Privacy Policy

Effective date: March 21, 2026 · Last updated: March 21, 2026

The short version: GLOWD analyzes your face entirely on your device. Your photos and facial data never leave your phone. We do not create user accounts and do not sell or share personal data. We use PostHog for anonymous usage analytics and RevenueCat for subscription management.

1. Information We Do Not Collect

GLOWD is designed with a privacy-first architecture. We do not:

Upload, transmit, or store your photos on any server
Collect, store, or share biometric data (facial geometry, landmarks, or measurements) outside your device
Require or create user accounts
Collect your name, email address, phone number, or any personally identifiable information
Use cookies, tracking pixels, or advertising networks
Track your location
Log your facial data or analysis results on our servers

All facial analysis happens entirely on your device using MediaPipe (by Google), running fully offline. Your data never leaves your phone.

2. On-Device Processing

When you take or upload a photo:

MediaPipe detects up to 468 facial landmarks on your device, entirely offline
GLOWD calculates 13 facial ratios (proportions) from those landmarks
A scoring algorithm compares your ratios to statistical baselines
You see the results, including your Harmony Index score

This entire process occurs locally on your device. No photos, landmarks, ratios, or results are transmitted to GLOWD servers or any third party.

3. Local Data Storage

All scan results (scores and ratio values) are stored locally on your device only. Because all biometric processing occurs on-device and no biometric data is ever collected by us, there is no biometric data for us to retain, disclose, or protect on our servers.

4. Camera and Photo Library Access

GLOWD requests access to your device's camera and/or photo library solely for the purpose of capturing or selecting a photo for facial analysis. We use Apple's standard permission prompts. You can revoke these permissions at any time via your device's Settings app. When you deny camera or photo access, you can still use other features of the app, but facial analysis will not be available.

5. Purchase Information

If you subscribe to GLOWD's premium features, the payment transaction is processed entirely by Apple through the App Store. We do not receive, process, or store your payment information (credit card number, billing address, etc.).

We use RevenueCat to manage subscription entitlements. RevenueCat receives an anonymous app user ID (a randomly generated UUID), your subscription status, and purchase receipts from Apple — but no payment card details, photos, or biometric data. RevenueCat's privacy policy is available at revenuecat.com/privacy.

6. Analytics

GLOWD uses PostHog for analytics to understand how users interact with the app (e.g., which features are used, where users encounter errors). This helps us improve the product. PostHog collects:

Anonymous usage events (feature opens, button taps, onboarding steps)
Device type and OS version
App version and crash logs
Self-reported gender (selected during onboarding, stored as an anonymous user property)
Onboarding quiz responses (interest level, app familiarity — stored anonymously)
Aggregate facial harmony scores (your overall Harmony Index score and per-ratio scores, not linked to your identity or photos)
Subscription tier (free or premium)
Days since first install and number of scans performed

PostHog does not collect:

Your photos or facial landmark data
Any personally identifiable information (name, email, phone number)
Your payment information
Your location

Screen-view tracking is disabled in our PostHog configuration. You can view PostHog's privacy policy at posthog.com/privacy.

7. Third-Party Services

Service	Purpose	Data received
MediaPipe (Google)	On-device facial landmark detection	Runs entirely on your device; no data is sent to Google
PostHog	Anonymous usage analytics	See Section 6 above. PostHog privacy policy
RevenueCat	Subscription management and entitlement verification	Anonymous app user ID, subscription status, purchase receipts. No payment card data, photos, or biometric data. RevenueCat privacy policy
Apple App Store	Payment processing and app distribution	Apple handles all payment data; we receive only subscription receipts via RevenueCat

None of these services receive your photos or biometric data.

8. Data Retention

Because all analysis happens on your device and we do not collect your personal or biometric data, there is nothing for us to retain on our servers. Scan history is stored locally on your device and can be deleted at any time through the app's settings. Anonymous PostHog analytics events are retained per PostHog's standard data retention policy.

9. International Data Transfers

All biometric data processing occurs on your device. Anonymous analytics events collected by PostHog may be transferred to and stored on servers in the United States in accordance with PostHog's privacy policy.

For users in the European Economic Area (EEA): because we do not collect personal data as defined under GDPR, data subject rights (access, rectification, erasure, portability, restriction) do not require action on our part — your biometric and photo data is entirely in your hands, on your device.

For users in California: under the CCPA/CPRA, you have the right to know what personal information is collected. We confirm that we do not collect, sell, or share personal information as defined by California law. The anonymous analytics data described in Section 6 is not "personal information" as defined by the CCPA.

10. Changes to This Policy

If we make material changes to this Privacy Policy, we will update the "Last updated" date at the top and, where practicable, notify users through the app. Continued use of GLOWD after changes become effective constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: glowdapp@gmail.com