Privacy Policy

1. Introduction

JIVUE Inc. ("we," "us," or "our") operates the JIVUE virtual try-on platform ("the Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

We are committed to protecting your privacy. We do not sell your personal data. We only collect what is necessary to provide and improve the Service.

2. Information We Collect

2.1 Information You Provide

• Account information: Email address, username, display name, and password (hashed — we never store plaintext passwords)
• Profile information: Optional bio and profile details you choose to add
• Photos: Front-facing photos and selfies you upload for avatar generation (automatically deleted after your avatar is generated), and garment photos you upload for virtual try-on
• Payment information: Processed securely by Stripe. We never store your full credit card number, CVV, or bank details on our servers. We only receive a confirmation of payment and a Stripe customer ID.

2.2 Information Collected Automatically

• Usage data: Pages visited, features used, credits consumed, timestamps
• Device information: Browser type, operating system, screen resolution, and device type
• Log data: IP address, referral URLs, and access times (used for security and debugging)

3. How We Use Your Information

We use your information to:

• Provide the Service: Generate avatars, process virtual try-ons, and display your results
• Process payments: Handle subscriptions and credit purchases through Stripe
• Communicate: Send account-related emails (verification, password reset, important updates)
• Improve the Service: Analyze usage patterns to improve features and fix bugs
• Security: Detect and prevent fraud, abuse, and unauthorized access

We do not use your photos to train AI models. Your photos are processed by third-party AI services solely to generate your requested outputs and are not retained by those services for model training.

4. Third-Party Services

We use the following third-party services to operate JIVUE. Each has its own privacy policy governing data it processes:

5. Data Retention

• Account data: Retained as long as your account is active
• Avatar source photos: Front photos and selfies are permanently deleted immediately after your avatar is generated. We do not retain your original personal photos.
• Garment photos and generated images: Stored in your account until you delete them individually or delete your account
• Payment records: Retained as required by tax and accounting laws (typically 7 years)
• Usage logs: Retained for up to 90 days for security and debugging purposes

6. Data Deletion

When you delete your account, we permanently delete all of your data. This includes:

• Your profile, username, and account information
• All uploaded photos (front photos, selfies, garment images)
• All generated avatars and try-on result images
• Your wardrobe, saved garments, and favorites
• Credit balances and transaction history

Account deletion is irreversible. You can delete your account from the Settings page at any time. Deletion is processed immediately, though some cached data may take up to 30 days to be purged from backups.

You can also delete individual try-on results and garments from your Wardrobe and My Looks pages at any time without deleting your account.

7. Cookies & Tracking

We use minimal cookies:

• Authentication cookies: Essential session cookies to keep you signed in. These are strictly necessary and cannot be disabled.
• Preference cookies: To remember your settings and preferences.

We do not use third-party advertising cookies or trackers. We do not participate in ad networks or cross-site tracking.

8. Data Security

We protect your data through:

• Encryption in transit (TLS/HTTPS for all connections)
• Encryption at rest for stored data
• Row-Level Security (RLS) on our database — users can only access their own data
• Secure, hashed password storage (managed by Supabase Auth)
• Private storage buckets with signed URLs for image access
• Service-role separation — client applications never have admin access to the database

While we take reasonable measures to protect your data, no system is 100% secure. If you become aware of a security vulnerability, please report it to security@jivue.com.

9. Your Rights

Depending on your jurisdiction (including GDPR, CCPA, and other privacy laws), you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Update or correct inaccurate information via your Settings page
• Deletion: Delete your account and all associated data at any time
• Export: Download your data (photos, try-on results) using the download features in the app
• Restriction: Request that we limit how we process your data
• Objection: Object to processing of your data for certain purposes
• Portability: Receive your data in a structured, machine-readable format

To exercise any of these rights, contact us at privacy@jivue.com. We will respond within 30 days.

10. Children's Privacy

The Service is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe a child under 16 has created an account, please contact us and we will delete the account promptly.

11. International Data Transfers

Your data may be processed and stored in the United States and other countries where our service providers operate. By using the Service, you consent to the transfer of your data to these locations. We ensure that appropriate safeguards are in place in accordance with applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by posting the updated policy and changing the "Last updated" date. For significant changes, we may also notify you by email.

13. Contact

If you have questions or concerns about this Privacy Policy or your data, please contact us at:

• Email: privacy@jivue.com
• General support: support@jivue.com