Clausette app icon
Clausette™
Don't say closet, say Clausette
 Contact Us
Privacy Policy

Your data,
clearly said.

Clausette helps you organise your wardrobe, build outfits, log your OOTD, generate a personalised fashion doll, run virtual try-ons, receive AI-assisted styling suggestions, and connect with friends through borrowing and Style Circles. This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have.

Support Terms of Service Back to Clausette

Clausette is the data controller for personal information collected through the app. Contact us at:

Email: support@clausette.app Website: https://clausette.app

1. Information We Collect

1.1 Account and authentication information

We collect what's needed to create, secure, and manage your account:

  • A unique user ID assigned at sign-up
  • Username, display name, and profile fields you provide
  • Email address (from email sign-up, Apple sign-in, or Google sign-in)
  • Authentication provider details (Apple, Google, or email)
  • Session and device metadata used to protect your account (active sessions list, sign-in timestamps)

1.2 Wardrobe, outfit, and style content

When you use Clausette we store the content you create or save:

  • Clothing item photos, outfit photos you upload to extract individual items from, and processed item images (AI-extracted or background-removed, thumbnails, grid cards)
  • Item names, categories, colours, materials, seasons, occasion tags, style tags, custom tags, and notes
  • Outfits you build, edits (packing lists), OOTD history with dates and captions
  • Dream closet inspiration items and saved style suggestions
  • Style quiz answers and onboarding progress
  • Friend connections, blocked-user relationships, Style Circle memberships, borrow requests, user reports you submit for review, and any messages or notes you attach to them

1.3 Body photos and face reference data

The doll generation and virtual try-on features require body or face reference photos. During onboarding the app asks for 3 to 5 photos so the generated doll has enough reference data.

When you give the explicit "biometric data" consent on the doll creation screen and upload these photos, we may process and store:

  • The uploaded body photo files (in our cloud provider's storage, under a path scoped to your user ID)
  • Secure storage paths, processing status, and any failure reasons
  • A numerical face reference embedding plus the name of the embedding model used, kept so generated images stay consistent across sessions
  • Review or moderation flags if a photo is unclear, unsafe, or cannot be processed

We do not use face reference data to identify you outside Clausette, do not build any external facial-recognition profile, do not sell biometric data, and do not use biometric data for advertising. You can delete face data at any time in Settings, which triggers the deleteFaceData Cloud Function and removes stored body photos, the face embedding, and related processing records from active systems.

1.4 AI prompts, generated images, and AI results

When you use AI features, we process the content needed for that specific request:

  • Selected wardrobe items, item metadata, and style preferences
  • Body photo references and time-limited signed URLs used to process the request
  • Doll generation, OOTD doll, group doll, virtual try-on, item extraction from outfit photos, purchase compatibility, occasion suggestions, and style identity requests
  • Generated dolls, try-on images, extracted item images, outfit cards, edit share cards, group doll images, and AI suggestions returned to you

Generated images are stored in our cloud provider's storage under private, deny-all storage rules. They are accessed via private download URLs or short-lived signed URLs, depending on the feature, that the backend mints on demand. Depending on the feature, input images are processed by AI models Clausette operates or by third-party AI providers, accessed via signed URLs or direct upload; per applicable terms, your data is not used to train AI models.

1.5 Subscription and purchase information

Paid features and voluntary support contributions are unlocked through Apple App Store or Google Play in-app purchases, brokered by a third-party subscription-management provider. We receive your subscription status (product ID, entitlement, renewal or expiry date, store environment) and a record of any support contributions you make. We never receive or store your full payment card details. Those stay with Apple and Google.

1.6 Location

When you tap the weather card on the home screen and grant location permission, we read your current device coordinates (using the operating system's "when in use" precision) and send them to a third-party weather-data provider to fetch a brief weather description. We do not store your coordinates and we do not track location in the background. We do not separately reverse-geocode your coordinates. The city name shown on the weather card is derived from the IANA timezone that provider returns for that location.

1.7 Device, analytics, diagnostics, and logs

We collect limited technical information to run, secure, and improve the app:

  • App version, build number, environment, platform, and basic OS/device details
  • Analytics events for product flow health (e.g., onboarding step completion, feature success/failure)
  • Crash reports, non-fatal errors, breadcrumbs, and sanitized request context
  • Backend structured logs with timestamps, request IDs, function names, feature names, job IDs, and your user ID
  • Security and abuse-prevention signals: rate-limit events, app-integrity check failures, hashed network identifiers where used

We design diagnostics to avoid collecting your photos, signed URLs, API keys, passwords, or other unnecessary sensitive values.

1.8 Notifications

If you allow push notifications, we store your notification preferences and a push-notification device token so we can deliver:

  • Friend requests, friend request accepted / declined, borrow requests and responses
  • Style Circle invites, confirmations, group doll ready
  • Doll ready, OOTD doll ready, try-on ready
  • OOTD daily nudge, streak milestone
  • Wardrobe Wrapped year-in-review, edit share card ready

A persistent in-app notifications inbox stores the same notifications so you can review them later. Read notifications older than 90 days are automatically deleted by a scheduled cleanup job.

2. How We Use Information

We use information to:

  • Create, authenticate, and secure your account
  • Store and organise your wardrobe, outfits, edits, and OOTD history
  • Generate dolls, try-on images, outfit suggestions, purchase compatibility results, and related AI outputs
  • Process body photos and face reference data with your explicit consent
  • Maintain subscription access and enforce paid feature entitlements
  • Deliver and surface notifications you allowed
  • Support social features (friends, borrow requests, Style Circles, group dolls)
  • Let you block other users and submit user reports for review
  • Show local weather on the home screen when you grant location permission
  • Detect abuse, spam, fraud, unsafe uploads, and attempts to bypass limits
  • Troubleshoot bugs, investigate production errors, and improve reliability
  • Respond to data export, deletion, support, and legal requests

3. AI Processing Consent

Before processing body photos for doll creation, Clausette asks for two explicit consents on the doll creation screen:

  1. Consent to AI processing of your photos to create your fashion doll and virtual try-ons.
  2. Consent to processing of your facial and biometric data to generate a personalised doll, with the explicit statement that this data is used only for that feature and is not sold or shared with third parties.

Both consents are required before any body photo upload begins.

If you withdraw consent or tap Delete face data in Settings, Clausette removes stored body photos, the face reference embedding, and related processing records from active systems, and disables AI processing consent for your account. Existing generated content (dolls, OOTD cards, try-on results that were already produced) is not automatically deleted by this action. Use Delete account to remove all account-linked content.

4. Service Providers and AI Processing

Clausette runs on a combination of trusted third-party service providers and AI models that Clausette hosts and operates itself. We send each provider or model only the information needed for the feature it performs, under contractual or platform privacy commitments. By category:

  • Cloud infrastructure: a major cloud platform provides authentication, the database, file storage, backend functions, push messaging, analytics, app-integrity checks, and logging. All app data is stored and processed in that provider's cloud regions.
  • AI processing: Clausette's AI features are powered by a combination of AI models that Clausette trains and hosts on its own cloud infrastructure, open-source AI models that Clausette hosts on its own cloud infrastructure, and third-party AI and machine learning service providers. Depending on the feature, a request may involve the photos, item images, references, metadata, and prompts that request needs. Where a request runs on infrastructure Clausette operates, inputs are fetched into temporary memory through short-lived signed URLs, used only for the duration of the request, and not retained on that infrastructure afterward. Where a third-party AI service provider is used, it processes your inputs only to return a result and, per its terms, does not use your data to train its models.
  • Subscription management: a subscription-management provider validates purchases and syncs your entitlement state, receiving a subscription identifier and purchase events.
  • Error and crash monitoring: an error-monitoring provider receives crash reports, non-fatal errors, performance traces, and a sanitized device/app context so we can diagnose and fix problems.
  • Weather data: a third-party weather-data provider receives only the coordinates from the weather card to return a current weather description (see Section 1.6). We do not send it other personal information.
  • Apple and Google: authentication (Sign in with Apple / Google), in-app subscription processing, and platform push notifications.

We do not use your photos, wardrobe data, or face reference data to train AI models. We do not sell your photos, wardrobe data, face reference data, or any other personal information to advertisers or data brokers.

5. Sharing Information

We may share information:

  • With the service providers above, only for the purpose each performs
  • With other users when you intentionally use social features: sending a friend request, joining a Style Circle, sending a borrow request, or sharing an outfit card
  • With other users in friend-visible places: a small crown next to your name if you have ever made a voluntary support contribution. The fact of supporting is visible; the amount, frequency, and dates are not.
  • With Apple and Google to process and verify in-app purchases
  • When required by law, court order, or a valid legal process
  • To protect Clausette, our users, or the public from fraud, abuse, security threats, or harm
  • As part of a business transaction (merger, acquisition, financing, sale of assets), subject to appropriate safeguards and continued protection of your personal information

We do not sell your personal information.

6. Storage, Retention, and Deletion

We keep information for as long as needed to provide Clausette, protect the service, comply with legal obligations, and resolve disputes.

Typical retention:

  • Account, wardrobe, outfit, generated-image, subscription, and social data: kept while your account is active
  • Body photos and face reference data: kept until you delete face data, delete your account, or they are removed through moderation or cleanup
  • Processing jobs and upload tickets: kept for operational troubleshooting and retry handling; stale records are deleted by a daily scheduled cleanup
  • In-app notifications inbox: read notifications older than 90 days are deleted automatically by a daily scheduled job
  • User reports, block records, and related moderation records: kept while needed for safety review, abuse prevention, legal compliance, or account protection
  • Security, diagnostic, and backend logs: kept for a limited period (commonly up to 90 days) unless retained longer for security, legal, or abuse investigations
  • Deleted-account data: removed from active systems within a reasonable period (targeted at up to 30 days); backups and provider records may persist for a limited additional period before being purged on schedule
  • Shared Style Circle group images you appeared in: a Style Circle group photo composes the looks of every participating member into a single shared image. When you leave a circle or delete your account, your individual uploads and your slot data are removed, but the historical combined group images can continue to exist in the circles where they were generated for the other members who participated in them. We cannot retroactively remove your appearance from a combined image that other users already have

You can:

  • Export your data via Request data export in Settings
  • Delete just your face data via Delete face data in Settings
  • Delete your entire account via Delete account in Settings

If you have an active auto-renewing subscription on the App Store or Google Play, cancel that subscription in the store before deleting your account so you are not charged again after your account is gone. Account deletion does not cancel a store-billed subscription on your behalf.

7. Security

We use technical and organisational safeguards to protect your information, including:

  • Managed authentication with multi-provider sign-in
  • Database and file-storage security rules scoped to your user ID
  • App-integrity attestation to gate backend calls to legitimate app instances
  • Server-side entitlement and rate-limit checks
  • Private storage paths and time-limited signed URLs for generated media
  • Restricted backend secrets stored in a managed secret store
  • Session management with the ability to revoke individual or all sessions

No method of transmission or storage is completely secure. If you believe your account has been compromised, contact us at account@clausette.app.

8. Your Choices and Rights

Depending on where you live, you may have rights to:

  • Access personal information we hold about you
  • Request correction or deletion
  • Request a copy of your data in a portable form
  • Withdraw AI processing consent for future processing
  • Object to or restrict certain processing
  • Lodge a complaint with a privacy regulator

Most choices are available directly in Settings (data export, account deletion, face data deletion, notification preferences, theme, sessions). For anything else, contact support@clausette.app.

8.0 What the data export includes

When you request a data export in Settings, we generate a JSON archive plus a listing of your file uploads. The archive includes:

  • Your account identifiers (user ID, username, support ID, member number)
  • Profile and preferences (name, email, terms acceptance, timezone, notification preferences, privacy level, style quiz answers)
  • Subscription status (current plan and entitlement state)
  • Consents on record (AI processing consent and face data consent, with versions and timestamps)
  • Biometric data we hold about you (your face reference embedding and the storage paths for your body photos)
  • Your own content (closet items, outfits, dolls, OOTD entries, edits)
  • Activity counters you would expect to see (item count, outfit count, OOTD streak)
  • A listing of every file we store under your user folder (Storage paths, sizes, content types, last-modified times)
  • Notifications addressed to you
  • Reports you filed against other accounts
  • Bug reports you submitted to us
  • Shared calendar links you own
  • Friendships, borrow requests, and Style Circle memberships you are part of, with the other parties' identifiers redacted

The export deliberately excludes:

  • Other users' identifiers in relationships you share (friendships, borrow counterparties, Style Circle co-members are shown without their user IDs so the export does not surface third-party data)
  • Reports filed against your account (these would contain the reporter's identifier and our internal moderation notes, both of which belong to other people and to our safety process)
  • Moderation state we hold internally (account status, suspension reasons, suspension history, moderator notes)
  • Internal rate-limit counters, push notification tokens, and processing-job records that are infrastructure rather than personal information
  • Background telemetry records (debug flow events, session diagnostics)

If you believe a specific record about you is missing from the export and you would like a copy, email account@clausette.app and we will review the request.

8.1 California residents (CCPA/CPRA)

If you are a California resident, you have additional rights regarding your personal information.

In the past 12 months we have collected the categories of personal information described in Section 1, which map to these statutory categories: identifiers (such as your user ID and email), customer account records, commercial information (subscription status), internet or network activity (app interactions and diagnostics), geolocation (only the weather-card coordinates, which we do not store), biometric information (the face reference embedding), visual information (the photos you upload and the images we generate), and inferences drawn to provide styling features (such as style and occasion tags).

We collect this information for the business purposes in Section 2 and disclose it only to the service providers in Section 4 to perform those functions. We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We do not use or disclose sensitive personal information (such as your biometric face reference) for any purpose other than providing the feature you requested, so the right to limit the use of sensitive personal information does not change how we operate.

You have the right to know and access the personal information we hold, to request deletion, to request correction, to opt out of sale or sharing (not applicable here, since we do neither), and not to be discriminated against for exercising these rights. You can exercise the core rights yourself in Settings (Request data export, Delete account, Delete face data) or by emailing account@clausette.app. We verify requests using your account credentials, and you may use an authorized agent to submit a request on your behalf.

8.2 European Economic Area, United Kingdom, and Switzerland (GDPR)

If you are in the EEA, the UK, or Switzerland, Clausette is the controller of your personal information and processes it on the following legal bases:

  • Performance of a contract: creating and securing your account, storing your wardrobe and outfits, and providing the core features you request, including subscriptions.
  • Consent: processing your body photos and face reference data for doll creation and virtual try-on, sending push notifications, and reading your location for the weather card. You can withdraw consent at any time (for biometric data, via Delete face data), without affecting processing already carried out.
  • Legitimate interests: securing the service, preventing fraud and abuse, enforcing limits, and diagnosing and improving the app, balanced against your rights and freedoms.
  • Legal obligation: responding to lawful requests and meeting our legal and regulatory duties.

You have the right to access, rectify, erase, restrict, or object to the processing of your personal information, the right to data portability, and the right to withdraw consent. You can exercise the main rights in Settings (Request data export, Delete account, Delete face data) or by emailing account@clausette.app. You also have the right to lodge a complaint with your local data protection supervisory authority.

Where we transfer personal information outside your region, we rely on appropriate safeguards such as standard contractual clauses, as described in Section 10. We retain personal information for the periods described in Section 6.

9. Children

Clausette is not intended for users under 13. You must confirm you are at least 13 years old at sign-up. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has created an account, contact us and we will take appropriate steps to delete the account and related data.

If the law where you live requires a higher minimum age or parental consent for users under 16 (for example, certain EU member states under the GDPR), you must satisfy that requirement before using the app.

10. International Transfers

Clausette uses cloud and AI providers that may process information in Canada, the United States, the European Union, and other countries depending on the provider's infrastructure. Where required, we rely on appropriate safeguards such as standard contractual clauses and provider security commitments.

11. App Store Privacy Labels and Data Safety

Our Apple App Store privacy nutrition label and Google Play Data Safety disclosures reflect the categories described in this policy: account data, photos, user content, identifiers, purchases, location, diagnostics, analytics, and AI-related processing including the face reference embedding.

12. Changes to This Policy

We may update this Privacy Policy as Clausette changes. If we make material changes we will notify you through the app, by email, or by another reasonable method before the changes take effect where required by law.

13. Contact Us

Questions, requests, and concerns can be sent to:

Email: support@clausette.app Website: https://clausette.app

If you are located in Canada and believe your privacy rights have not been respected, you may also contact the Office of the Privacy Commissioner of Canada at https://www.priv.gc.ca.