Privacy Policy

The Short Version

Free scans run in your browser. Pro scans, once enabled, temporarily upload photos to private processing storage so an AI model can generate the paid likeness report. Paid reports are saved by default, and paid scan images may be retained privately for a limited period so you can download reports, revisit results, and reuse photo sets without uploading them again.

1. Information We Collect

Photos

Free photo processing and facial analysis happens entirely within your web browser using client-side JavaScript (face-api.js). For paid Pro scans, photos may be uploaded to private storage under non-public paths for AI processing, report downloads, result history, and optional reuse in later scans. We retain paid scan images only for a limited retention window unless a different retention choice is presented in the product. Structured report JSON, scan metadata, credit ledger entries, and payment references may be retained longer for receipts, support, abuse prevention, and product history. You can delete a saved scan from the results page, which removes the saved report row and stored images for that scan.

Paid likeness reports may describe photo-observed physical attributes such as facial structure, eye color, hair color or style, complexion/skin tone, facial hair, freckles, dimples, or other visible marks when they are clear enough to compare. These observations are used only as visible likeness signals. They are not ancestry, ethnicity, race, nationality, religion, health, or legal determinations.

Pro reports may also include playful text-only future likeness previews, such as how a child's visible traits might read at older ages or beside parents in a same-age comparison. These previews are speculative entertainment content, not biometric forecasts.

If you create a share link for a saved Pro result, the report and temporary image previews can be viewed by anyone with that link until the share link expires or you delete the saved scan. Share links do not make raw storage paths public; the app creates temporary signed image URLs when a shared result page is opened.

Credits and Payments

When Pro scan packs are enabled, we may store anonymous session IDs, credit ledger entries, scan job status, payment IDs, and non-sensitive report metadata. Payments are processed by Stripe; we do not store full card numbers.

Accounts

If you sign in, we use Supabase Auth to manage your account. We may store your email address, account ID, credit balance history, purchases, saved scan reports, and retained scan image references so you can use scan packs across visits and manage saved results. Signing in links the current browser session to your account so prior credits and saved Pro scans are not stranded in local browser storage.

Analytics

We use PostHog for anonymous, privacy-focused usage analytics. This helps us understand how people use the site so we can improve it. PostHog may collect:

• Pages visited and general interaction patterns
• Browser type and screen size
• Approximate geographic region (country-level)
• Referral source

PostHog does not collect personally identifiable information, and we do not link analytics data to individual users.

2. Local Storage

We use your browser's localStorage to temporarily hold analysis results so you can view them on the results page. Free scan data stays on your device unless you choose a server-backed Pro or share flow. We may also use browser storage or IndexedDB to preserve uploaded photos during a Stripe Checkout redirect, so you do not have to re-upload the same images after payment.

Paid scan results may also be reloaded from your saved scan history or from a share link, which helps prevent accidentally losing a report or its image previews when you refresh, go back, or open the result on another device.

3. Deleting Saved Scans

You can delete saved Pro scans from the results page or account page when deletion controls are available. Deleting a saved scan removes the saved report row and stored images for that scan from active product storage. Some payment, ledger, security, and backup records may remain where needed for receipts, fraud prevention, debugging, tax/accounting, or legal compliance.

4. Cookies

We may use minimal cookies for analytics purposes (via PostHog). We do not use advertising cookies or tracking pixels from third-party ad networks.

5. Third-Party Services

We use PostHog for analytics. Pro scan infrastructure may also use Supabase for authentication, private storage, and database records, Stripe for payments, and an AI model provider for paid report generation. We do not sell personal data to third parties for advertising.

6. Children's Privacy

DadOrMad is not directed at children under 13. We do not knowingly collect personal information from children. Adults are responsible for ensuring they have appropriate consent to upload or process photos, including family photos used for Pro scans.

7. Data Security

Free scans rely primarily on your device's security. Pro scan uploads use private storage paths and server-side credentials; raw image URLs should not be public by default. Our website is served over HTTPS.

8. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected on this page with an updated "Last updated" date.

9. Contact

If you have questions about this privacy policy, you can reach us at DadOrMad.com.