DermaView

1. Introduction
Welcome to DermaView. We are a standardization and documentation tool that helps you create a consistent skin timeline and keep it organized over time. This Privacy Policy explains how we collect, use, protect, and handle your personal information.
 
Important: DermaView is a standardization and documentation tool, NOT a medical device.  We help you create a standardized skin timeline that you can share with your healthcare provider. All documentation decisions remain yours.

Who We Are
DermaView is operated by DermaView LLC.
You can contact us at:
 Email: privacy@dermaview.io
Address: 202 Walton Way, Suite 192-133, Cedar Park, TX 78613
 
2. Information We Collect
2.1 Account Information
When you create an account, we collect:
 
Email address (for authentication and account recovery)
Name (optional, for personalization)
Authentication credentials (managed securely through Google Sign-In or email link)

2.2 Skin Photography Data
When you use DermaView to document your skin, we collect:
 
Photographs you take using our Progressive Web App (PWA)
Metadata about your photos:
Date and time of capture
Body location tag (selected by you from predefined options)
Image quality metrics (blur detection, lighting assessment)
Calibration marker detection results
Device type and browser information
User-added notes or annotations (optional)
 
CRITICAL PRIVACY PROTECTION:
 
After public launch, no human ever views your photos. Our Zero-Trust architecture ensures that no DermaView employee, contractor, or representative can access or view your skin photographs. 

All image processing is automated using artificial intelligence for documentation purposes only (marker detection, auto-scaling, color correction).

2.3 Technical and Usage Data
We automatically collect:
 
Device information: Browser type, operating system, screen resolution
Usage data: App interactions, feature usage, error logs (containing NO personally identifiable information or photo content)
Performance data: Load times, detection success rates (anonymized and aggregated)

2.4 Information We Do NOT Collect
We do not collect:
 
❌ Medical diagnoses or health records
❌ Genomic or biometric data (beyond photos you explicitly upload)
❌ Location data (GPS coordinates)
❌ Financial information (payments processed by Stripe; we receive only transaction confirmation)
❌ Social security numbers or government IDs
 
3. How We Use Your Information
3.1 Primary Purposes (With Your Consent)
We use your information to:
 
Provide the Service: Store, organize, and display your skin timeline
Enable Sharing: Allow you to export or share your visual records with healthcare providers
Improve Quality: Detect and correct image quality issues (blur, poor lighting)
Standardize Photos: Automatically scale and align images using calibration markers
Communicate: Send service updates, account notifications, and educational content (you can opt out)

3.2 What We Do NOT Do
We do NOT:
 
❌ Analyze your photos for medical diagnoses or risk assessment
❌ Share your photos with third parties (except as required by law or with your explicit consent)
❌ Use your photos for AI model training without explicit opt-in consent
❌ Sell your personal data to advertisers or data brokers (Note: With your explicit opt-in consent, de-identified metadata may be shared with vetted research partners. See Section 3.3.)
❌ Allow human review of your photos for any purpose

3.3 Research & Scientific Use (With Your Permission)
DermaView may offer you the opportunity to contribute de-identified data to scientific research. This is entirely optional and requires your explicit, informed consent.
How It Works:
Opt-In Required: You must actively check a separate consent box in your account settings. The default is NO data sharing. No pre-checked boxes or hidden defaults.
What Is Shared: Only de-identified metadata (capture timestamps, body location tags, image quality metrics, calibration data). Your photos are NEVER shared with research partners.
What Is NOT Shared: Your name, email, IP address, precise location, photos, or any information that could identify you personally.
De-Identification Standard: All direct identifiers are removed. K-anonymity is applied (minimum group size of 10). Only aggregated statistical insights are shared.
Who Receives Data: Only vetted research partners (accredited academic institutions, pharmaceutical companies with IRB-approved studies, dermatology-focused AI developers). A list of approved partners is published at [URL TBD].
Your Right to Withdraw: You may opt out of research data sharing at any time in your account settings. Previously shared de-identified data cannot be recalled from completed research datasets, but your data will be excluded from all future datasets.
Deletion: If you delete your account, your data is removed from all future research datasets within 30 days.
No Impact on Service: Opting in or out of research data sharing does not affect your access to DermaView’s features or service quality.
CCPA Compliance Note: The sharing of de-identified, aggregated metadata with research partners under explicit opt-in consent does not constitute a “sale” of personal information under the California Consumer Privacy Act. Your “personal information” as defined by CCPA is never sold.
 
4. Zero-Trust Security Architecture
4.1 Encryption
At Rest: All photos are encrypted using AES-256 encryption in Firebase Storage (Google Cloud Platform)
In Transit: All data transmission uses TLS 1.3 encryption
Access Control: Photos are stored in private, access-controlled storage buckets

4.2  Zero Human Access
Core Privacy Principle: No human — including DermaView staff, engineers, contractors, or support personnel — will ever view your photographs. No exceptions.
 
No human ever sees your photos. Not even our team. 
 
Engineering Access: Engineers can view metadata logs (timestamps, file sizes, detection results) but NEVER image content.
 
Support Access: Customer support can assist with account issues using metadata only. Photos are never accessed for any support purpose. 
 
Visual Bugs: If image-level debugging is required, synthetic test images are used. Real user photos are never accessed. 
 
Legal Compulsion: In the event of a valid legal order requiring disclosure of specific images, we will notify you unless prohibited by law. See Section 5.1.3.



4.3 Infrastructure
Hosting: Google Cloud Platform (Firebase) — a HIPAA-capable infrastructure
HIPAA Compliance: Our infrastructure is designed to support HIPAA compliance. Formal Business Associate Agreement (BAA) execution is planned for Phase C or if clinical partnerships require it. Note: Consumer use of DermaView does not require formal HIPAA compliance; HIPAA obligations apply when handling Protected Health Information on behalf of a covered entity.
Audit Logging: All data access attempts are logged in Firebase Audit Logs

4.4 Your Security Controls
You maintain full control:
 
Access: Only you can access your photos through your authenticated account
Deletion: You can delete photos or your entire account at any time
Export: You can export your complete photo timeline
Portability: Your data is exportable in standard formats
 
5. Data Sharing and Disclosure
5.1 We Share Your Data Only When:
5.1.1 You Explicitly Consent
Healthcare Provider Sharing: If you choose to export or share your timeline with a doctor
Research Participation: If you opt-in to anonymized research studies (always optional)
5.1.2 Service Providers
We share limited technical data with:
 
Google Cloud Platform (Firebase): Infrastructure hosting (covered by their privacy policy)
Stripe: Payment processing (they receive only transaction data, not photos)
Email Service Provider: For account notifications (Mailchimp/ConvertKit — email only, no photos)
 
Critical: None of these providers have access to your photographs.

5.1.3 Legal Requirements
We may disclose data if required by:
 
Valid legal process (subpoena, court order)
Law enforcement with appropriate legal authority
Protection of our rights or safety of users
 
Standard: We will notify you before disclosure unless legally prohibited.

5.2 We Do NOT Share Data For:
❌ Advertising or marketing by third parties
❌ Sale to data brokers
❌ AI model training by external companies
❌ Insurance underwriting or employment screening
 
6. Your Rights and Choices
6.1 Access and Portability
View: Access all your photos and metadata through the app
Export: Download your complete timeline in ZIP format (JPEG images + metadata JSON)
Copy: Request a copy of your data in machine-readable format

6.2 Correction
Update: Edit body location tags, notes, or account information at any time
Request: Contact us to correct any inaccuracies

6.3 Deletion
Individual Photos: Delete any photo from your timeline instantly (hard delete within 24 hours)
Account Deletion: Request complete account deletion; all data permanently removed within 30 days
Right to Be Forgotten: We honor deletion requests in accordance with applicable privacy laws

6.4 Opt-Out Rights
Marketing Emails: Unsubscribe from newsletters (service notifications still required)
Research: Opt out of anonymized research participation at any time
Analytics: [Future feature] Opt out of anonymized usage analytics
 
7. Data Retention
7.1 Active Account
Photos: Retained indefinitely while your account is active (you control retention)
Metadata: Retained to support timeline functionality
Usage Logs: Retained for 12 months (anonymized after 90 days)

7.2 Account Deletion
Photos: Permanently deleted within 30 days of deletion request
Metadata: Anonymized and retained for 90 days for audit purposes, then deleted
Backups: Removed from backup systems within 90 days

7.3 Regulatory Retention
If required by law (e.g., financial records for tax compliance), minimal data may be retained for the legally required period.
 
8. Children’s Privacy
DermaView is NOT intended for use by individuals under 18 years of age. We do not knowingly collect information from minors.
 
Parental Consent: If a parent/guardian wishes to use DermaView to document a minor’s skin, the parent must:
 
Create an account in the parent’s name
Maintain control of all access
Accept full responsibility for the minor’s data
 
If we discover we have collected data from a minor without parental consent, we will delete it immediately.
 
9. International Data Transfers
Primary Jurisdiction: United States (data hosted in Google Cloud US regions)
 
International Users: If you access DermaView from outside the United States:
 
Your data may be transferred to and stored in the US
We comply with applicable data transfer regulations (e.g., GDPR Standard Contractual Clauses if applicable)
You have the same privacy rights regardless of location
 
GDPR Compliance: For European users, we comply with GDPR requirements including:
 
Lawful basis for processing: Consent and contract performance
Data Protection Officer contact: privacy@dermaview.io
Right to lodge a complaint with your local Data Protection Authority
 
10. Cookies and Tracking
10.1 Essential Cookies
We use cookies and similar technologies for:
 
Authentication: Keeping you logged in
Session Management: Maintaining app state
Security: Preventing fraud and abuse
10.2 Optional Cookies
With your consent, we may use:
 
Analytics Cookies: Google Analytics (anonymized) to improve the app
Performance Cookies: To monitor app load times and errors
 
Your Choice: You can disable non-essential cookies in your browser settings. Essential cookies are required for the service to function.
 
We do NOT use:
 
❌ Advertising or tracking cookies
❌ Third-party advertising networks
❌ Cross-site tracking
 
11. Changes to This Policy
We may update this Privacy Policy to reflect:
 
Changes in applicable laws
New features or services
Feedback from users or regulators
 
Notification:
 
Material Changes: We will notify you by email and in-app notification 30 days before changes take effect
Minor Changes: Posted to this page with updated “Last Updated” date
Your Consent: Continued use after notification constitutes acceptance
 
Version History: All prior versions archived at dermaview.io/privacy/archive
 
12. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
12.1 Right to Know
Request disclosure of:
 
Categories of personal information collected
Sources of that information
Business purpose for collection
Categories of third parties with whom we share data

12.2 Right to Delete
Request deletion of your personal information (subject to legal exceptions)

12.3 Right to Opt-Out
Opt out of “sale” of personal information (Note: We do not sell personal information. De-identified research data sharing under explicit opt-in consent is not a “sale” under CCPA.)
 
Do Not Sell or Share My Personal Information: DermaView does not sell or share personal information as defined under CCPA. A “Do Not Sell or Share” link is available at dermaview.io/do-not-sell for transparency.

12.4 Right to Non-Discrimination
We will not discriminate against you for exercising your CCPA rights
 
How to Exercise: Email privacy@dermaview.io with subject line “CCPA Request”
 
Response Time: We will respond within 45 days
 
13. Contact Us
Privacy Questions or Requests:
Email: privacy@dermaview.io
Subject Line Format:
“Access Request” — to view your data
“Deletion Request” — to delete your account
“Privacy Question” — for general inquiries
Data Protection Officer (if required):
Email: privacy@dermaview.io
Legal Notices:
Address: 202 Walton Way, Suite 192-133, Cedar Park, TX 78613
 
Response Time: We aim to respond to all privacy inquiries within 48 hours (excluding weekends/holidays).
 
14. Effective Date and Acceptance
Effective Date: 02/21/26
 
Acceptance: By creating an account or using DermaView, you acknowledge that you have read, understood, and agree to this Privacy Policy.
 
 Document Status: v1.5