FaceAuraContact Us

Privacy Policy

Effective Date: March 15, 2026 · Last Updated: March 15, 2026

iLeriTek Ltd (“we,” “us,” or “our”) operates FaceAura, a mobile application that uses artificial intelligence to generate professional portrait photographs. This Privacy Policy explains how we collect, use, store, and protect your personal information.

By using FaceAura, you consent to the practices described in this policy. If you do not agree, please do not use the application.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address (provided by Apple or Google sign-in)
  • Full name (if provided by your sign-in provider)

We do not collect passwords. Authentication is handled exclusively through Apple Sign-In or Google Sign-In.

1.2 Biometric Data (Facial Images)

To generate AI portraits, you upload selfie photographs containing your face. These images constitute biometric data under applicable laws. By uploading a selfie, you provide explicit consent to the collection and processing of this biometric data solely for the purpose of generating AI portraits.

We collect:

  • Selfie photographs you upload
  • AI-generated portrait images created from your selfies

1.3 Subscription and Payment Information

We use RevenueCat to process in-app purchases through the Apple App Store. We store:

  • Subscription status and tier
  • Purchase and expiration dates
  • Credit balance

We do not store credit card numbers, bank details, or other financial payment instruments. All payment processing is handled by Apple and RevenueCat.

1.4 Usage Data

We collect information about how you use the application:

  • Generation history (dates and statuses of portrait requests)
  • Feature usage (downloads, shares)
  • App interactions for improving our service

1.5 Information We Do NOT Collect

  • Precise geolocation
  • Contacts or address book
  • Microphone or call data
  • Browsing history outside the app
  • Data from other apps on your device

2. How We Use Your Information

We use your information for the following purposes:

  • Generate AI portraits — using your selfie images, based on your consent
  • Manage your account — using your email and name, to perform our contract with you
  • Process payments — using subscription data, to perform our contract with you
  • Improve our service — using usage data, based on our legitimate interest
  • Prevent abuse and fraud — using generation metadata, based on our legitimate interest
  • Comply with legal obligations — using account data, as required by law

We do not sell your personal data to third parties.

3. Third-Party Services

We share data with the following service providers, solely for operating FaceAura:

  • Google Cloud Vertex AI (USA) — AI portrait generation. Receives selfie images for processing only; images are not stored by Google beyond generation.
  • Google Cloud Vision (USA) — Content safety validation. Receives selfie images for face detection and safety checks.
  • RevenueCat (USA) — Subscription management. Receives purchase events and subscription status.
  • Apple — Authentication and payment processing. Receives email (via Sign-In) and payment data.
  • Google — Authentication. Receives email (via Sign-In).
  • Cloudflare R2 — Image storage. Stores selfie and generated images.

These providers process data under their own privacy policies and applicable data processing agreements.

4. Data Storage and Security

4.1 Storage Location

Your data is stored on servers operated by Railway, located in the United States. Data may be transferred internationally as necessary to provide the service.

4.2 Security Measures

We implement the following measures to protect your data:

  • Encryption in transit (TLS/HTTPS)
  • Encryption at rest for stored files
  • Authentication required for all data access
  • Signed URLs with time-limited access for images (1-hour expiry)
  • Content moderation on uploaded images

4.3 Data Retention

  • Active accounts: Your data is retained as long as your account is active.
  • Deleted accounts: Upon account deletion, all personal data including selfie images, generated portraits, profile information, and subscription records are permanently deleted.
  • Anonymized analytics: We may retain aggregated, non-identifiable usage statistics indefinitely.

5. Your Rights

Depending on your jurisdiction, you may have the following rights:

5.1 For All Users

  • Access: Request a copy of your personal data (available in-app under Account Management)
  • Deletion: Delete your account and all associated data (available in-app under Account Management)
  • Withdraw Consent: Stop using the app at any time; delete your account to withdraw consent for data processing

5.2 EU/EEA Users (GDPR)

In addition to the above:

  • Rectification: Request correction of inaccurate data
  • Portability: Receive your data in a structured, machine-readable format (JSON export available in-app)
  • Restriction: Request restriction of processing
  • Object: Object to processing based on legitimate interest
  • Lodge a Complaint: File a complaint with your local data protection authority

5.3 California Users (CCPA)

  • Know: Right to know what personal information is collected
  • Delete: Right to request deletion of personal information
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights
  • No Sale: We do not sell personal information

5.4 Turkish Users (KVKK)

Rights under the Turkish Personal Data Protection Law (Law No. 6698) apply, including the right to learn whether personal data is processed, request information about processing, learn the purpose of processing, know third parties to whom data is transferred, request correction or deletion, and object to automated processing outcomes.

6. Children's Privacy

FaceAura is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal data, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us at support@faceaura.ai.

7. Biometric Data Notice

FaceAura processes facial photographs to generate AI portraits. Under applicable biometric privacy laws (including the Illinois Biometric Information Privacy Act and similar regulations):

  • Purpose: Your facial images are processed solely to generate AI portrait photographs at your request.
  • Retention: Facial images are retained until you delete your account, at which point they are permanently deleted.
  • Sharing: Facial images are shared only with our AI generation provider (Google Cloud Vertex AI) for the sole purpose of generating your portrait. They are not sold, leased, or otherwise disclosed to unrelated third parties.
  • Consent: By uploading a selfie, you provide informed, written consent to the collection and use of your biometric data as described in this policy.

8. Advertising

FaceAura may display advertisements to free-tier users. If advertisements are displayed, third-party ad networks may collect device identifiers and usage data in accordance with their own privacy policies. You can limit ad tracking through your device settings.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the app or by updating the “Last Updated” date. Your continued use of FaceAura after changes constitutes acceptance of the updated policy.

10. Contact Us

For privacy-related inquiries, data requests, or complaints:

iLeriTek Ltd
Email: support@faceaura.ai

For EU data protection matters, you may also contact your local supervisory authority. For Turkish data protection matters, you may contact the Personal Data Protection Authority (KVKK).