vera

Privacy Policy

Last Updated: May 28, 2026

At Vera, operated by Vera App LLC("we", "us", "our"), we are deeply committed to protecting your privacy and ensuring transparency regarding how we handle your personal data. This Privacy Policy explains our practices regarding the collection, storage, use, processing, transfer, protection, and cascading deletion of personal information when you use our mobile application (built for iOS and Android) and website (collectively, the "Services").

Please read this document carefully to understand how your data is managed. By downloading, registering, or interacting with the App, you acknowledge and agree to the data collection and processing activities detailed in this policy.

1. Personal Information We Collect

To provide you with tailored cosmetic insights, AI shade matching, and virtual try-ons, we collect several categories of information:

  • Account Identifiers: Authentication details and login credentials generated through our secure database providers, as well as metadata indicating your anonymous session status or registered account status.
  • Profile Information: Your full name, email address, and optional phone number.
  • Authentication Provider Data: Security tokens and verified profile details supplied if you sign up using email/password or third-party secure sign-in providers (such as Google or Apple).
  • Onboarding & Preference Data: Your self-reported beauty metrics, including skin tone depth, skin undertone, general skin type, beauty/dermatological concerns, cosmetic coverage preferences, finish choices (matte, satin, dewy), wear-time preferences, budget ranges, loved brands, makeup products currently used, shopping interests, and style preferences.
  • User-Generated Media: Photographic selfies and profile photos captured directly through your device camera or selected from your photo library.
  • AI-Generated Beauty Metrics: Computed classification attributes generated by our artificial intelligence algorithms, including estimated skin tone depth, undertones, nuance tags, style archetypes, and cosmetic product relevance models.
  • Activity and Swipe Logs: Wishlist collections, product cards liked, disliked, or marked as owned, product feed scroll states, search terms, and Try-On Feedback events (including sentiment ratings, written feedback, Try-On overlay outputs, and recommended product snapshots).
  • Usage Analytics: Event-tracking details, including screen views, button clicks, feed loads, purchase-link redirections, selfie capture sequences, and try-on triggers.
  • Local Device Preferences: Push notification configuration choices stored directly on your physical hardware.

2. Photos, Selfies, and Biometric Disclaimers

Our Services utilize photographic media to generate custom shade matches and digital try-on mockups.

IMPORTANT DISCLOSURES REGARDING YOUR PHOTO DATA:
  • Purpose of Processing: Selfies are analyzed solely to detect aesthetic facial markers (such as skin tone, undertone variations, and shade metrics) and to render simulated virtual cosmetic overlays.
  • No Facial Recognition or Authentication: Vera does NOT use your selfies to create a facial map for user identification, security authentication, device lock bypass, or to verify your physical identity. We do not extract biometric identifiers.
  • Sensitive Personal Data Notice: Depending on the laws of your jurisdiction (such as California or the European Union), facial photos and skin tone evaluations may be classified as sensitive personal information. We treat these photos with extreme care and private, encrypted security controls. They are never used for clinical, diagnostic, or medical analysis.

3. How We Use Your Information

We use the collected data for the following essential business and operational purposes:

  • To register your profile, authenticate sessions, and secure your database records.
  • To maintain your preferences, onboarding profiles, wishlists, and swipe histories.
  • To validate if uploaded or captured photos meet minimum lighting and quality conditions required for color analysis.
  • To run artificial intelligence models that analyze skin undertones and compute shade matches.
  • To curate personalized cosmetics feeds, wishlist search features, and recommendations.
  • To process digital image edits rendering virtual try-on previews.
  • To provide clickable affiliate commerce links to external retail merchant partners.
  • To deliver local, on-device notifications reminding you to refresh your beauty parameters (subject to your system settings).
  • To provide technical customer support, perform troubleshooting, detect system bugs, prevent platform abuse, and optimize server speeds.
  • To compile anonymized, aggregated product analytics to understand user flows and improve features.

4. Database Storage, Security, and Row-Level Controls

All personal data and media assets are stored securely within private, industry-standard cloud databases. Selfies are hosted in encrypted storage buckets under distinct, authenticated folders.

To prevent data harvesting and leakage, our database architecture implements strict **Row-Level Security (RLS)** protocols. This system-enforced isolation guarantees that you can only access, write, edit, or view your own unique profile rows, questionnaire responses, wishlists, swipes, and uploaded photos. No user can access another user's personal records.

5. Third-Party Service Providers and Processors

To deliver our Services, we integrate with selected third-party cloud infrastructure, analytics, and software partners. When we transmit data to these partners, they process it strictly on our behalf under confidentiality rules. These categories of partners include:

  • Cloud Infrastructure & Authentication Providers: Secure databases that manage user credentials, metadata rows, and encrypted image storage.
  • Artificial Intelligence Partners: Image analysis and color classification services used to validate photo compatibility and estimate shade coordinates.
  • Image Processing & Graphics Partners: Generative computer graphics services that compose virtual makeup overlays onto user selfies.
  • Product Search & Web Directory Services: Secure engines used to search and match skincare/makeup inventory profiles.
  • Product Analytics Providers: Aggregated screen-event trackers used to assess app performance, page loads, and feature usage.
  • Identity Providers: Secure login brokers utilized if you authenticate using Google or Apple single-sign-on.
Third-Party Retailer Warning:The App contains purchase redirect links to independent retail merchants (e.g. Sephora, Ulta, Rhode, Charlotte Tilbury, and others). Once you click an external link and leave the App, our Privacy Policy ceases to apply. The destination website's privacy terms, payment processing rules, cookies, and data retention policies govern your transactions entirely.

6. International Data Transfers

Vera operates globally, and our technical infrastructure is hosted primarily in the United States and other global cloud data centers. Consequently, your personal information may be transferred to, stored, and processed in jurisdictions outside your home territory. These countries may have data protection laws that differ from your own country. By using our Services, you consent to the transfer of your information to our processors located in the United States and other operational jurisdictions, subject to appropriate contractual and security safeguards.

7. Data Retention Guidelines

We retain your personal data only as long as necessary to fulfill the specific purposes outlined in this policy:

  • Account Profile & Preferences: Retained continuously while your account remains active and open.
  • Selfies & Media: Retained while your profile photo remains active, unless you manually delete the photo or close your account.
  • Wishlists, Swipes, & Feedback Logs: Retained to fuel your personalization feed unless you manually delete specific entries or delete your account.
  • Analytics Logs: Anonymized and aggregated logs may be retained for performance optimization and R&D under standard retention settings.

8. User Choices, Permissions, and Control

You retain ultimate authority over your personal information and device hardware:

A. Device Hardware Permissions

Our App asks for explicit mobile OS prompts before accessing sensitive features. You can enable or disable these at any time via your device system settings:

  • Camera: Used to capture selfies for matching and try-on. If denied, you can still answer onboarding questions manually.
  • Photo Library: Used to upload existing photos. You can deny this and take a camera photo instead.
  • Notifications: Opt-in local reminders to complete or refresh your beauty profile. Can be toggled off at will.

B. Database Modification

You can delete saved products from your wishlist, modify your beauty preference profile, or take a new selfie (which replaces the previous one in our storage bucket) at any time within the App.

9. In-App Account Deletion & Cascading Erasure

If you decide to stop using Vera, you can initiate a complete account deletion directly from the Settings menu in the App.

Once clicked, Vera automatically executes a secure, complete **cascading deletion** across our live databases:

  • Your profile authentication record is deleted, revoking all future API access tokens.
  • Your user personal database row, questionnaire metadata, and history values are hard-deleted.
  • All stored selfie image files located in your private cloud storage directory are permanently erased.
  • Your linked wishlist, swipe actions, recommended feeds, and try-on feedback logs are cleared.
DELETION NOTICE & BACKUPS:

While live database deletion is immediate, some residual metadata may persist inside encrypted, offline server backups, security system snapshots, or transactional analytics tools for a limited retention period required by law or safety compliance. We have no power to immediately delete offline physical tape archives, but they are fully encrypted and undergo automated periodic purging.

10. Age Eligibility and Child Protection

Vera is strictly intended for individuals who are at least **13 years of age**. Our Services are not marketed to, structured for, or directed to children. We do not knowingly collect, request, parse, or solicit personal information or selfies from children under the age of 13. If we discover that a child under 13 has registered an account or uploaded a selfie, we will immediately initiate our cascading account deletion to wipe all corresponding data files from our databases and storage vaults. If you believe a child under 13 has uploaded data, please notify us immediately at our support email.

11. Your Regional Privacy Rights (GDPR & US State Laws)

Depending on your location, you may possess specific legal privacy rights under regulations such as the California Consumer Privacy Act (CCPA), the EU/UK General Data Protection Regulation (GDPR), and other US state privacy frameworks. These rights include:

  • Right of Access & Portability: The right to request copies of your stored personal details and beauty records in a structured, machine-readable format.
  • Right to Rectification: The right to correct inaccurate or outdated beauty profiles.
  • Right to Erasure ("Right to be Forgotten"): The right to request the complete deletion of your photos and authentication profiles (fully fulfilled by our in-app cascading account deletion).
  • Right to Restrict or Object: The right to object to the processing of your selfies or preference fields for automated recommendations.
  • Right to Withdraw Consent: The right to immediately revoke active consent to process your photos.

To submit an official privacy request or assert any of these regional rights, please contact our privacy compliance team directly by email:

legal@shopwithvera.com

12. Privacy Policy Updates

We may revise this Privacy Policy from time to time. When we make updates, we will adjust the "Last Updated" timestamp at the top of this document. Your continued download or use of the Vera App after a privacy update constitutes your acceptance of the updated practices. We encourage you to review this page periodically to remain informed about our data protection standards.

13. Contact and Support

For any questions, compliance reviews, consent withdrawals, CCPA/GDPR requests, or general inquiries regarding your privacy, please email us directly:

legal@shopwithvera.com