Welcome to AI Face Shape Detector ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website whatismyfaceshape.net and use our face shape detection services.

We are committed to protecting your privacy and ensuring the security of your personal information. This policy describes our practices regarding the collection, use, and disclosure of information that you may provide via our service.

1. Information You Provide Directly

Account Information (Optional)

If you choose to create an account, we may collect:

• Email address
• Name (optional)
• Profile preferences
• Face shape analysis results (if you choose to save them)

Contact Information

When you contact us for support or feedback:

• Email address
• Name
• Message content
• Device and browser information (for technical support)

2. Information Collected Automatically

Website Usage Data

We automatically collect certain information when you visit our website:

• IP address (anonymized)
• Browser type and version
• Operating system
• Page views and navigation patterns
• Time spent on pages
• Referring website
• Device type (desktop, mobile, tablet)

3. Information We DO NOT Collect

We use the collected information for the following purposes:

1. Service Provision

• Provide face shape detection analysis
• Display personalized styling recommendations
• Save your analysis results (if you create an account)
• Improve the accuracy of our AI algorithms

2. Website Improvement

• Analyze website usage patterns to improve user experience
• Optimize website performance and loading speeds
• Identify and fix technical issues
• Develop new features based on user behavior

3. Communication

• Respond to your inquiries and support requests
• Send important service updates (if you have an account)
• Provide technical support and assistance

4. Legal and Security

• Comply with applicable laws and regulations
• Protect against fraud, abuse, and security threats
• Enforce our Terms of Service
• Protect our legal rights and interests

1. Local Processing Technology

Our face shape detection uses advanced client-side processing technology:

• TensorFlow.js: AI models run entirely in your browser
• No Upload Required: Your photos never leave your device
• Real-time Analysis: Processing happens instantly on your device
• Privacy by Design: No server-side image processing

2. Data Storage Locations

3. Data Security Measures

• Encryption: All data transmission uses SSL/TLS encryption
• Access Controls: Strict employee access controls and authentication
• Regular Audits: Security assessments and vulnerability testing
• Data Minimization: We collect only necessary information
• Secure Infrastructure: Industry-standard cloud security practices

We work with trusted third-party service providers to enhance our services. These partners have access to limited information as necessary to perform their functions.

1. Analytics Services

Google Analytics

• Purpose: Website traffic analysis and user behavior insights
• Data Shared: Anonymized usage statistics, page views, session duration
• Privacy Settings: IP anonymization enabled, demographic data collection disabled
• Opt-out: You can opt-out using browser settings or Google's opt-out tool

2. Cloud Infrastructure

Content Delivery Network (CDN)

• Purpose: Fast, secure delivery of website content
• Data Processing: Temporary caching of website files
• Security: DDoS protection and secure content delivery

3. Communication Services

Email Service Providers

• Purpose: Send support responses and service communications
• Data Shared: Email addresses and message content (only when you contact us)
• Security: Encrypted transmission and storage

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website usage.

1. Types of Cookies We Use

2. Cookie Management

You can control cookies through your browser settings:

• Accept All: Allow all cookies for the best experience
• Essential Only: Only necessary cookies for basic functionality
• Custom Settings: Choose specific cookie categories
• Clear Cookies: Delete existing cookies at any time

3. Local Storage

We may use browser local storage to:

• Save your face shape analysis results (if requested)
• Remember your language and display preferences
• Store temporary data for improved performance
• Cache AI model data for faster processing

To support our free service, we display advertisements through trusted advertising partners. We are committed to responsible advertising practices that respect your privacy.

1. Google AdSense

How Google AdSense Works

• Contextual Advertising: Ads are matched to website content and user interests
• Personalized Ads: Based on your previous browsing activity (if enabled)
• Geographic Targeting: Ads relevant to your general location
• Device Optimization: Ads optimized for your device type

Data Used for Advertising

• Website content and page topics
• General geographic location (city/region level)
• Device type and browser information
• Previous ad interactions (anonymous)
• Interest categories (inferred from browsing)

2. Advertisement Disclosure

3. Managing Advertisement Preferences

Google Ad Settings

You can control how Google personalizes ads by:

• Visiting Google Ad Settings to manage preferences
• Turning off ad personalization entirely
• Choosing specific interest categories
• Viewing and deleting your advertising ID

Browser-Based Controls

• Ad Blockers: Browser extensions that block advertisements
• Do Not Track: Browser setting to request no tracking
• Privacy Mode: Incognito/private browsing reduces tracking
• Cookie Settings: Disable advertising cookies

4. Third-Party Advertising Networks

We may work with additional advertising partners who have their own privacy policies:

• Each partner follows industry privacy standards
• Partners provide opt-out mechanisms for their services
• We regularly review partner privacy practices
• Partners are prohibited from collecting personal information

You have important rights regarding your personal information. We are committed to helping you exercise these rights.

1. Access and Portability

• Right to Access: Request a copy of personal information we hold about you
• Data Portability: Receive your data in a machine-readable format
• Information Transparency: Understand how your data is processed

2. Correction and Deletion

• Right to Rectification: Correct inaccurate personal information
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your information

3. Consent and Objection

• Withdraw Consent: Revoke permission for data processing
• Object to Processing: Opt-out of certain data uses
• Marketing Communications: Unsubscribe from emails

4. How to Exercise Your Rights

5. Complaints and Regulatory Contact

If you believe we have not adequately addressed your privacy concerns, you have the right to:

• File a complaint with your local data protection authority
• Contact the relevant privacy commissioner in your jurisdiction
• Seek legal advice regarding your privacy rights

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

1. Technical Safeguards

• SSL/TLS Encryption: All data transmission is encrypted using industry-standard protocols
• Secure Hosting: Our website is hosted on secure, regularly updated servers
• Firewall Protection: Advanced firewall systems protect against unauthorized access
• Regular Updates: Security patches and software updates are applied promptly

2. Administrative Safeguards

• Access Controls: Employee access is limited based on job requirements
• Background Checks: Security screening for personnel with data access
• Training Programs: Regular privacy and security training for all staff
• Incident Response: Procedures for responding to security breaches

3. Physical Safeguards

• Secure Data Centers: Physical security controls at hosting facilities
• Environmental Controls: Temperature, humidity, and power monitoring
• Access Logging: All physical access is monitored and logged

4. Data Breach Response

In the unlikely event of a data breach, we will:

1. Investigate and contain the breach immediately
2. Assess the scope and impact of the incident
3. Notify affected users within 72 hours (if required by law)
4. Report to relevant authorities as legally required
5. Implement additional safeguards to prevent future incidents

We are committed to protecting the privacy of children and comply with applicable children's privacy laws, including COPPA (Children's Online Privacy Protection Act).

1. Age Restrictions

• Minimum Age: Our service is intended for users 13 years and older
• Parental Consent: Users under 18 should obtain parental permission
• No Targeted Collection: We do not knowingly collect information from children under 13

2. If We Learn of Child Information

If we become aware that we have collected personal information from a child under 13:

1. We will delete the information immediately
2. We will not use the information for any purpose
3. We will not disclose the information to third parties
4. We will implement additional safeguards to prevent future collection

3. Parental Rights

Parents and guardians have the right to:

• Review any personal information collected from their child
• Request deletion of their child's personal information
• Refuse to allow further collection of their child's information
• Contact us with questions about our children's privacy practices

Our website is accessible globally, and we serve users from many different countries. This section explains how we handle international data transfers.

1. Cross-Border Data Processing

• Global Accessibility: Our service is available worldwide
• Local Processing: Face analysis happens on your device regardless of location
• Server Locations: Our servers may be located in different countries
• Data Protection: We maintain consistent privacy standards globally

2. Regional Privacy Compliance

European Union (GDPR)

• Lawful basis for processing personal data
• Enhanced user rights and protections
• Data Protection Impact Assessments
• Appointment of Data Protection Officer (when required)

California (CCPA)

• Disclosure of personal information categories
• Right to know what information is collected
• Right to delete personal information
• Right to opt-out of sale (Note: we do not sell personal information)

Other Jurisdictions

• We monitor privacy law developments worldwide
• We adapt our practices to meet local requirements
• We provide appropriate user rights regardless of location

3. Data Transfer Safeguards

When personal information is transferred internationally, we ensure:

• Adequate Protection: Receiving countries have adequate privacy laws
• Contractual Safeguards: Standard contractual clauses with service providers
• Encryption in Transit: All international transfers are encrypted
• Limited Transfers: Only necessary data is transferred internationally

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

1. How We Notify You of Changes

• Website Notice: Prominent notice on our website for 30 days
• Email Notification: Direct email to registered users (if applicable)
• Updated Date: "Last Updated" date at the top of this policy
• Version History: Significant changes will be documented

2. Types of Changes

Minor Changes

• Clarifications of existing practices
• Contact information updates
• Formatting and readability improvements
• Correction of typographical errors

Material Changes

• New types of personal information collection
• Changes in how we use your information
• New third-party partnerships
• Changes to your rights or our legal obligations

3. Your Continued Use

By continuing to use our service after policy changes take effect, you acknowledge that you have read and understood the updated policy. If you disagree with any changes, you may:

• Discontinue using our service
• Contact us with your concerns
• Exercise your right to delete your account and data

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please don't hesitate to contact us.

Data Protection Officer

For users in the European Union, you can contact our Data Protection Officer at:

• Email: dpo@whatismyfaceshape.net
• Subject Line: Please include "DPO" in your subject line

Supervisory Authority

EU residents have the right to lodge a complaint with their local supervisory authority if they believe we have not adequately addressed their privacy concerns.