Privacy Policy

1. Introduction

Euty ("we", "us", or "our") operates the Euty skincare tracking platform accessible at https://app.euty.site. This Privacy Policy describes:

• What personal information we collect
• How we use your information
• Who we share your information with
• How we protect your information
• Your rights and choices

2. Information We Collect

2.1 Information You Provide

When you use Euty, you directly provide us with the following information:

Account Information:

• Email address
• Password (encrypted and hashed)
• Account preferences and settings

Skin Profile Information:

• Skin type (dry, oily, combination, normal, sensitive)
• Skin concerns (acne, wrinkles, dark spots, etc.)
• Sensitivities and allergies
• Skincare goals

Product Information:

• Product names and brands
• Product types and categories
• Ingredient lists
• Product URLs (when using parsing feature)
• Production and expiry dates
• Personal ratings and notes

Routine Information:

• Generated skincare routines
• Routine completion logs
• Usage patterns and preferences

Payment Information:

• Payment method details (processed by our payment provider)
• Billing address
• Transaction history

2.2 Information We Collect Automatically

When you use our Service, we automatically collect:

Usage Information:

• Pages viewed and features used
• Time spent on different pages
• Click patterns and navigation paths
• Session duration and frequency

Device Information:

• IP address
• Browser type and version
• Operating system
• Device type (desktop, mobile, tablet)
• Screen resolution

Cookies and Similar Technologies:

• Authentication cookies (to keep you logged in)
• Preference cookies (to remember your settings)
• Analytics cookies (to understand usage patterns)

2.3 Information from Third Parties

If you choose to sign in with Google OAuth:

• Email address from your Google account
• Profile information (name, if provided)
• Google account ID

3. How We Use Your Information

3.1 To Provide Our Service

• Create and manage your account
• Store your skin profile and product information
• Generate personalized skincare routines using AI
• Parse product information from URLs
• Display your routine calendar and tracking data
• Process your subscription payments

3.2 To Improve Our Service

• Analyze usage patterns to improve features
• Identify and fix bugs
• Develop new features based on user needs
• Optimize AI routine generation algorithms
• Create anonymous, aggregated statistics

3.3 To Communicate With You

• Send account-related notifications
• Respond to your support requests
• Send important updates about our Service
• Send subscription and billing information
• Send marketing communications (with your consent)

3.4 For Security and Compliance

• Detect and prevent fraud and abuse
• Protect against security threats
• Enforce our Terms of Service
• Comply with legal obligations
• Resolve disputes

4. How We Share Your Information

4.1 Service Providers

We share information with trusted service providers who help us operate our Service:

• Cloud Hosting: To store and process your data securely
• Payment Processing: To handle subscription payments
• AI Services (OpenAI): To generate personalized routines
• Analytics: To understand how our Service is used (Google Analytics)
• Email Services: To send transactional emails

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required to:

• Comply with legal obligations or court orders
• Respond to lawful requests from law enforcement
• Protect our rights, property, or safety
• Protect the rights and safety of our users
• Prevent fraud or abuse

4.3 Business Transfers

If Euty is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different Privacy Policy.

4.4 With Your Consent

We may share your information for other purposes with your explicit consent.

5. Data Retention

We retain your information for as long as necessary to provide our Service and fulfill the purposes described in this Privacy Policy:

• Active Accounts: We retain your data while your account is active
• Deleted Accounts: We delete your data within 30 days after account deletion
• Legal Requirements: Some data may be retained longer to comply with legal obligations
• Backups: Backup copies are deleted according to our backup retention schedule

6. Data Security

We implement industry-standard security measures to protect your information:

6.1 Technical Measures

• Encryption in transit (HTTPS/TLS)
• Encryption at rest for sensitive data
• Secure password hashing (bcrypt)
• Regular security updates and patches
• Secure API authentication

6.2 Organizational Measures

• Limited access to personal data (need-to-know basis)
• Regular security audits and reviews
• Employee confidentiality agreements
• Incident response procedures

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Your Rights and Choices

7.1 Access and Portability

You have the right to:

• Access your personal information
• Request a copy of your data in a portable format
• Review what information we have about you

7.2 Correction and Updates

You can:

• Update your account information through settings
• Modify your skin profile at any time
• Edit or delete your products and routines
• Request corrections to inaccurate data

7.3 Deletion

You have the right to:

• Delete your account and associated data
• Request permanent deletion of your information
• Withdraw consent for data processing (where applicable)

Note: Some information may need to be retained for legal or legitimate business purposes.

7.4 Marketing Communications

You can opt out of marketing emails by:

• Clicking "unsubscribe" in any marketing email
• Updating your communication preferences in settings
• Contacting us directly

Note: You will still receive essential service-related emails.

7.5 Cookies

You can control cookies through:

• Your browser settings
• Declining cookies when prompted
• Using browser extensions to manage cookies

Note: Disabling certain cookies may affect Service functionality.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer your information internationally, we ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

9. Children's Privacy

Our Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us. We will delete such information from our systems.

10. Third-Party Services

10.1 Google OAuth

If you sign in with Google, your use of Google's services is subject to Google's Privacy Policy.

10.2 OpenAI

We use OpenAI's API to generate personalized routines. Data sent to OpenAI is processed according to OpenAI's Privacy Policy.

10.3 Analytics

We use Google Analytics to understand Service usage. Learn more about Google's data practices.

10.4 Payment Processors

Payment information is processed by our payment provider and subject to their privacy policy. We do not store complete credit card information.

11. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect
• Right to know if we sell or share your personal information
• Right to access your personal information
• Right to delete your personal information
• Right to opt-out of the sale of your personal information
• Right to non-discrimination for exercising your rights

Note: We do not sell personal information.

12. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority

Legal Basis for Processing

We process your personal data based on:

• Contract: To provide the Service you requested
• Consent: Where you have given explicit consent
• Legitimate Interests: To improve and secure our Service
• Legal Obligation: To comply with applicable laws

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

When we make significant changes:

• We will update the "Last Updated" date
• We will notify you via email
• We may display a prominent notice on our Service
• For material changes, we may require your consent

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: dmitrij.salenkoff@gmail.com
• Website: https://euty.site
• Application: https://app.euty.site

We will respond to your request within 30 days.

15. Data Protection Officer

For questions specifically related to data protection and privacy compliance, you may contact our Data Protection Officer through the contact information provided above.

---

By using Euty, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and use of your information as described.