Consumer Health Data Privacy Policy
Effective Date: April 26, 2026
Last Updated: April 26, 2026
Contact: support@glowskincare.app
This Consumer Health Data Privacy Policy explains how Glow collects, uses, shares, stores, and deletes consumer health data. This policy is separate from our general Privacy Policy because some state laws, including the Washington My Health My Data Act, require a separate consumer health data policy.
Glow is a cosmetic skincare app. Glow does not provide medical advice, diagnosis, treatment, disease screening, or emergency services. Glow is not a medical device and is not covered by HIPAA unless we separately say otherwise in writing.
1. What We Mean By Consumer Health Data
“Consumer health data” means personal information that is linked or reasonably linkable to you and that identifies, relates to, or may be used to infer your past, present, or future physical or mental health status.
For Glow, this may include:
- Face photos used for cosmetic skin scans
- Skin scan results, skin scores, skin concerns, skin type, skin tone, and cosmetic skin observations
- AI-generated skincare insights, routine suggestions, product match scores, and progress summaries
- Skin diary entries, routine check-ins, streaks, and progress tracking
- Product scans, barcode scans, OCR ingredient scans, ingredient analysis, and product compatibility scores
- Sensitivities, allergies, pregnancy or nursing status, lifestyle information, and skin-condition-related answers you choose to provide
- Approximate location or weather-related information if you enable weather-aware skincare features
- Chat messages or prompts you send to Glow's AI features when they include skincare, health, lifestyle, or product information
- Consent records related to biometric, sensitive-data, consumer health data, AI data-sharing, and subscription disclosures
2. Consumer Health Data We Collect And Why
| Category | Examples | Purpose |
|---|---|---|
| Face scan data | Face photos, scan metadata, cosmetic skin observations | To provide cosmetic skin analysis, skin scores, progress tracking, and skincare insights |
| Skin profile data | Skin type, skin tone, concerns, sensitivities, goals, routine level, budget | To personalize routines, tips, product recommendations, and app experience |
| Skin diary and progress data | Diary entries, check-ins, streaks, scan history, score trends | To help you track cosmetic skincare progress over time |
| Product and ingredient data | Barcode scans, product photos, OCR ingredient text, product scores | To analyze product compatibility and ingredient fit |
| AI interaction data | Chat messages, routine prompts, product-analysis prompts, AI outputs | To provide AI-generated cosmetic skincare guidance |
| Lifestyle and sensitive profile data | Sleep, stress, water intake, pregnancy/nursing status, sensitivities | To make product and routine guidance more relevant and avoid unsuitable recommendations |
| Location/weather data | Approximate coordinates or weather context | To provide weather-aware skincare tips if enabled |
| Account and consent data | User ID, email, consent versions, timestamps, support requests | To operate your account, honor choices, process rights requests, and maintain legal records |
3. Sources Of Consumer Health Data
We collect consumer health data from:
- Information you enter directly into Glow
- Camera or photo access when you choose to scan your face, product labels, or ingredients
- Your app activity, such as scans, diary entries, check-ins, routines, and product interactions
- Device permissions you choose to grant, such as camera, photos, notifications, or location
- AI-generated analysis based on the information you provide
- Service providers that help us operate the app, such as authentication, storage, subscription, and infrastructure providers
4. How We Use Consumer Health Data
We use consumer health data to:
- Provide cosmetic skin scans and skin scores
- Generate cosmetic skincare routines, tips, and recommendations
- Analyze products, barcodes, photos, and ingredient labels
- Personalize AI chat and skincare guidance
- Track progress, streaks, diary entries, and weekly summaries
- Apply safety filters for sensitivities, pregnancy, nursing, or other user-provided constraints
- Provide weather-aware skincare tips if you enable location/weather features
- Maintain account security, consent records, data export, and account deletion
- Debug, protect, and improve app reliability without using consumer health data for advertising
We do not use consumer health data to diagnose, treat, cure, prevent, or screen for any disease or medical condition.
5. Consumer Health Data We Share
We share consumer health data only as needed to provide Glow, operate the app, process your requests, comply with law, or protect users and the service.
| Recipient / Processor | What May Be Shared | Purpose |
|---|---|---|
| Convex | App database records, profiles, scan results, routines, diary data, consent records | Backend database, server functions, account data, exports, deletion |
| Clerk | Account identifiers, authentication data | Login, account management, authentication |
| Cloudflare Images | Face photos, diary photos, product or label images where applicable | Secure image storage and delivery |
| Google Gemini / OpenRouter | AI prompts, face scan inputs, profile context, product/ingredient text, chat messages where needed | AI cosmetic skincare analysis, routines, chat, OCR/product analysis |
| RevenueCat | App user ID, subscription status, purchase metadata | Subscription management, entitlement verification, restore purchases |
| Sentry | Crash/debug data, redacted diagnostics | App reliability, error monitoring |
| PostHog | Basic app usage events only; Glow is configured not to send consumer health data | Basic analytics, app usage measurement |
| Resend | Email address and email content for account/support/legal emails | Transactional emails and user communications |
| WeatherAPI | Approximate location or weather lookup information where enabled | Weather-aware skincare tips |
Glow does not sell consumer health data. Glow does not share consumer health data for cross-context behavioral advertising. Glow does not use consumer health data for targeted advertising.
6. AI Providers And Model Training
Glow uses AI providers to generate cosmetic skincare analysis and recommendations. We configure AI providers with privacy settings intended to prevent model training on user data where supported, including no-store or data-collection-deny settings when available.
Your consumer health data is not shared with AI providers for advertising. Glow does not authorize AI providers to use your consumer health data to train their general models.
AI providers may process data for limited safety, abuse-monitoring, security, or legal-compliance purposes according to their enterprise or API terms. Glow works to minimize what is sent and only sends data needed to provide the requested AI feature.
The AI Clear Skin Preview feature using KIE/kie.ai is disabled for launch unless and until Glow approves the vendor's retention terms, updates disclosures if needed, and obtains any required consent.
7. Location And Geofencing
If you enable weather-aware skincare features, Glow may use approximate location information to provide weather-related cosmetic skincare tips.
Glow does not use consumer health data or location data to create advertising geofences. Glow does not use location data to identify visits to healthcare facilities, reproductive health facilities, or similar sensitive locations.
8. Your Consumer Health Data Rights
Depending on where you live, you may have the right to:
- Confirm whether Glow collects, shares, or sells consumer health data about you
- Access your consumer health data
- Receive a list of third parties or affiliates with whom Glow has shared consumer health data, where required by law
- Withdraw consent for collection or sharing of consumer health data
- Request deletion of consumer health data
- Appeal a refusal to act on your request
- Receive a copy of your data in an export where available
To exercise these rights, contact us at:
support@glowskincare.app
Subject line: Consumer Health Data Request
You may also use in-app account deletion or data export tools where available.
We may need to verify your identity before completing a request. We will not require you to create a new account to exercise your rights, but we may ask you to use your existing account or provide information reasonably needed to verify the request.
9. Response Timing
We will respond to verified consumer health data requests without undue delay and within 45 days where required by law. If reasonably necessary due to complexity or volume, we may extend the response period once by up to 45 additional days and will explain the reason for the extension.
If a deletion request includes data stored in backups or archives, deletion from those systems may be delayed as permitted by law, but not longer than legally allowed.
10. Appeals
If we deny your consumer health data request, you may appeal by emailing:
support@glowskincare.app
Subject line: Consumer Health Data Appeal
We will respond to appeals within the timeframe required by applicable law. If an appeal is denied, we will provide information about how to contact the relevant regulator where required.
11. Data Retention And Deletion
Glow keeps consumer health data only as long as reasonably needed to provide the app, comply with legal obligations, resolve disputes, enforce agreements, maintain security, or honor your choices.
When you delete your account, Glow deletes or anonymizes user-scoped data from our systems, subject to limited legal-retention records such as consent logs, purchase records, fraud-prevention records, or records needed to prove compliance.
Where applicable, Glow also initiates deletion or deletion-review workflows with processors that received consumer health data.
12. Security
Glow uses administrative, technical, and organizational safeguards designed to protect consumer health data. These safeguards may include access controls, authentication, rate limits, secure cloud storage, monitoring, data minimization, and deletion workflows.
No system is perfectly secure, but Glow works to protect consumer health data based on the sensitivity and volume of the data processed.
13. Changes To This Policy
We may update this Consumer Health Data Privacy Policy from time to time. If we make material changes to the categories of consumer health data collected, the purposes for collection or sharing, or the third parties receiving consumer health data, we will update this policy and obtain consent where required by law before the new processing begins.
14. Contact Us
Glow
Email: support@glowskincare.app
For consumer health data requests, use the subject line:
Consumer Health Data Request