Privacy Policy

Effective: 20 May 2026

This policy explains what information Ascendify collects, why, and what rights you have over it. It is written in plain language. If anything is unclear, email hello@tryascendify.cc.

1. Who we are

Ascendify (“we”, “our”, “us”) is an iOS application that provides AI-assisted facial aesthetic analysis and self-improvement guidance. We act as the data controller for the personal information described in this policy. You can contact us at any time at hello@tryascendify.cc.

2. Summary

• We do not require an account to use Ascendify.
• We do not sell your information, share it with advertisers, or use it for advertising tracking.
• Photos you capture are processed to produce your analysis and your “future self” preview, and are not retained on our servers after processing is complete.
• Your scan history and results are stored on your device, not on our servers.
• If you subscribe, your purchase is handled by Apple. We receive a non-identifying token confirming your active subscription, nothing more.

3. Information we collect

3.1 Information you provide

• Photos of your face captured through the app for scoring and image-generation features.
• Onboarding answers you choose to share, such as age range, gender, and aesthetic goals, used to personalise the analysis.
• Subscription purchases made through Apple’s In-App Purchase system.

3.2 Information collected automatically

• A device-bound integrity token, a cryptographic identifier issued by your iPhone that confirms requests originate from a genuine installation of Ascendify on a real Apple device. It cannot be used to identify you personally or linked across apps.
• Basic technical information needed to deliver the service, such as the IP address used to reach our servers and standard request metadata. This is used only for security, fraud prevention, and infrastructure reliability, and is not used to build a profile of you.

3.3 Information we do not collect

• Your name, email address, postal address, or phone number.
• Your contacts, calendars, photo library, location, or messages.
• Advertising identifiers (IDFA / IDFV).
• Information from social networks or any third-party login provider.

4. How we use your information

We use the information described above to:

• Produce your facial analysis, scores, personalised plan, and “future self” preview.
• Save your scan history locally on your device so you can revisit it.
• Confirm an active subscription, where applicable, and grant access to paid features.
• Protect against abuse and ensure the service runs reliably.
• Comply with our legal obligations.

5. Legal bases (UK / EU users)

If you are in the United Kingdom or the European Economic Area, we process your information on the following bases:

• Contract — to deliver the features you have asked for, including paid features.
• Legitimate interests — to keep the service secure, prevent abuse, and improve product quality. We balance these interests against your rights.
• Consent — for any optional features (such as push-notification reminders) that we ask you to opt into separately.
• Legal obligation — where we are required by law to retain or disclose certain information.

6. How long we keep it

• Photos sent for analysis: not retained after processing. They are deleted from our servers once your result has been returned to your device.
• Analysis results & future-self images: stored locally on your device only. You can delete them at any time from the History view inside the app.
• Device integrity token: retained for as long as Ascendify is installed on the device.
• Subscription records: retained for the duration of your subscription and for the period required by tax, accounting, and consumer-protection laws (typically up to 7 years).
• Security logs: typically up to 30 days, after which they are deleted or aggregated.

7. Sharing

We share information only with the parties below, only as needed to deliver the service, and only under contractual confidentiality and security obligations:

• Apple, for handling subscriptions and verifying app installation integrity.
• Our infrastructure providers, who host the servers that process your analysis requests. These providers act as data processors on our behalf.
• Our AI analysis providers, who process the photos you submit to generate your score and future-self preview. They act as data processors on our behalf and are contractually prohibited from using your photos for any other purpose, including training of their models.
• Subscription analytics provider, which records that a valid subscription exists so we can unlock paid features. It receives a non-identifying user token and the product purchased; it does not receive your photos or analysis results.
• Authorities, where required by valid legal process.

We never sell your information and we never share it with advertising networks or data brokers.

8. International transfers

Our infrastructure providers operate globally. Where information is transferred outside the United Kingdom or the European Economic Area, we rely on safeguards approved under UK GDPR and EU GDPR, including Standard Contractual Clauses and equivalent mechanisms.

9. Security

All traffic between the app and our servers is encrypted in transit. Requests are authenticated using a device-bound integrity token so that an unauthorised client cannot impersonate the app. Photos sent for analysis are kept only for the moments required to return a result and are then discarded.

10. Your rights

Depending on where you live, you have some or all of the following rights:

• Access — request a copy of any personal information we hold about you.
• Rectification — ask us to correct inaccurate information.
• Erasure — ask us to delete personal information we hold.
• Restriction — ask us to limit how we use your information.
• Portability — ask us to provide your information in a portable format.
• Objection — object to processing based on legitimate interests.
• Withdraw consent — where processing is based on consent.

To exercise any of these, email hello@tryascendify.cc. We will respond within 30 days.

UK and EU users have the right to lodge a complaint with their local supervisory authority. In the UK, this is the Information Commissioner’s Office (ICO) at ico.org.uk.

11. California residents (CCPA / CPRA)

California residents have the right to know what personal information is collected, request deletion, correct inaccuracies, and opt out of any sale or sharing of personal information. We do not sell or share personal information for cross-context behavioural advertising. To exercise any right, email hello@tryascendify.cc.

12. Children

Ascendify is not intended for use by anyone under 13, and is not directed at children. If you believe a child has provided us with personal information, contact us and we will delete it.

13. Changes to this policy

If we make material changes to this policy, we will notify you in the app and update the effective date above. Minor wording changes will be posted here without separate notice.

14. Contact

Questions, requests, or complaints: hello@tryascendify.cc.