: partner@skinaura.ai | Phone: +1 202 508 3798

© 2026 SkinAura AI. All Rights Reserved. Terms & Conditions.  Privacy Policy.

bottom of page