Privacy Policy

FaceGrade AI ("the App") is developed and operated by MoHorizons. This Privacy Policy describes how we collect, use, and handle your information when you use the App. It is written to be specific about how the App processes selfie photos, because face data is sensitive and we want you to know exactly what happens to it.

1. Information We Collect

When you use FaceGrade AI, the following information is involved:

• Selfie photos: You take a selfie using your device camera, or pick one from your photo library. The photo is sent to our server so it can be analyzed by an AI model. See Section 2 for full details on how the photo is handled.
• Gender selection: You select a gender so the analysis can use the appropriate scoring categories. This is stored locally on your device only.
• Scan results and routine data: Your scores, personalized routine, and scan history are stored locally on your device only.
• Diagnostics and aggregate usage: The App uses third-party SDKs to collect anonymous crash reports and aggregate, non-identifying usage signals. See Section 5.

2. Face Data

This section answers, in detail, what face data the App collects, how it is used, who it is shared with, and how long it is kept. It is intentionally specific so it can be referenced for App Store review and for your own records.

• What we collect: A single still selfie photo, captured by you, each time you request an analysis. The App uses Apple's on-device Vision framework solely to detect the bounding box of your face in the photo so it can be cropped and centered. No facial landmarks, face prints, embeddings, biometric templates, or face identifiers are computed, stored, or transmitted. The cropped photo is then resized to a maximum of 512 pixels and JPEG-compressed before being sent to our server.
• How we use it: The photo is used for one purpose only: to generate an aesthetic score and a personalized grooming and lifestyle routine. It is not used for identification, authentication, surveillance, advertising, profiling, model training, or any other purpose.
• Who processes it (third parties): Our server is a stateless Cloudflare Worker that forwards the photo to OpenAI (OpenAI, L.L.C.) via the OpenAI API, which runs the GPT-4o-mini vision model to produce the analysis. OpenAI is the only third party that receives the photo. OpenAI's API terms state that data submitted via the API is not used to train OpenAI models, and is retained by OpenAI for up to 30 days for abuse and misuse monitoring before being deleted. No other third party receives the photo.
• Where it is stored: On our server, the photo exists only in memory for the duration of the request and is discarded as soon as the response is returned. It is not written to any database, object storage, or log. On OpenAI's side, the photo is held under the retention terms above. On your device, the original selfie remains in your camera roll if you saved it there yourself; the App also stores a local copy of recent scans inside its own sandboxed storage so you can see your scan history. Local copies never leave your device and are deleted when you uninstall the App.
• How long it is retained: On our server, zero retention beyond the duration of the request (seconds). At OpenAI, up to 30 days for abuse monitoring, then deleted. On your device, until you delete the scan or uninstall the App.
• Sharing: The photo is shared only with OpenAI as described above, solely to perform the analysis you requested. It is not sold, rented, shared, or disclosed to any other party for any reason.

3. No Accounts Required

FaceGrade AI does not require you to create an account. You do not need to provide your name, email address, phone number, or any other personal contact information to use the App.

4. How We Use Your Information

• Selfie photos are used solely for AI-powered face analysis as described in Section 2.
• Gender selection is used to choose the appropriate scoring categories for your analysis.
• Scan history and routine progress are stored on your device so you can track changes over time.
• Anonymous diagnostics and aggregate usage signals are used to detect crashes, fix bugs, and understand which features are being used.

5. Third-Party Services

The App integrates the following third-party SDKs. None of them receive your selfie photo, and none of them are used to track you across other companies' apps and websites for advertising. The App does not request App Tracking Transparency permission and does not access your device's advertising identifier (IDFA).

• OpenAI (api.openai.com): Receives the cropped selfie photo to generate the analysis, as described in Section 2. This is the only service that receives the photo.
• Cloudflare Workers: Hosts our API endpoint. Acts as a stateless relay between the App and OpenAI. Cloudflare may process standard request metadata (such as IP address) for security and abuse prevention.
• Sentry: Anonymous crash reporting and error diagnostics. Receives crash stack traces and limited device context (model, OS version) when an error occurs. Does not receive your photo or your scan results.
• TelemetryDeck: Privacy-respecting, anonymous product analytics. Receives event names (for example, "scan completed") and a salted, non-reversible hash; does not receive personal identifiers, advertising identifiers, your photo, or your scan results.
• AppsFlyer: Mobile attribution to understand which marketing channels lead to App installs. Operates in SKAdNetwork and probabilistic-attribution mode only. The App does not request ATT permission, does not request the IDFA, and AppsFlyer therefore does not have access to it. AppsFlyer does not receive your photo or your scan results.

6. Data Storage Summary

• On-device: Scan results, routine progress, scan history (including local thumbnails of your past scans), and your preferences (such as gender selection) are stored only on your device, inside the App's sandboxed storage. This data is not synced to any server.
• Server-side: Selfie photos are processed in memory and discarded immediately after the response is returned. We do not retain copies of your photos on our servers.
• Third-party processors: See Section 5 for the full list and what each processor receives.

7. Data Security

Selfie photos are transmitted to our server and from our server to OpenAI over encrypted HTTPS connections. Access to our server infrastructure is restricted. We apply reasonable technical and organizational measures to protect data during transit and processing.

8. Children's Privacy

FaceGrade AI is not intended for children under the age of 13. We do not knowingly collect information from children under 13. If you believe a child has used the App, please contact us and we will take appropriate steps.

9. Your Rights

Because no account is required and almost all personal data is stored locally on your device, you can delete it at any time by deleting individual scans inside the App or by uninstalling the App. To request deletion of any diagnostic data associated with you, or to exercise any right granted by applicable privacy law (including GDPR and CCPA), please contact us at the address below.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected in the "Last updated" date at the top of this page. Continued use of the App after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

support@mohorizons.com