Privacy Policy — Mirrorly

At Mirrorly, we believe that seeing yourself clearly starts with respecting your privacy. We are committed to protecting your personal data and being transparent about how we collect, use, and store it. This policy applies to the Mirrorly smart mirror hardware, the companion mobile application, and our website.

We do not sell your personal data to third parties. We use the information we collect to provide, maintain, and improve our services, and to ensure the security of your account.

We collect the following categories of data to operate our services effectively:

• Account Information: When you create an account, we collect your name, email address, and billing information required for purchase and support.
• Device Usage & Diagnostics: We collect technical data such as device model, firmware version, error logs, and usage statistics to ensure hardware stability and performance.
• AI Skin Scan Data: When you use the AI Skin Intelligence feature, the mirror captures visual data to analyze skin health. See our specific practices below.
• Payment Information: We use third-party payment processors (Stripe) to handle transactions. We do not store your full credit card numbers on our servers.

We understand that skin data is highly sensitive. Our AI Skin Intelligence is designed with privacy by design.

On-Device Processing: The majority of skin analysis is performed locally on the Mirrorly hardware. Visual data is not transmitted to our servers unless you explicitly opt-in to the "Cloud Sync" feature in the app settings.

Optional Cloud Backup: If you enable cloud sync, your skin scan history is encrypted and stored securely. You can view, download, or delete this data at any time from your account settings.

User Control: You retain full ownership of your biometric data. You can request the deletion of your AI scan history from the device or the app at any moment.

We use cookies and similar tracking technologies (such as pixels and local storage) to enhance your browsing experience, analyze site traffic, and personalize content.

Essential Cookies: Required for the website to function properly (e.g., maintaining your session).

Analytics Cookies: Allow us to understand how visitors interact with our site to improve performance.

You can manage your cookie preferences through your browser settings. Please note that disabling essential cookies may impair the functionality of the website.

We comply with global data protection regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). You have the following rights regarding your personal data:

• Access: You have the right to request a copy of the personal data we hold about you.
• Deletion: You have the right to request the deletion of your personal data, subject to certain legal exceptions.
• Portability: You have the right to request that we transfer your data to another organization, or directly to you, in a structured, common, and machine-readable format.
• Rectification: You have the right to request correction of inaccurate or incomplete data.

To exercise these rights, please contact our Data Protection Officer at privacy@mirrorly.best.

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy or as required by law.

• Account Data: Retained for the duration of your account and for up to 2 years after account closure for legal and tax purposes.
• Usage Logs: Retained for 12 months to assist with technical support and security audits.
• AI Scan Data: Retained indefinitely if cloud sync is enabled; retained locally on the device until manually deleted by the user.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to us directly.

Email: privacy@mirrorly.best