Skip to main content

Zero photos ever leave your device for skin analysis

Privacy Policy

Last updated: April 2026

1. The Core Promise

Hueman performs all skin tone analysis on-device in your browser. Your photos, camera frames, and raw pixel data never travel to our servers during shade matching. This is an architectural choice, not a policy setting — the technology literally cannot send your images anywhere.

2. How Shade Analysis Works (In-Browser Only)

When you allow camera or photo access, Hueman runs MediaPipe Face Landmarker entirely within your browser using WebAssembly (WASM). The model file itself is downloaded once from a CDN (stored in your browser cache after the first use). All computation happens locally:

  • Your camera frame or uploaded photo is processed in memory only
  • The face mesh extracts 468 landmark points and samples cheek/nose-bridge pixel patches
  • Pixel values are converted to LAB colour space on your device
  • Only the resulting LAB triplet (three numbers) is sent to our matching server — not your photo

The LAB triplet carries no biometric identity. It is a colour measurement, equivalent to telling us your foundation shade number.

3. AI Try-On Exception

The AI try-on feature (virtual foundation application preview) temporarily sends your photo to Google Gemini for image generation. This is the only server-side touch for your image data. Specifically:

  • Your photo is sent to Gemini solely to generate the try-on preview image
  • We do not store, index, or retain the photo after the API call completes
  • Gemini's data handling is governed by Google's Privacy Policy
  • You can use all shade matching features without triggering the try-on

4. Anonymous Session Cookie

We set a single anonymous session identifier called hueman_aid (Hueman Anonymous ID). This cookie:

  • Contains a randomly-generated UUID — no personal information
  • Lets us remember your shade preference across page reloads within a session
  • Is not linked to your name, email, or any identity
  • Is not shared with third-party advertisers
  • Expires when you close your browser (session cookie) or after 30 days of inactivity

5. Analytics

We use Vercel Analytics and Vercel Speed Insights for aggregate performance monitoring. These tools collect anonymised page-view metrics (page URL, country, browser type). No cross-site tracking, no personal profiles.

6. Merchant Data (Shopify Brands)

If you are a merchant who has installed Hueman on your Shopify store, we additionally hold:

  • Your Shopify shop domain and encrypted Shopify API access token
  • Product catalog data you sync to Hueman for shade matching
  • Usage event logs (analyze and try-on actions) linked to anonymous session IDs

Merchant data is processed under a Data Processing Agreement (DPA) available on request. We comply with all Shopify mandatory GDPR webhooks.

7. Your GDPR Rights

If you are located in the European Economic Area (EEA), you have the right to:

  • Access — request a copy of the data we hold about you
  • Erasure — request deletion of your data (for anonymous sessions, clearing your browser cookies achieves this immediately)
  • Portability — receive your data in a machine-readable format
  • Object — object to specific processing activities
  • Withdraw consent — at any time for processing based on consent

To exercise these rights, contact us at support@hueman.beauty. We will respond within 30 days.

8. Data Residency

Our servers are located in the European Union (via Vercel Frankfurt region). Gemini API requests are processed by Google according to their EU data processing terms.

9. Changes to This Policy

Material changes will be communicated via email to merchant account holders and announced on this page with an updated date. Continued use of the service after changes constitutes acceptance.

10. Contact

Data controller: Hueman (operated by Lifecycle Innovations Limited, registered in Hong Kong SAR).
Email: support@hueman.beauty