Русский English

Privacy Policy

Effective April 17, 2026 · Last updated: April 17, 2026

This policy describes how the Fitwear app (the "Service", "we", hosted at fitwear.app) collects, uses and protects your data. By using the app, you agree to this policy.

1.What we collect

Account data:

• email and password (stored as a bcrypt hash, cannot be recovered);
• display name;
• chosen role (buyer / seller / admin).

Content you upload:

• your body scan photos for virtual try-on;
• clothing photos you add to your wardrobe;
• generated try-on results;
• feedback (👍/👎) and saved capsule outfits.

Technical data:

• IP address, device type, app version, request timestamps;
• Apple Push Notifications device token (if you allowed notifications);
• error logs and performance metrics.

2.How we use it

• generate virtual try-ons from your photos;
• store your try-ons and capsules so you can revisit them;
• personalize outfit recommendations based on your feedback;
• send push notifications when a try-on is ready (with your consent);
• protect the service: block disallowed content (NSFW), prevent abuse (rate limit + risk score);
• analyze aggregate stats to improve model quality.

3.Who we share with

We share only de-identified images with external AI providers for processing:

• fal.ai (Google Cloud) — virtual try-on generation and content vision checks. Sent: URLs of your body scan and clothing photos. Personal data (email, name) is not sent. See fal.ai/privacy.
• Apple Push Notifications service — to deliver push notifications (device token + notification text only).

We do not sell your data to third parties and do not use it for advertising.

4.Where data is stored

Data is stored on VPS servers in Russia. Database backups are created daily and kept for 7 days. Uploaded images live on the server filesystem and are accessed via HTTPS (most operations require authorization).

5.How long we keep data

• account and related data — for as long as you use the app;
• after account deletion (see § 7) — data is removed within 30 days, except as required by law;
• safety audit log (NSFW / rate-limit snapshots) — up to 24 hours in process memory; resets on server restart.

6.Security

• HTTPS (TLS 1.2/1.3) for all client-server connections;
• JWT auth tokens, bcrypt-hashed passwords;
• strict content moderation: prompt guard + vision check on input and output images;
• anti-abuse: rate limiting and automatic risk-scoring;
• safety journal accessible only to administrators.

7.Your rights

Under applicable law (including GDPR), you can:

• request a copy of your data;
• correct inaccurate data via the app settings;
• delete your account and related data — write to privacy@fitwear.app;
• withdraw consent (this triggers account deletion);
• file a complaint with your supervisory authority.

We respond within 30 days.

8.Children

The Service is not intended for users under 18. We do not knowingly collect data from minors. If you discover a minor is using the Service, please write to privacy@fitwear.app and we will remove the account.

9.Changes

For material changes, we will update the "Effective" date and notify active users via the app or email. Continued use after changes means you accept the new version.

10.Contact

Privacy: privacy@fitwear.app
Support: support@fitwear.app
Legal: legal@fitwear.app