Privacy Policy

Last updated: April 19, 2026

Introduction

Maia is built on a foundation of privacy. We believe your skin health data is deeply personal, and we are committed to handling it with the care and transparency it deserves. This policy explains exactly what data we collect, why we collect it, and how it is used.

Data We Collect

We collect only what is necessary to provide Maia's features:

• •Account information: your email address and display name, used to identify your account.
• •Skin scan images: photos you take or upload for analysis. These are stored temporarily and automatically deleted within 1 hour of upload.
• •Skin analysis results: the AI-generated findings from your scan (conditions, scores, recommendations). These are stored permanently so you can track progress. The original image is not retained.
• •Daily skin logs: how your skin feels each day, lifestyle inputs (sleep, diet, stress), and any notes you add.
• •Questionnaire responses: your skin goals, sensitivities, product preferences, and routine history, collected during onboarding.
• •Device information: basic device and OS details used solely to ensure the app functions correctly on your device.

How We Use Your Data

• •Provide personalised skincare analysis and tailored routine recommendations.
• •Track your skin health progress over time and surface meaningful trends.
• •Generate insights from your daily logs to correlate lifestyle factors with skin changes.
• •Improve our AI analysis models using anonymised, aggregated data only. Your personal data is never used individually for model training.

Data Storage & Security

• •All data is stored securely on Supabase infrastructure hosted on EU servers.
• •Data is encrypted in transit (TLS) and at rest.
• •Scan images are automatically deleted after analysis is complete, within 1 hour of upload, no exceptions.
• •Analysis results (text-based findings) are retained without any reference to the original image.

Third-Party Services

Maia uses a small number of trusted third-party services to operate:

• •Anthropic (Claude AI): your skin images are sent to Anthropic's API for analysis. This processing is subject to Anthropic's privacy policy. Images are not stored by Anthropic after the API call completes.
• •Supabase: provides our database, authentication, and secure file storage infrastructure.
• •No data is ever sold to third parties.: We do not and will not sell, rent, or trade your personal data under any circumstances.

Your Rights (GDPR)

If you are located in the European Economic Area, you have the following rights regarding your personal data:

• •Right to access: request a copy of all personal data we hold about you.
• •Right to deletion: request permanent deletion of your account and all associated data.
• •Right to data portability: export your data in a machine-readable format.
• •Right to withdraw consent: stop data processing at any time by deleting your account.

To exercise any of these rights, contact us at support@maia.app. We will respond within 30 days.

Children's Privacy

Maia is not intended for users under the age of 16. We do not knowingly collect personal data from children. If you believe a child has created an account, please contact us at support@maia.app and we will delete the account promptly.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you via the app or email before the changes take effect. Continued use of Maia after notification constitutes acceptance of the updated policy.

Contact

If you have any questions about this Privacy Policy or how your data is handled, please reach out: