Privacy Policy

This Privacy Policy explains how Facelineage ("we", "us", "our") collects, uses, and protects your personal data when you use facelineage.com and related services (the "Service").

1. Data we collect

• Selfie photos you upload for analysis, plus any additional photos (e.g. parent photos) you submit for optional add-ons.
• Account information: your email address, used for authentication and report delivery.
• Quiz answers about heritage context you choose to share.
• Payment metadata (last 4 digits, brand, country) provided by our payment processor. We never see or store full card numbers.
• Technical data: IP address, browser, device type, and timezone, collected automatically for security and analytics.

2. How we use your data

• To generate your personalized heritage report and add-ons.
• To process payments and prevent fraud.
• To send transactional emails (sign-in links, receipts, reports).
• To improve the accuracy and quality of our AI analysis.
• To comply with legal obligations.

3. AI processing

Your selfie is sent to third-party AI providers (Anthropic and Google) in order to produce your analysis. These providers process the image in transit; we do not authorize them to train on your data.

4. How long we keep your data

We retain your account, reports, and selfies for as long as your account is active. If you request deletion, we remove personal data within 30 days, except where retention is required by law (e.g. payment records).

5. Sharing

We do not sell your personal data. We share data only with:

• Stripe — payment processing.
• Supabase — authentication and storage.
• Anthropic and Google — AI inference.
• Vercel — hosting and content delivery.
• Authorities, if required by law.

6. Your rights

Depending on your jurisdiction (GDPR, CCPA, and similar), you may have the right to access, correct, delete, or export your personal data, and to object to certain processing. To exercise these rights, email support@facelineage.com.

7. Security

We use encryption in transit (HTTPS), encrypted storage at rest, and row-level security on user data. No system is perfectly secure, but we apply industry-standard safeguards.

8. Children

Facelineage is not directed to children under 16. We do not knowingly collect data from minors. If you believe a minor has provided us information, contact us and we will delete it.

9. Changes

We may update this policy from time to time. We will note the date of the last update at the top, and notify you for material changes.

10. Contact

Questions about this policy? Email support@facelineage.com.