HeadShape AI
Privacy Policy

Privacy Policy

Last Updated: January 1, 2025

Introduction

HeadShape AI LLC ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our HeadShape AI service ("Service"). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

1. What Information Do We Collect?

1.1 Personal Information You Provide

  • Account Information: Name, email address, password, and account preferences
  • Baby Profile Information: Your baby's age, gender, birth date, and head shape photos you upload
  • Communication Data: Messages you send us through contact forms or support channels
  • Payment Information: Billing address and payment method details (processed securely by our payment processors)
  • AI Analysis Data: Photos you upload and the resulting analysis data generated by our AI systems

1.2 Information Automatically Collected

  • Device Information: Device type, operating system, browser type and version, IP address
  • Usage Analytics: How you interact with our Service, pages visited, features used, session duration
  • Technical Data: Server logs, error reports, performance metrics
  • Cookies and Tracking: We use cookies and similar technologies to enhance your experience and understand Service usage

2. How Do We Use Your Information?

2.1 Primary Service Functions

  • AI Analysis Services: Process uploaded photos to provide head shape analysis, predictive modeling, and sleep positioning guidance
  • Account Management: Create and maintain your account, provide customer support
  • Service Improvement: Analyze usage patterns to improve our AI algorithms and user experience
  • Communication: Send service updates, important notices, and respond to your inquiries

2.2 AI Model Training

Important Notice About AI Training:

We may use anonymized and aggregated analysis data to improve our AI models and algorithms. However, we never use identifiable photos or personal information for training purposes. All data used for AI improvement is stripped of personal identifiers and aggregated with other users' data.

3. Who Do We Share Information With?

We do not sell your personal information. We may share information only in these limited circumstances:

  • Service Providers: Trusted third-party companies that help us operate our Service (cloud storage providers like AWS, payment processors like Stripe, analytics services)
  • Legal Requirements: When required by law, regulation, or legal process
  • Safety and Security: To protect the rights, property, or safety of HeadShape AI, our users, or others
  • Business Transfers: In connection with any merger, acquisition, or sale of company assets
  • With Your Consent: When you explicitly consent to sharing your information

4. How Do We Protect Your Information?

We implement comprehensive security measures to protect your data:

  • Encryption: All data is encrypted in transit (TLS) and at rest using industry-standard encryption
  • Access Controls: Strict employee access controls with role-based permissions
  • Regular Security Audits: Ongoing security assessments and vulnerability testing
  • Secure Infrastructure: Data hosted on secure cloud platforms with enterprise-grade security
  • Data Minimization: We collect and retain only the data necessary for our Services

5. How Long Do We Keep Your Information?

  • Account Data: Retained while your account is active and for 90 days after account deletion
  • Photos and Analysis: Retained as long as you maintain an account, or until you request deletion
  • Communication Records: Kept for 3 years for customer support purposes
  • Analytics Data: Aggregated, anonymized data may be retained indefinitely for service improvement
  • Legal Requirements: Some data may be retained longer when required by law

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request copies of your personal information
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal requirements)
  • Data Portability: Request a copy of your data in a structured, machine-readable format
  • Withdrawal of Consent: Withdraw consent for data processing where consent is the legal basis
  • Marketing Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact us at legal@headshapeai.com. We will respond within 30 days of receiving your request.

7. Children's Privacy (COPPA Compliance)

IMPORTANT: Children Under 13

  • Our Service is intended for parents and caregivers, not children under 13
  • We do not knowingly collect personal information directly from children under 13
  • Parents are responsible for providing consent for any information about their children
  • If we discover we have collected information from a child under 13, we will delete it immediately
  • Parents may contact us to review, delete, or refuse further collection of their child's information

For Parents: You have the right to consent to our collection and use of your child's information, review what information we have collected, request deletion of your child's information, and refuse to allow further collection. Contact us at legal@headshapeai.com for any child privacy concerns.

8. Third-Party Services

We use the following trusted third-party services:

  • Cloud Storage: Amazon Web Services (AWS) or Google Cloud Platform for secure data hosting
  • Payment Processing: Stripe for secure payment processing (we never store payment card details)
  • Analytics: Google Analytics for usage analytics (anonymized)
  • Email Services: For sending service communications and support responses
  • Customer Support: Tools to help us provide better customer service

These services have their own privacy policies. We encourage you to review their privacy practices.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and that your information receives adequate protection through appropriate safeguards such as standard contractual clauses.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by email or through prominent notice on our Service. Your continued use of the Service after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us:

HeadShape AI LLC - Privacy Team

30 N Gould St STE 32855

Sheridan, WY 82801, USA

Email: legal@headshapeai.com

Phone: +1 (205) 793-7370

12. State-Specific Rights

California Residents: Under the California Consumer Privacy Act (CCPA), you have additional rights including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information. We do not sell personal information.

European Union Residents: Under the General Data Protection Regulation (GDPR), you have rights including data portability, the right to object to processing, and the right to lodge a complaint with a supervisory authority.

This Privacy Policy governs your use of HeadShape AI and supersedes any prior privacy policies. For questions about medical advice or your baby's health, please consult qualified healthcare professionals.