STYVU Privacy & Content Policy

This Privacy & Content Policy explains how STYVU collects, uses, stores, shares, and protects information when you use the STYVU website, mobile application, AI image generation tools, virtual try-on features, wardrobe tools, subscription features, and related services (the "Service"). It also sets out the content and image-upload rules that apply to your use of STYVU.

This Policy should be read together with our Terms of Service. If you do not agree with this Policy, you must not use the Service.

1. Who We Are

STYVU is operated under the STYVU brand ("STYVU," "we," "us," or "our"). For privacy law purposes, STYVU is the controller of personal information that we determine how and why to process, unless a third-party service acts as an independent controller under its own terms.

If STYVU is later incorporated, reorganized, sold, or transferred to a company or successor entity, this Policy may apply to that entity. Where applicable law requires a data protection officer, EU representative, UK representative, or other local privacy contact, we will identify that contact in this Policy, in the app, or in another legally appropriate notice before the relevant requirement applies.

2. What STYVU Does

STYVU is an AI-powered virtual wardrobe and styling application. The Service may let you upload, capture, or select photos of yourself; add garment references; organize wardrobe items; create outfit projects; build collages; remove backgrounds; generate AI try-on images; save outputs; sync certain data through your device or iCloud where enabled; manage credits, trials, referrals, and subscriptions; and contact support.

Because these features involve photos, body images, garment images, internally controlled AI instructions, AI-generated outputs, and purchase records, STYVU treats this information as sensitive in practice even where a particular law does not classify all of it as sensitive personal information.

3. Information We Collect

Depending on how you use STYVU, we may collect the following categories of information:

• account and authentication information, such as user ID, email address, sign-in provider, authentication status, password reset state, and account deletion status;
• photos, images, and visual content that you submit for AI generation, background removal, support, or another Service feature that requires server-side processing;
• wardrobe items, outfit projects, layers, masks, collages, saved references, outfit names, folders, notes, and metadata you provide, where this information is stored in STYVU-controlled systems or submitted for a Service feature that requires server-side processing;
• AI generation data, such as STYVU-controlled template IDs, model IDs, request IDs, queue status, progress, error messages, result URLs, file names, content types, credit usage, and delivery acknowledgements;
• subscription, payment, and credit information, such as product IDs, transaction IDs, original transaction IDs, subscription tier, renewal or expiration state, trial eligibility, credit balances, refunds, and purchase history received through app stores, StoreKit, and subscription management providers;
• device, app, and security information, such as app version, build number, device install hash, IP-derived technical data, rate-limit events, server logs, network state, crash reports, diagnostic context, and abuse prevention signals;
• referral and influencer program information, such as referral code, attribution records, bonus credits, commission ledger records, and related transaction events;
• support and communication information, such as messages, requests, attachments, email address, and records of our responses.

Users do not write free-form prompts in STYVU. Generation prompts and templates are created and controlled by STYVU and are used internally to operate the AI try-on workflow. We do not intentionally request government identifiers, precise location, health records, contacts, payment card numbers, or financial account numbers. Please do not include this information in photos, notes, support messages, or other content you submit to STYVU. If you choose to include it, we may temporarily process it as part of the content you provided, but we do not use it for purposes unrelated to providing, securing, or supporting the Service.

4. Sources of Information

We collect or receive information directly from you when you create an account, sign in, manage credits or subscriptions, enter referral codes, or contact us.

We receive and temporarily process information directly from you when you submit photos or visual content for AI generation, background removal, support, or another Service feature that requires server-side processing.

We may also collect technical information from your device and app, such as app version, build number, device install hash, crash reports, network state, rate-limit events, and security logs.

We receive information from service providers and platforms where needed to operate the Service, including app stores, sign-in providers, backend and authentication providers, subscription and payment platforms, diagnostics providers, cloud infrastructure and storage providers, third-party AI model providers, security providers, and similar providers. This may include authentication status, subscription and purchase status, AI processing status, generated outputs, error information, diagnostics, security signals, and support-related data.

5. Photos, Body Images, and Biometric Information

Photos and generated images may show your face, body, body shape, clothing, surroundings, or other personal details. STYVU may process visible characteristics in an uploaded image, such as pose, garment position, body outline, lighting, and composition, to provide the requested virtual try-on, background removal, collage, or AI generation feature.

STYVU processes visual characteristics only to transform, compose, or generate the requested image and not to identify, authenticate, track, profile, or infer sensitive traits about you.

Photos and visual content used for AI generation are processed temporarily to provide the requested feature. STYVU does not use these images to train its own AI models and does not retain generation input images longer than necessary for processing, delivery, security, and troubleshooting. In general, temporary generation images are deleted within 24 hours after processing, subject to provider logs, legal obligations, abuse prevention, backups, and technical limitations.

STYVU is not designed to identify users through face recognition, fingerprinting, iris recognition, biometric matching, or biometric authentication, and we do not create biometric identifiers for the purpose of uniquely identifying you. If we introduce a feature that creates biometric identifiers or templates for identification, we will provide additional notice and obtain consent where required by law.

Where applicable law treats your photos, body images, or visual characteristics as sensitive personal information or special category data, we process them only as needed to provide the features you request, with your consent or explicit consent where required, or under another lawful basis permitted by applicable law.

6. How We Use Information

We use information to:

• provide, personalize, operate, maintain, and improve STYVU;
• authenticate users, manage accounts, sync profile state, and support account recovery;
• process photos, garment references, STYVU-controlled generation instructions, and outputs for AI try-on, collage, background removal, and wardrobe features;
• save, sync, deliver, and display projects, outfits, generated results, and pending generation results;
• manage credits, trials, purchases, renewals, cancellations, refunds, referral rewards, and subscription status;
• monitor performance, debug failures, investigate crashes, improve reliability, and prevent technical abuse;
• enforce our Terms, content rules, safety systems, rate limits, and fraud-prevention controls;
• respond to support, legal, privacy, safety, and account deletion requests;
• comply with law, tax, accounting, consumer protection, platform, and legal process obligations;
• protect STYVU, users, service providers, and the public from misuse, security incidents, or unlawful activity.

7. Legal Bases for EEA, UK, and Swiss Users

Where the GDPR, UK GDPR, Swiss privacy law, or similar law applies, we rely on the following legal bases:

• Contract: to create and manage your account, provide AI generation, deliver outputs, manage credits, subscriptions, and support.
• Consent or explicit consent: where required for optional features, camera or photo access, iCloud-related choices, or sensitive visual content.
• Legitimate interests: to operate, secure, monitor, debug, improve, prevent abuse, enforce our Terms, and protect STYVU and users.
• Legal obligations: to comply with tax, accounting, consumer protection, platform, and legal process requirements.
• Legal claims and safety: to establish, exercise, or defend legal claims and respond to fraud, abuse, security incidents, or unlawful activity.

Where processing is based on consent, you may withdraw that consent by using available in-app controls, changing device permissions, deleting relevant content or your account where available, stopping use of the relevant feature, or contacting us. Withdrawal will not affect processing already performed before withdrawal. If you withdraw consent or disable access required for photos, AI processing, camera, files, iCloud, or similar features, those features may stop working.

8. AI Processing

STYVU uses third-party AI model providers, cloud infrastructure and storage providers, backend and authentication providers, subscription and payment platforms, diagnostics providers, and security providers to deliver virtual try-on, image generation, background removal, safety, queueing, and result-delivery features. Your photos, garment references, STYVU-controlled generation instructions, technical metadata, and outputs may be sent to these providers depending on the feature, model, plan, region, and technical route used.

Users do not write free-form prompts in STYVU. Generation prompts and templates are created and controlled by STYVU and are used internally to operate the AI try-on workflow. We may store template IDs, model IDs, request IDs, status, errors, and technical generation metadata.

Specific providers may vary depending on the feature, model, plan, region, and technical route used. We may identify specific providers where required by law, platform rules, or a valid privacy request.

STYVU does not sell your uploads, internally controlled generation instructions, or outputs. STYVU does not use user photos, inputs, or outputs to train STYVU-owned AI models. Third-party AI providers may process, cache, log, retain, or review inputs and outputs under their own terms for service delivery, safety, abuse monitoring, legal compliance, debugging, and, where applicable to unpaid services or opt-in sharing, product improvement or model training.

AI outputs are artificially generated or manipulated content. They may be inaccurate, unexpected, distorted, non-unique, or unsuitable for your intended use. AI outputs are illustrative and do not represent verified body measurements, garment sizing, material properties, product availability, or real-world fit. You are responsible for reviewing outputs before relying on, sharing, publishing, or commercially using them, and for disclosing AI-generated or manipulated content where law, platform rules, or context requires disclosure.

9. Local Storage, iCloud, and CloudKit

Wardrobe items, outfit projects, layers, folders, saved references, app settings, and cached content may be stored locally on your device or, if enabled, in your private iCloud/CloudKit database. Some data may be protected by iOS file protection or stored in local app databases.

STYVU does not normally access wardrobe content stored only on your device or in your private iCloud database, unless you submit it for AI processing, support, troubleshooting, or another Service feature that requires server-side processing.

If iCloud sync is available and enabled, STYVU may use Apple's iCloud/CloudKit services to sync projects, outfits, images, and related wardrobe data through your private iCloud database. Apple processes iCloud and CloudKit data under its own terms and privacy policies. Disabling iCloud sync, deleting the app, deleting a STYVU account, or deleting local app data may not automatically remove every copy stored in iCloud, device backups, or Apple systems; you may need to manage those copies through your Apple ID, iCloud settings, device settings, or Apple support.

10. Subscriptions, Payments, Credits, and Referrals

STYVU subscriptions and in-app purchases may be processed through the Apple App Store, StoreKit, and subscription management providers. We do not receive your full payment card number from Apple. We may receive and store purchase and subscription information needed to confirm entitlement, assign credits, reconcile renewals, prevent fraud, process refunds, support account deletion, and maintain accounting records.

If you use referral or influencer codes, we may store attribution records, device install hashes, code snapshots, bonus credits, subscription events, and commission records so that referral rewards and payouts can be calculated and audited.

11. Cookies, Website Data, and Diagnostics

Our website and app may use essential cookies, local storage, logs, fonts, hosting infrastructure, and similar technologies to load pages, secure sessions, remember choices, and understand technical performance. We do not currently use third-party advertising cookies or targeted advertising SDKs in STYVU.

We may use crash diagnostics providers or similar diagnostics tools to collect crash reports, app version, build number, device or operating context, screen context, network state, subscription tier context, user ID, request ID, and error information needed to diagnose failures and improve reliability. Diagnostic information should not include your full photos unless you choose to send screenshots or attachments to support.

12. How We Share Information

We may share information with service providers and partners that help us operate STYVU, including cloud hosting, database, authentication, AI processing, object storage, app store billing, subscription management, crash diagnostics, support, security, technical analytics and service performance, legal, accounting, and business operations providers.

Specific providers may vary depending on the feature, model, plan, region, and technical route used. We may identify specific providers where required by law, platform rules, or a valid privacy request.

For clarity, STYVU does not sell personal information and does not share personal information for targeted advertising or cross-context behavioral advertising, as those terms are defined by applicable privacy laws.

We may also disclose information if required by law, subpoena, court order, regulator, law enforcement request, platform rule, safety obligation, legal claim, corporate transaction, merger, acquisition, financing, sale of assets, or with your consent or direction.

13. No Sale or Cross-Context Behavioral Advertising

We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising as those terms are defined by applicable privacy laws. We do not use sensitive personal information to infer unrelated characteristics or for targeted advertising.

If our practices change in a way that creates a legal right to opt out of sale, sharing, targeted advertising, or certain sensitive-data uses, we will update this Policy and provide the required choices.

14. Data Retention

We retain information for as long as reasonably necessary for the purposes described in this Policy, unless a longer or shorter period is required or permitted by law. Retention depends on the data type, feature, account status, legal requirements, provider limitations, technical limitations, disputes, security needs, and backup cycles.

• account and profile records are generally kept while your account is active and for a reasonable period after deletion where needed for legal, fraud-prevention, tax, accounting, security, or dispute purposes;
• temporary upload tokens, signed URLs, generation input images, queue payloads, and AI processing objects are designed to be temporary; in general, temporary generation images are deleted within 24 hours after processing, but copies may remain in provider systems, logs, backups, failed-job records, or abuse-monitoring systems for limited operational periods;
• completed queue records, callback records, and pending-result records may be cleaned after short operational windows, such as hours or days for completed delivery records and longer diagnostic windows for failed or security-relevant events;
• generated outputs, project records, and wardrobe records may be kept until you delete them, delete your account, disable sync, or until they expire under the relevant feature or provider policy;
• subscription, purchase, refund, referral, commission, and accounting records may be kept for the period required or reasonably needed for tax, audit, financial, fraud-prevention, platform, and legal obligations;
• crash, diagnostic, rate-limit, and security logs are kept for reliability, abuse prevention, and security investigation needs, then deleted, aggregated, or de-identified when no longer needed;
• backups may retain deleted information until ordinary backup rotation, disaster recovery, or legal hold periods expire.

15. Account Deletion

You may request account deletion through the app or by contacting us. Account deletion may remove your STYVU profile, server-side account records, generation records, upload tokens, subscription transaction records under our control, referral records linked to your account, and related data in backend, database, or other systems we control.

Some information may remain where required or permitted for legal obligations, tax and accounting records, payment records, fraud prevention, security, dispute resolution, backups, crash logs, provider logs, or technical limitations. App stores, subscription management providers, sign-in providers, backend providers, cloud storage providers, AI providers, diagnostics providers, security providers, and other service providers may retain records under their own terms and legal obligations.

Deleting your STYVU account does not automatically cancel an Apple App Store subscription, delete Apple purchase history, remove iCloud or device backups, or delete local files outside our control. You may need to cancel subscriptions through Apple and manage local or iCloud data through your device, iCloud, Apple ID, or Apple support.

16. Your Privacy Rights and Choices

Depending on where you live, you may have rights to request access, correction, deletion, portability, a copy of your data, restriction of processing, objection to processing, withdrawal of consent, opt-out of certain uses, or appeal of certain privacy decisions. You may also have the right to lodge a complaint with a local data protection authority.

You can exercise rights by using available in-app controls or by contacting us at [email protected]. We may need to verify your identity and account ownership before responding. We may deny or limit requests where permitted by law, including where data must be retained for security, legal, fraud-prevention, subscription, accounting, or technical reasons.

You can also manage camera, photo library, files, notification, iCloud, and similar permissions through your device settings. If you revoke permissions, some STYVU features may no longer work.

17. California and Other US State Privacy Rights

Where the California Consumer Privacy Act or similar US state privacy laws apply, you may have rights to know the categories and specific pieces of personal information collected, know the sources and purposes of collection, know categories of third parties to whom information is disclosed, request deletion, request correction, opt out of sale or sharing, limit certain sensitive personal information uses, use an authorized agent, and avoid discrimination for exercising privacy rights.

In the past 12 months, STYVU may have collected the categories described in Section 3 and disclosed them to the provider categories described in Section 12 for the business and service purposes described in Section 6. We do not sell personal information or share it for cross-context behavioral advertising.

18. International Transfers

STYVU is intended to operate globally. Your information may be processed and stored in the United States, Europe, and other countries where we, our service providers, or our infrastructure operate. Privacy laws in those countries may differ from the laws where you live.

Where required for transfers from the EEA, UK, Switzerland, or other regions with transfer restrictions, we use legally recognized safeguards such as adequacy decisions, standard contractual clauses, data-processing agreements, provider transfer mechanisms, consent, or other lawful transfer bases.

19. Security

We use reasonable technical and organizational measures designed to protect information, including authenticated access, rate limits, private storage where appropriate, temporary signed URLs, logging, monitoring, file protection on supported devices, and access controls. No system is perfectly secure, and we cannot guarantee that information will never be accessed, disclosed, altered, or lost.

You are responsible for protecting your device, Apple ID, third-party sign-in account, email account, STYVU credentials, and any exported images or files.

20. Content and Image Upload Policy

STYVU is designed for lawful style exploration, outfit planning, virtual try-on, wardrobe organization, and creative fashion workflows. You may upload or generate content only if you have the rights, permissions, and consents required to do so.

You must not use STYVU to upload, create, request, generate, save, or share content that:

• violates any law, regulation, platform rule, or third-party right;
• uses another person's image, likeness, body, face, clothing, or private content without appropriate consent;
• depicts, targets, sexualizes, exploits, or manipulates minors;
• creates non-consensual intimate, sexualized, nude, abusive, exploitative, deceptive, or humiliating imagery;
• impersonates, deceives, harasses, threatens, defames, or harms another person;
• promotes hate, violence, self-harm, illegal activity, fraud, or abuse;
• infringes copyright, trademark, design, publicity, privacy, confidentiality, or other rights;
• attempts to bypass safety systems, rate limits, security controls, provider rules, or content restrictions;
• uses STYVU outputs for regulated professional advice, high-risk decisions, surveillance, biometric identification, or unlawful profiling.

If you publicly share AI-generated or AI-manipulated images, especially realistic images of identifiable people, you are responsible for making any disclosure required by law, platform rules, or the context of publication.

Some generation requests or outputs may be unavailable, rejected, limited, or affected by third-party provider rules, platform rules, safety systems, infrastructure controls, or applicable law.

21. Enforcement and Reporting

STYVU or its service providers may restrict features, reject or limit certain requests or outputs, refund or withhold credits, suspend or terminate accounts, preserve evidence, report suspected illegal activity, or cooperate with lawful requests if this Policy, our Terms, provider policies, platform rules, or applicable law may be violated.

To report privacy concerns, non-consensual content, illegal content, intellectual property concerns, or other misuse, contact [email protected]. Include enough detail for us to identify the relevant account, image, output, request ID, URL, or incident where possible.

22. Changes to This Policy

We may update this Policy from time to time. When we do, we will update the "Last updated" date above. If changes are material, we may provide additional notice through the app, website, email, or other legally appropriate method. Continued use of STYVU after an update means you accept the revised Policy.

23. Contact

For privacy requests, content reports, support, legal notices, or account questions, contact:

STYVU
[email protected]