SnapFyt

Privacy Policy

Last updated: June 12, 2026

SnapFyt ("we," "our," or "us") helps you find clothing and accessories visible in a photo. This policy explains what we collect, why we collect it, how it's used, who it's shared with, and the choices you have. We've structured it to match Apple's App Privacy Details categories so it's easy to cross-reference what you see on the App Store nutrition label.

1 · What we collect

Below is everything SnapFyt collects, organized by Apple's data-type categories.

Apple category	What it means for SnapFyt	Linked to you
Contact Info	Email address (required for sign-in). First/last name (optional). Instagram handle (optional — used as your public display name in the SnapFyt Feed).	Yes
User Content	Photos you upload to search, the search regions you draw, comments you write on shared sessions, your profile picture (if you upload one).	Yes
Identifiers	An internal account ID we generate when you sign up. We do not use IDFA, IDFV, or any cross-app tracking identifier.	Yes
Usage Data	Which searches you ran, which results you tapped, who you follow, what you saved or liked. Used to power Feed ranking, History, and Saved.	Yes
Search History	The photos, regions, attributes, and results from each session you save. Visible to you in History; visible to others only if you set the session to Public or Friends.	Yes
Diagnostics	iOS version, device model, app version, and error messages — sent when the iOS app encounters an error, so we can debug. We do not capture screen recordings or arbitrary device data.	Yes (tied to your account if signed in; anonymous otherwise)
Optional Profile Info	Gender (optional, used for fashion recommendations) and IG handle (optional).	Yes
Purchases	Your SnapFyt subscription status (trial / active / expired), the plan you chose (Monthly or Annual), and the Apple transaction identifier, received from Apple when you start a free trial or subscribe. We never see or store your card or payment details — Apple processes all payments via In-App Purchase.	Yes

What we do NOT collect

Location — we never request or store GPS, IP-derived location, or coarse location.
Contacts — we never access your address book.
Health & Fitness — none.
Financial Info — We never receive or store your credit-card or payment details. SnapFyt's optional subscription is billed by Apple through In-App Purchase; we only receive your subscription status (see "Purchases" above). Shopping result links are affiliate links — see §2 and §3.
Browsing History — we don't track URLs you visit outside SnapFyt.
Sensitive Info — we don't collect race, religion, sexual orientation, or biometric identifiers.
Microphone / camera audio — the camera is used only to capture a photo when you choose to.
Cross-app advertising identifiers — no IDFA, no third-party SDKs for ad tracking.

2 · How we use it

App functionality — your photos and tagged regions are sent to our analysis pipeline (Anthropic Claude for visual description, Google Lens/Shopping via SerpAPI for matching) so you get product results back. SnapFyt does not retain the analyzed image bytes beyond your saved session, and our providers process them transiently to fulfill your request under their own API terms. We do not use your photos to train AI models, and we use our providers under terms that do not grant them the right to train on your content.
Account & authentication — your email and hashed password let you sign in and keep your history private.
Social features — your IG handle / name and any session you mark Public or Friends appear in the Feed for other users.
Subscriptions — if you start the SnapFyt Annual free trial or subscribe to either plan (Monthly or Annual), we use the subscription status Apple sends us to unlock paid features. Apple handles billing, renewals, and cancellation; we receive only your subscription status and transaction identifier (see §1 "Purchases").
Affiliate shopping — the shopping results we show are affiliate links that include a tracking code. SnapFyt earns a commission when you buy through them. Tapping a result hands you off to the retailer or an affiliate network, each with its own privacy policy that governs what they collect once you leave SnapFyt. We may receive aggregate, non-identifying reports of whether a click led to a sale; we do not receive your card details or what you purchased.
Reliability — error reports help us diagnose crashes and fix bugs.

We do not:

Sell or rent your data to anyone, ever.
Use your data for third-party advertising or "track" you across apps and websites per Apple's definition.
Use your photos to train AI models.

3 · Who we share it with

The third parties we hand data to are limited to the providers that power SnapFyt's core function:

Provider	What we send	Why
Anthropic (Claude API)	The cropped image region you tag, plus a short text prompt.	Visual description & attribute extraction.
SerpAPI	The same cropped region's URL or extracted text query.	Google Lens / Google Shopping lookups for matching products.
Resend	Your email address, when you trigger a password reset.	Send the reset email.
Microsoft Azure	All API traffic, since SnapFyt's backend runs on App Service.	Hosting.
Affiliate networks & retailers	An affiliate tracking code (and standard web request data your device sends, e.g., IP, when you follow the link)	Attribute purchases so we earn commission. Each retailer/network has its own privacy policy we don't control.

None of these are given access to your account password, your friends list, or your private (non-public) sessions for any purpose other than fulfilling the request you made.

4 · Children & minimum age

You must be at least 13 to use SnapFyt. If you are in the EU or UK, you must be at least the age of digital consent in your country (between 13 and 16). We do not knowingly collect personal information from anyone below the applicable age. Because SnapFyt includes public social features (the Feed, public sessions, comments, and display names), we strongly discourage minors from creating public profiles. If you believe someone under the applicable age has provided us information, email privacy@snapfyt.com and we will delete it.

5 · Your choices & controls

Edit profile — name, IG handle, profile photo, gender are all editable from the Account tab and can be cleared at any time.
Visibility per session — every saved search defaults to Private. You decide whether to flip it to Friends or Public.
Delete a session — open History → tap the session → delete.
Delete your account — in the app, go to Account → Delete Account and confirm. This permanently deletes your account, profile photo, all sessions, all comments and likes, and all error-log rows tied to your user ID within 30 days. You can also email privacy@snapfyt.com. You'll receive a confirmation.
Export your data — same email; we'll send a JSON dump of your account and sessions within 30 days.

6 · Data retention

Account data is kept while your account exists.
Search sessions stay until you delete them, or until you delete your account.
Server-side error logs are kept 90 days for debugging, then automatically purged.
Uploaded photo files older than your active sessions are deleted automatically within 90 days.

7 · Security

Passwords are stored as bcrypt hashes, never as plaintext. All API traffic between the SnapFyt app and our backend is sent over HTTPS / TLS. Cookies are HTTP-only with SameSite protection. The database is hosted on a private network and is not internet-reachable.

That said: no system is unbreakable. If a breach occurs that affects your account, we'll notify you by email within 72 hours of discovery as required by applicable regulations.

8 · Your rights under GDPR & CCPA

If you live in the EU, UK, or California you have rights including access, correction, deletion, restriction, objection, data portability, and the right not to be discriminated against for exercising them. To exercise any, email privacy@snapfyt.com. We do not sell or "share" (as defined by CCPA/CPRA) personal information for cross-context behavioral advertising.

Legal bases (EU/UK). We process data to: provide the app and your account (performance of a contract); operate optional social and recommendation features and keep the service reliable (your consent and/or our legitimate interests); and meet legal obligations. You can withdraw consent at any time.

International transfers. Our processors (Anthropic, SerpAPI, Microsoft Azure, Resend) may process data in the United States. Where we transfer EU/UK personal data abroad, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.

9 · Changes to this policy

If we make material changes, we'll update the "Last updated" date at the top and, for significant changes, post an in-app notice the next time you sign in. Continued use after a change means you accept the revised policy.

10 · Contact

Questions, data requests, or anything else about this policy: privacy@snapfyt.com