PRIVACY POLICY FOR SKINKLAIR

Last Updated: March 30, 2026

This Privacy Policy describes how LEVTUZAR L.L.C. ("we," "us," or "our") collects, uses, and protects your personal information when you use the SkinKlair mobile application (the "App" or "Service"). We are committed to protecting your privacy and handling your data with transparency and care.

By using SkinKlair, you agree to the collection and use of information in accordance with this Privacy Policy.

1. INFORMATION WE COLLECT

We collect different types of information to provide and improve our Service:

DATA COLLECTION TABLE

2. FACE DATA AND BIOMETRIC INFORMATION

2.1 What is Face Data?

Face Data refers to photographs of your face that you voluntarily submit through SkinKlair's in-app camera for skin analysis purposes. This data constitutes biometric information under various privacy laws, including the Illinois Biometric Information Privacy Act (BIPA), GDPR, and CCPA.

2.2 Collection and Use of Face Data

We collect facial photographs to:

• Perform AI-powered analysis of your skin condition
• Identify skin concerns such as acne, wrinkles, pigmentation, texture issues
• Generate personalized skincare recommendations
• Track your skin health progress over time
• Provide you with customized skincare routines

Each time you use the scanning feature, the App will explicitly request your consent to capture a photo. We do not capture any photos without your active involvement and explicit permission.

2.3 How Face Data is Processed

When you take a skin analysis scan:

Step 1: You take a photo using the in-app camera
Step 2: The image is securely transmitted to AILabTools Pro API for analysis
Step 3: AILabTools processes the image and returns analysis results
Step 4: We receive and store the analysis results in your account
Step 5: The facial image is handled according to your consent preferences (see below)

2.4 Face Data Storage and Retention - Default (No Consent for AI Improvement)

BY DEFAULT, we do not retain your facial images on our servers:

• Your facial image is sent to AILabTools Pro API for analysis
• AILabTools processes the image and returns skin analysis results
• The analysis results are saved to your SkinKlair account
• Your facial image is DELETED from our servers immediately after analysis completes
• The original image remains stored only on your device
• Device-stored images are deleted when you uninstall the App

This is our default, privacy-protective approach. We do not retain your biometric data unless you explicitly consent to help improve SkinKlair (see Section 2.5 below).

2.5 Optional: Help Improve SkinKlair (Retention with Consent)

You may choose to allow us to retain your facial images to improve our AI analysis accuracy. This is completely optional and can be enabled or disabled at any time in Settings → Privacy → Help Improve SkinKlair.

If you enable "Help Improve SkinKlair":

• Your facial images may be retained on secure servers for up to 3 years
• Images are anonymized (separated from your account information)
• Images are used solely for AI model training and service improvement
• You can withdraw consent at any time by disabling the toggle in Settings
• Upon withdrawal, all previously saved images are permanently deleted within 30 days
• Opting out does not affect core app functionality - you can still perform scans

Your analysis results are ALWAYS saved for progress tracking, regardless of this setting. Only the retention of facial images is affected by this consent.

2.6 Disclosure and Sharing of Face Data

We do NOT:

• Sell your facial images to any third party
• Share your facial images with advertisers
• Use your facial images for marketing purposes
• Disclose your facial images to anyone except as required by law

The ONLY third party that processes your facial images is AILabTools Pro API, solely for the purpose of generating your skin analysis results. AILabTools does not retain your images after processing. See Section 6 for more details.

2.7 Biometric Data Security

We protect your facial images and biometric data using:

• Encryption in transit (TLS/SSL) during upload and transmission
• Encryption at rest on Firebase/Google Cloud servers
• Access controls limiting employee access to need-to-know basis only
• Regular security audits and vulnerability assessments
• Industry-standard data protection measures
• Secure authentication mechanisms

2.8 Illinois Biometric Information Privacy Act (BIPA) Compliance

For residents of Illinois and other jurisdictions with biometric privacy laws, we comply with all requirements:

• Default (no consent): Immediate deletion after analysis
• With consent: Up to 3 years or until consent withdrawn
• After account deletion: All biometric data deleted within 30 days
• After 3 years of account inactivity: All biometric data automatically deleted

2.9 Your Biometric Data Rights

Under various privacy laws, you have specific rights regarding your biometric data:

• Right to Know: You have the right to know what biometric data we collect and how we use it (fully disclosed in this section)
• Right to Access: You can request a copy of your biometric data by contacting support@skinklair.com
• Right to Delete: You can request deletion of your biometric data at any time by:
  • Disabling "Help Improve SkinKlair" in Settings (for consented retention)
  • Deleting your account in Settings → Account → Delete Account
  • Emailing us at support@skinklair.com
• Right to Refuse: You can refuse to provide biometric data by simply not using the facial scanning feature. This will limit access to skin analysis features but you can still use other parts of the App.
• Right to Withdraw Consent: You can withdraw consent for biometric data retention at any time by disabling the toggle in Settings. Deletion will occur within 30 days.

To exercise any of these rights, contact us at support@skinklair.com with the subject line "Biometric Data Rights Request."

3. HEALTH INFORMATION WE COLLECT

In addition to biometric data, we collect health-related information to provide personalized skincare recommendations based on the gut-skin connection.

3.1 Health Questionnaire Data

Through our 9-question health assessment, we collect:

• Dietary habits, nutritional information, and potential food allergens
• Gut health indicators and digestive wellness responses
• Lifestyle factors including sleep quality, stress levels, exercise frequency
• Skin condition history and current concerns
• Skincare product usage and routine frequency
• Environmental factors affecting your skin
• Hormone-related data (if provided under our Premium Hormone & Diet Personalization plan)

3.2 How We Use Health Information

We use your health data to:

• Understand the relationship between your gut health, diet, and skin condition
• Identify common food triggers and allergens that may affect your skin health
• Provide holistic, personalized dual-action recommendations addressing both topical skincare treatments and dietary modifications (e.g., foods to exclude or add)
• Customize your skincare routine based on your lifestyle and identified triggers
• Track correlations between lifestyle/dietary changes and skin improvements
• Generate insights about factors affecting your skin health using advanced AI models

3.3 Health Data Protection

Your health information is treated as sensitive personal information under GDPR, CCPA, and other privacy laws. We:

• Store health data separately from identifying information where possible
• Limit access to health data to authorized personnel only
• Use health data solely for providing personalized recommendations
• Never sell or share health data with third parties for marketing
• Encrypt health data both in transit and at rest

3.4 Health Information Retention

• Health questionnaire responses: Retained until you delete your account
• Analysis correlations: Retained for progress tracking until account deletion
• Anonymized health data: May be retained for service improvement in aggregate form

4. HOW WE USE YOUR PERSONAL DATA

We use your personal information for the following purposes:

4.1 Service Provision

• To create and manage your SkinKlair account
• To perform AI-powered skin analysis using your facial photographs
• To generate personalized skincare recommendations
• To track your skin health progress over time
• To provide customized skincare routines based on your profile and goals
• To enable subscription features (Premium and Advanced plans)

4.2 Communication

• To send you one-time passwords (OTP) for account verification
• To send password reset instructions
• To notify you of important changes to our Service or your account
• To respond to your customer support requests and inquiries
• To send you updates about new features (with your consent where required)

4.3 Service Improvement

• To analyze how users interact with the App and identify popular features
• To identify and fix technical issues, bugs, and performance problems
• To conduct research and development for new features
• To improve our AI analysis accuracy (only with your explicit consent for image retention)
• To create anonymized, aggregated statistics about app usage

4.4 Security and Fraud Prevention

• To detect, prevent, and respond to fraud, abuse, and security incidents
• To enforce our Terms of Service and protect our legal rights
• To comply with legal obligations and respond to lawful requests

4.5 Personalization

• To customize your in-app experience based on your preferences
• To remember your settings and preferences
• To show relevant content and recommendations
• To track your progress and celebrate milestones

5. DATA RETENTION

We retain your personal data only as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law.

RETENTION SCHEDULE:

Account Inactivity: If your account remains inactive (no logins) for 3 consecutive years, we will send you a notice and then delete your account and all associated data within 90 days unless you reactivate your account.

6. THIRD-PARTY SERVICES AND DATA SHARING

We share your personal data with carefully selected third-party service providers who help us operate and improve SkinKlair. We have data processing agreements with all service providers to ensure your data is protected.

6.1 Third-Party Service Providers

7. YOUR DATA PROTECTION RIGHTS (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have certain data protection rights under the General Data Protection Regulation (GDPR).

7.1 Right to Access

You have the right to request confirmation that we process your personal data and to access that data. You can request:

• A copy of your personal data
• Information about how we use your data
• Information about who we share your data with
• How long we retain your data

7.2 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You can request that we transmit this data directly to another controller where technically feasible.

7.3 Right to Rectification

You have the right to request correction of inaccurate personal data. You can update most information directly in the App settings. For other corrections, contact us at support@skinklair.com.

7.4 Right to Erasure ("Right to be Forgotten")

You have the right to request deletion of your personal data in certain circumstances:

• The data is no longer necessary for the purposes it was collected
• You withdraw consent (where processing is based on consent)
• You object to processing and there are no overriding legitimate grounds
• The data has been unlawfully processed
• Deletion is required to comply with a legal obligation

Note: Some data may need to be retained for legal compliance (e.g., payment records for tax purposes).

7.5 Right to Restrict Processing

You have the right to request restriction of processing of your personal data when:

• You contest the accuracy of the data (while we verify accuracy)
• Processing is unlawful but you don't want the data deleted
• We no longer need the data but you need it for legal claims
• You have objected to processing (while we verify legitimate grounds)

7.6 Right to Object to Processing

You have the right to object to processing of your personal data when:

• Processing is based on legitimate interests (Art. 6.1(f))
• Processing is for direct marketing purposes

We will stop processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.

7.7 Right to Withdraw Consent

Where we process your data based on consent (Art. 6.1(a)), you have the right to withdraw that consent at any time. This includes:

• Consent for marketing communications
• Consent for biometric data retention ("Help Improve SkinKlair")
• Consent for health data collection

Withdrawal of consent does not affect the lawfulness of processing based on consent before withdrawal.

7.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority (data protection authority) in your country of residence, place of work, or place of alleged infringement.

For a list of EU supervisory authorities: https://edpb.europa.eu/about-edpb/board/members_en

However, we encourage you to contact us first at support@skinklair.com so we can address your concerns directly.

7.9 How to Exercise Your GDPR Rights

To exercise any of these rights:

Email: support@skinklair.com
Subject Line: "GDPR Rights Request - [Specify Right]"
Information to Include:

• Your full name
• Email address associated with your account
• Specific right you wish to exercise
• Any additional details to help us process your request

Response Time: We will respond within 30 days. If we need more time, we will inform you and may extend our response by up to 60 additional days.

Identity Verification: We may request additional information to verify your identity before processing your request. This protects your data from unauthorized access.

8. CALIFORNIA PRIVACY RIGHTS (CCPA/CPRA)

If you are a California resident, you have specific privacy rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

8.1 Categories of Personal Information We Collect

Under CCPA, we collect the following categories of personal information:

• Identifiers: Email address, name, device identifiers, IP address
• Biometric Information: Facial photographs, skin analysis biometric markers
• Personal Information (Cal. Civ. Code § 1798.80(e)): Name, email address
• Protected Classification Characteristics: Age, gender (for personalization)
• Commercial Information: Subscription history, purchase records
• Internet/Network Activity: App usage, browsing behavior within the App
• Geolocation Data: Approximate location from IP address (not precise GPS)
• Sensory Information: Facial photographs submitted for analysis
• Health Information: Skin health data, dietary habits, gut health and food allergen responses, wellness questionnaire responses
• Inferences: Skin condition assessments, personalized recommendations

8.2 Sensitive Personal Information

We collect the following categories of sensitive personal information under CPRA:

• Biometric information used for identification (facial photographs)
• Health information (skin analysis data, health questionnaire responses)
• Precise geolocation (only if you explicitly enable location services - not required)

8.3 Business Purposes for Collection

We collect and use personal information for the following business purposes:

• Providing the SkinKlair service (skin analysis, personalized recommendations)
• Account management and customer support
• Processing payments and subscriptions
• Detecting and preventing fraud and security incidents
• Debugging and fixing technical issues
• Internal research and development to improve our Service
• Quality control and safety assurance
• Short-term transient use (e.g., displaying search results)

8.4 Categories of Third Parties We Share With

We share personal information with:

• Service providers: Firebase, AILabTools, Claude AI (Anthropic), RevenueCat, Resend, analytics providers
• Payment processors: Apple, Google (for in-app purchases)
• Professional advisors: Lawyers, accountants (when necessary)
• Government entities: When required by law

We do NOT sell your personal information to third parties.

8.5 Your California Privacy Rights

As a California resident, you have the following rights:

Right to Know:
You can request disclosure of:

• Categories of personal information we collect about you
• Categories of sources from which we collect your information
• Business purposes for collecting your information
• Categories of third parties with whom we share your information
• Specific pieces of personal information we have about you

Right to Delete:
You can request deletion of personal information we have collected from you, subject to certain exceptions (e.g., legal compliance, fraud prevention).

Right to Correct:
You can request correction of inaccurate personal information we maintain about you.

Right to Opt-Out of Sale:
We do NOT sell your personal information. Therefore, there is no need to opt-out.

Right to Limit Use of Sensitive Personal Information:
You can request that we limit our use of your sensitive personal information (biometric and health data) to:

• Performing services you reasonably expect (skin analysis)
• Security and fraud prevention
• Short-term transient use
• Quality and safety verification

However, this limitation may affect our ability to provide personalized recommendations and track your progress.

To limit use: Email support@skinklair.com with subject "Limit Sensitive Data Use"

Right to Non-Discrimination:
We will not discriminate against you for exercising any of your CCPA rights. You will not receive different pricing, service levels, or product quality.

8.6 How to Exercise Your California Rights

To exercise your rights:

Email: support@skinklair.com
Subject Line: "California Privacy Rights Request"
Include: Your name, email address, specific right you wish to exercise

Phone: Not yet available (contact via email)
Web Form: Available in Settings → Privacy → California Rights

Verification: We will verify your identity by confirming your email address and account information before processing your request.

Response Time: We will respond within 45 days. If we need additional time, we will inform you and may extend our response by up to 45 additional days.

Authorized Agents: You may designate an authorized agent to make requests on your behalf. The agent must provide written authorization signed by you.

8.7 Retention of Sensitive Personal Information

Biometric Information (Facial Images):

• Default: Deleted immediately after analysis
• With consent: Retained up to 3 years for AI improvement
• Upon withdrawal: Deleted within 30 days

Health Information:

• Retained until you delete your account
• Anonymized data may be retained for aggregate analytics

8.8 Do Not Sell My Personal Information

We do not sell personal information and have not sold personal information in the past 12 months. We do not have actual knowledge of selling personal information of minors under 16 years of age.

9. SECURITY MEASURES

We take the protection of your personal data very seriously and implement comprehensive security measures to protect it from unauthorized access, loss, theft, misuse, alteration, and destruction.

9.1 Technical Security Measures

Encryption in Transit:

• All data transmitted between your device and our servers uses TLS/SSL encryption
• Facial images uploaded for analysis are encrypted during transmission
• API communications use industry-standard encryption protocols

Encryption at Rest:

• All data stored on Firebase/Google Cloud is encrypted at rest
• Biometric data (when retained with consent) is encrypted using AES-256 encryption
• Database backups are encrypted

Access Controls:

• Multi-factor authentication for all employee access to production systems
• Role-based access control (RBAC) limiting data access to authorized personnel only
• Principle of least privilege - employees only access data necessary for their role
• Regular access reviews and immediate revocation upon employee departure

Authentication Security:

• Secure password hashing using industry-standard algorithms
• One-time password (OTP) verification for account access
• Account lockout after multiple failed login attempts
• Session management with automatic timeout

9.2 Operational Security Measures

• Regular security audits and vulnerability assessments
• Penetration testing by third-party security firms
• Security monitoring and intrusion detection systems
• Incident response plan for security breaches
• Employee security training and awareness programs
• Secure software development lifecycle (SDLC) practices
• Regular security patches and updates

9.3 Infrastructure Security

• Firebase/Google Cloud Platform with SOC 2, ISO 27001 certifications
• Redundant backups in geographically distributed data centers
• DDoS protection and network security measures
• Physical security controls at data center locations

9.4 Limitations of Security

While we implement robust security measures, no system is 100% secure. We cannot guarantee absolute security of your data. Potential risks include:

• Sophisticated cyberattacks beyond current security measures
• Vulnerabilities in third-party services we use
• User device compromises (malware, stolen devices)
• Social engineering attacks targeting users

9.5 Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Investigate the breach promptly to determine scope and impact
• Take immediate steps to contain and remediate the breach
• Notify affected users within 72 hours (where required by law)
• Provide information about what data was compromised
• Offer guidance on protective steps you can take
• Notify relevant supervisory authorities as required by law
• Cooperate fully with law enforcement investigations

9.6 Your Security Responsibilities

To help protect your account:

• Use a strong, unique password for your SkinKlair account
• Do not share your password with anyone
• Enable device security features (passcode, biometric unlock)
• Keep your device operating system and apps updated
• Be cautious of phishing emails claiming to be from SkinKlair
• Log out of shared or public devices
• Report suspicious activity immediately to support@skinklair.com

9.7 Reporting Security Incidents

If you become aware of a security vulnerability or incident related to SkinKlair:

Email: support@skinklair.com
Subject: "Security Incident Report"
Include: Details of the vulnerability or incident, steps to reproduce (if applicable)

We take all security reports seriously and will investigate promptly.

10. CHILDREN'S PRIVACY

SkinKlair is not intended for use by children under the age of 13 (or under 16 for residents of the European Economic Area).

10.1 Age Restrictions

• Minimum Age (Worldwide): 13 years old
• Minimum Age (EEA/UK/Switzerland): 16 years old
• We do not knowingly collect personal information from children below these ages

10.2 Parental Notice

If you are a parent or guardian and believe your child under 13 (or 16 in the EEA) has provided us with personal information:

Contact us immediately at: support@skinklair.com
Subject: "Child Privacy Concern"
Include: Your child's name, email address used, and date of birth

We will:

• Investigate the matter promptly
• Delete the child's account and all associated data within 30 days
• Cease all processing of the child's personal information
• Take steps to prevent similar occurrences

10.3 Age Verification

We rely on users to provide truthful information about their age during registration. We do not use sophisticated age verification mechanisms at this time.

If we discover that a user is below the minimum age, we will immediately delete their account and all associated data.

11. INTERNATIONAL DATA TRANSFERS

SkinKlair is operated from the United States by LEVTUZAR L.L.C., and uses cloud infrastructure primarily located in the United States (Google Cloud Platform/Firebase).

11.1 Data Transfer Mechanisms

For users in the European Economic Area (EEA), United Kingdom, and Switzerland:

Your personal data is transferred to and processed in the United States. We ensure your data is protected under the following safeguards:

• Standard Contractual Clauses (SCCs): We use EU-approved Standard Contractual Clauses with our service providers (Firebase/Google Cloud, Anthropic) to ensure adequate data protection.
• Adequacy Decisions: We may rely on adequacy decisions by the European Commission where available.
• Supplementary Measures: We implement additional technical and organizational measures to protect data transferred outside the EEA, including encryption, access controls, and contractual obligations.

11.2 Your Rights Regarding International Transfers

You have the right to:

• Obtain information about the safeguards we use for international transfers
• Request a copy of the Standard Contractual Clauses
• Object to transfers in certain circumstances

Contact support@skinklair.com for more information about our data transfer mechanisms.

12. APPLE APP STORE AND GOOGLE PLAY STORE COMPLIANCE

This App complies with Apple App Store Review Guidelines and Google Play Developer Program Policies.

12.1 App Store Compliance

• Clear disclosure of all data collection and usage practices
• Explicit user consent before collecting sensitive data (biometric, health)
• User control over data sharing preferences
• Appropriate security measures for sensitive data
• Easy opt-out mechanisms for optional features
• Transparency about third-party SDKs and data sharing
• Compliance with App Tracking Transparency framework (when applicable)

12.2 Data Safety Declaration

Our Google Play Data Safety disclosure accurately reflects:

• All data types collected
• How data is used
• Whether data is shared with third parties
• Security measures implemented
• Whether users can request data deletion

You can review our Data Safety declaration on the Google Play Store listing.

13. COOKIES AND TRACKING TECHNOLOGIES

SkinKlair is a mobile application and does not use browser cookies. However, we use similar technologies for analytics and functionality.

13.1 Technologies We Use

Mobile Device Identifiers:

• iOS: IDFA (Identifier for Advertisers) - only if you consent to tracking
• Android: Advertising ID
• Purpose: Analytics, crash reporting, attribution

Local Storage:

• We store data locally on your device for app functionality
• This includes your preferences, cached analysis results, and facial images
• Local data is deleted when you uninstall the App

Analytics SDKs:

• Firebase Analytics collects usage data (screen views, events, crashes)
• Data is anonymized and aggregated for statistical analysis
• You can opt-out of analytics in Settings → Privacy → Analytics

13.2 Do Not Track

Mobile operating systems provide settings to limit ad tracking:

• iOS: Settings → Privacy & Security → Tracking → Ask App Not to Track
• Android: Settings → Google → Ads → Opt out of Ads Personalization

We respect these settings and do not use data for advertising purposes.

14. MARKETING COMMUNICATIONS

14.1 Types of Communications

We may send you:

Transactional Emails (cannot opt-out):

• Account verification codes (OTP)
• Password reset instructions
• Critical service updates
• Subscription confirmations and receipts
• Privacy policy and terms updates

Promotional Emails (can opt-out):

• New feature announcements
• Skincare tips and advice
• Special offers and promotions
• Product updates

14.2 Consent for Marketing (EU Users)

If you are located in the EU/EEA, we will only send you marketing communications if you have explicitly consented (opt-in).

During registration, you can choose whether to receive marketing emails by checking the box: "Send me skincare tips and updates about SkinKlair"

14.3 Opt-Out

You can opt-out of marketing communications at any time by:

• Clicking "Unsubscribe" at the bottom of any marketing email
• Going to Settings → Notifications → Marketing Emails and disabling
• Emailing support@skinklair.com with subject "Unsubscribe from Marketing"

Note: You will still receive essential transactional emails even after opting out.

15. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.

15.1 How We Notify You of Changes

When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Post the new policy on our website (app.skinklair.com/privacy)
• Notify you via email if the changes are material
• Display an in-app notice when you next open the App (for significant changes)
• Give you the option to review changes before continuing to use the Service

15.2 Material Changes

For material changes that affect your rights or how we handle sensitive data (biometric, health), we will:

• Provide at least 30 days' notice before the changes take effect
• Clearly explain what has changed and why
• Give you the option to delete your account if you don't agree with the changes
• Obtain new consent where required by law

15.3 Your Acceptance

By continuing to use SkinKlair after we post changes to this Privacy Policy, you accept the updated policy. If you do not agree with the changes, please delete your account before the changes take effect.

15.4 Policy Version History

We maintain a version history of this Privacy Policy. You can request previous versions by emailing support@skinklair.com.

16. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: support@skinklair.com
Subject: "Privacy Policy Inquiry"

Mailing Address:
LEVTUZAR L.L.C.
Attention: Privacy Officer
30 N GOULD ST STE R
SHERIDAN, WY 82801
UNITED STATES

Website: app.skinklair.com/privacy
Support Page: app.skinklair.com/support

Response Time: We aim to respond to all privacy inquiries within 7 business days.

For GDPR-related inquiries: support@skinklair.com (Subject: "GDPR Request")
For CCPA-related inquiries: support@skinklair.com (Subject: "CCPA Request")
For BIPA-related inquiries: support@skinklair.com (Subject: "BIPA Request")

17. DATA CONTROLLER INFORMATION

For the purposes of GDPR, the data controller is:

LEVTUZAR L.L.C.
30 N GOULD ST STE R
SHERIDAN, WY 82801
UNITED STATES
Email: support@skinklair.com

We are responsible for deciding how and why your personal data is processed.

18. YOUR CONSENT

By using SkinKlair, you consent to:

• The collection and use of your personal information as described in this Privacy Policy
• The processing of your biometric data (facial photographs) for skin analysis purposes
• The collection of health information through our questionnaire for personalized recommendations
• The transfer of your data to third-party service providers as described in Section 6
• The international transfer of your data to the United States and other countries as described in Section 11

You can withdraw your consent at any time by:

• Deleting your account
• Disabling specific features (e.g., "Help Improve SkinKlair")
• Contacting us at support@skinklair.com

END OF PRIVACY POLICY

Last Updated: March 30, 2026

© 2026 LEVTUZAR L.L.C. All rights reserved.