Privacy

Privacy Policy

Last updated

ReviewHQ is a product-fit intelligence platform. To give you personalised recommendations, we need to store information about you — your skin, hair, allergies, and the products you've used. This policy explains, in plain language, what we collect, why we collect it, and the choices you have.

We designed ReviewHQ so that the data you share works for you, not against you. We do not sell your personal data. We do not rent your email list. If that ever changes, we'll tell you directly before it does.

1. Information we collect

We collect only what we need to power the product:

Account data

  • Email address and password (stored hashed)
  • Display name and optional profile picture
  • Authentication tokens when you sign in with a provider

Profile data

  • Skin type, hair type, ethnicity (optional)
  • Concerns (acne, dryness, breakage, etc.)
  • Allergies and sensitivities
  • Goals and preferences you share in the onboarding quiz

Usage data

  • Products viewed, reviewed, saved, or tracked
  • Reviews, ratings, and discussion comments you publish
  • Face scan images used for onboarding analysis when you choose that feature
  • Future Skin Projection images and generated previews when you choose to save them
  • Referring pages, device type, and approximate location (city-level) from standard request logs

Payment data

If and when we introduce paid features, payments are handled by a PCI-compliant processor. We receive confirmation and the last four digits of your card — never the full number.

2. How we use your data

Your data is used only for the purposes below:

  • Personalisation. Your profile is matched against product ingredients and reviewer profiles so you see results tuned to you.
  • Safety. We cross-reference your declared allergies against product ingredient lists and flag matches prominently.
  • Community. Your reviews, ratings, and comments are shown to other users. Your profile is displayed as an aggregated signal (e.g. "reviewer has oily skin"), not as your full profile card.
  • AI features. We send anonymised product and profile context to our AI provider (Groq) to generate summaries, compatibility scores, and expert chat replies. AI requests do not include your email, name, or payment data.
  • Service operations. Account authentication, transactional emails, fraud prevention, and debugging.

3. What we share, and with whom

We share data only with service providers who help us run the product — never with advertisers, data brokers, or third parties for their own marketing.

  • Supabase — hosts our database, authentication, and file storage.
  • Groq — runs the AI models that power summaries, advice, face scan, and chat.
  • Resend — sends transactional emails.
  • Vercel — hosts the application and handles infrastructure logs.

Each of these providers is bound by a data-processing agreement. We share only what they need to perform their function, and we can terminate access if they don't meet our standards.

4. Face scan & biometric data

The face scan is optional. When you choose to use it, your image is sent once to our AI provider, analysed for skin type and visible concerns, and then the onboarding scan itself is discarded.

The separate Future Skin Projection feature is also optional. When you use it, we store your original scan, generated projection, and any later progress snapshots privately in your account so you can revisit and compare them over time.

If you'd prefer to skip this, you can complete onboarding without ever opening the camera — the quiz alone is enough.

5. Cookies & tracking

We use a small set of cookies, all essential to the product:

  • Session cookie. Keeps you signed in between visits.
  • Preference cookie. Remembers choices like reduced-motion and category filters.
  • CSRF token. Prevents cross-site request forgery on sensitive actions.

We do not run third-party advertising trackers, pixels, or behavioural analytics across other sites.

6. How long we keep your data

  • Active accounts. Kept for as long as the account is active.
  • Deleted accounts. Removed within 30 days of your deletion request. Some anonymised review text may remain in the community if your account contributed to public discussion, but all identifying data is stripped.
  • Backups. Encrypted backups roll off on a 35-day cycle.
  • Logs. Standard request logs are retained for up to 90 days for security and debugging.

7. Your rights and controls

You have the right to:

  • Access — request a copy of the data we hold on you.
  • Correct — update your profile at any time from Settings.
  • Export — download your reviews, profile, and activity as a portable file.
  • Delete — permanently close your account and erase personal data.
  • Object — opt out of non-essential processing (we will tell you if this limits functionality).

Most of these controls live in Settings → Privacy. If a control you need isn't self-serve yet, email us and we'll handle it manually within five business days.

8. Security

We protect data with industry-standard controls: encrypted transport (TLS 1.3), encrypted storage, hashed passwords, strict row-level security policies on the database, and least-privilege access for staff.

No system is perfect. If we ever detect a breach that affects your data, we will notify you without undue delay — typically within 72 hours of confirmation.

9. Children

ReviewHQ is for users 16 and older. We do not knowingly collect data from anyone under 16. If you believe a minor has created an account, contact us and we'll remove it.

10. Changes to this policy

When we make meaningful changes to this policy, we'll update the "last updated" date at the top and, for substantive changes, email active users at least 14 days before the change takes effect.

Questions about this?

We're a real team. Email us and we'll reply within a business day.

use.review.hq@gmail.comContact page →