ZUTTER — SkinAI ZUTTER — SkinAI
Give Feedback 💬

Privacy Policy

Last updated: 2025-01-01

This Privacy Policy explains how Zutter SkinAI (“we”, “us”, “our”) collects, uses, and protects your personal data when you use the SkinAI recommendation service (the “Service”).

1. Who we are

Zutter SkinAI is a personal project created and operated by an individual located in the European Union. For privacy and safety, the operator does not publicly disclose personal identity.

You may contact us at:
support@zutter.co.uk

2. Personal data we collect

We only collect the data necessary to operate your SkinAI profile, authenticate your account, and store your skincare routines or favorite products.

Specifically, we collect and store:

  • Account information – your Auth0 user ID, email address, display name, and profile picture.
  • Profile information – nickname, country, age range, skin type, skin concerns, brand preferences, trend preferences, and ingredient preferences.
  • Settings – UI language preference and email-notification preferences.
  • Saved routines – routine title, step count, product linked to each step, creation date, and optional routine explanation text.
  • Saved favorite products – product you saved (it includes brand, product name, category, and safety flags), and the timestamp.
  • Technical session data – cookies required for login and session functionality.

We do not store any sensitive health data, medical diagnoses, or detailed biometric information.

3. How we use your data

Your data is used solely to operate the features of the Service:

  • Authenticating your account via Auth0.
  • Displaying your saved skincare routines and products.
  • Generating skincare recommendations based on your preferences.
  • Improving your experience (e.g., remembering your settings).
  • Maintaining the security and stability of the Service.

We do not use your data for advertising. We do not sell your data. We do not use your data to train AI models.

4. Legal basis (GDPR)

We process your data under the following lawful bases:

  • Contractual necessity – to provide your profile, routines, and login.
  • Consent – for cookies or optional email notifications.
  • Legitimate interest – security, fraud prevention, service maintenance.
5. Cookies

SkinAI only uses cookies necessary for secure login (via Auth0) and basic functionality. See our Cookie Policy for details.

6. Data sharing

We only share your data with essential service providers:

  • Auth0 – to provide secure login.
  • Cloud hosting & database providers – to run the app.
  • Legal authorities – only when strictly required by law.

We do not share your routines, preferences, or profile data with advertisers.

7. Data retention

We keep your profile, routines, and saved products for as long as your account exists. You may delete your account at any time. Some technical backups may retain data briefly for security before automatic expiration.

8. Your rights under GDPR

You have the right to:

  • Access your stored data.
  • Correct inaccurate information.
  • Delete your account and all stored data.
  • Withdraw consent for non-essential cookies or emails.
  • Request export of your data (“data portability”).
  • Object to processing in certain cases.
  • File a complaint with an EU supervisory authority.

To exercise these rights, email:
support@zutter.co.uk

9. International transfers

Services such as Auth0 or cloud providers may process data in the US or other regions. We rely on approved safeguards such as Standard Contractual Clauses (SCCs).

10. Security

We use encryption, access controls, and modern security practices to protect your data. However, no system is 100% secure, and we cannot guarantee absolute protection.

11. Children’s privacy

SkinAI is not intended for children under age 16. If you are under 16, please do not use the Service.

12. Changes to this policy

We may update this Privacy Policy from time to time. Changes will be reflected with an updated “Last Updated” date.

13. Contact

You can reach us at:
support@zutter.co.uk