Privacy Policy

1. Who We Are

Trimly ("Trimly", "we", "our", or "us") is a luxury barbershop booking marketplace that connects clients with professional barbers. This Privacy Policy explains how we handle personal information collected through our mobile application, website (trimly.app), and related services (collectively, the "Service").

For questions about this policy, contact us at privacy@trimly.app.

2. Information We Collect

2.1 Account Information

When you create a Trimly account (via Clerk), we collect:

• Full name and email address
• Profile photo (optional)
• Role selection (client or barber)
• Authentication credentials managed by Clerk — we never see your password

2.2 Barber Profile Information

If you register as a barber, we additionally collect:

• Business name, bio, and specialties
• Service menu and pricing
• Portfolio photos (uploaded to Cloudinary)
• Approximate business location (city/neighbourhood for the map view)
• Availability schedule

2.3 Face Scan & AI Analysis

The AI Hair & Beard Scan feature uses your device camera. Here is exactly what happens to that data:

• On-device processing: Google ML Kit (MediaPipe) detects your face shape entirely on your device. No photo is sent to our servers for this step.
• Cloud AI analysis (optional): If you request Claude Vision advice, a compressed JPEG of your selfie is sent over HTTPS to Anthropic's API to generate haircut recommendations. This image is used solely for that request and is not stored by Anthropic beyond their standard API logging. See Anthropic's Privacy Policy.
• We do not store face scan photos on our servers. They are processed in memory and discarded.

2.4 Booking & Communication Data

• Booking details (service, date/time, barber, status)
• Messages exchanged between clients and barbers
• Reviews and ratings you submit
• Loyalty points and redemption history

2.5 Payment Information

All payments are processed by Paddle, our Merchant of Record. Trimly never receives, processes, or stores your card number, CVV, or full bank details. Paddle provides us with a subscription status and transaction reference only. See Paddle's Privacy Policy.

2.6 Device & Usage Information

• Device type, operating system, and app version
• Push notification token (for booking updates)
• App feature usage (screens visited, actions taken)
• Crash reports and error logs

2.7 Location Data

The map screen displays nearby barbers. We use your device's approximate location (requested at runtime, with your permission) only to centre the map. We do not continuously track or store your location history.

3. How We Use Your Information

• Create and manage your account
• Match you with barbers based on specialty, location, and availability
• Process bookings and send booking confirmations
• Deliver push notifications about your bookings and messages
• Operate the AI face scan and haircut advisor
• Process subscription payments via Paddle
• Calculate and award loyalty points
• Improve our Service, fix bugs, and develop new features
• Comply with legal obligations and prevent fraud

4. How We Share Your Information

We do not sell your personal information. We share data only as described below:

4.1 Between Clients and Barbers

When you make a booking, the barber can see your name, profile photo, and the service requested. When a barber lists on the platform, their name, photo, specialties, location, and prices are visible to clients.

4.2 Service Providers

We use the following third-party services to operate Trimly:

• Clerk — Identity and authentication management
• Convex — Real-time database and backend services
• Paddle — Payment processing and subscription management (Merchant of Record)
• Cloudinary — Media storage and delivery for profile and portfolio photos
• Anthropic — AI analysis of face scan photos (only when Claude Vision is used)
• Google ML Kit — On-device face shape detection (no data leaves the device)
• Expo / EAS — App build, delivery, and push notifications

4.3 Legal Requirements

We may disclose your information if required by law, court order, or to protect the rights and safety of our users and the public.

5. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we delete or anonymise your personal data within 30 days, except where retention is required by law (e.g., financial records).

Booking records may be retained for up to 7 years for tax and legal compliance. Anonymised analytics data may be retained indefinitely.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the data we hold about you
• Correction: Ask us to correct inaccurate data
• Deletion: Request deletion of your account and personal data
• Portability: Receive your data in a machine-readable format
• Objection: Object to certain processing activities
• Withdrawal of consent: Where processing is based on consent, withdraw it at any time

To exercise any right, email privacy@trimly.app. We respond within 30 days.

7. Children's Privacy

Trimly is not intended for users under the age of 13 (or 16 in the EU/UK). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.

8. International Transfers

Trimly and its service providers operate globally. Your data may be transferred to and processed in countries outside your own. Where required, we use standard contractual clauses or other approved transfer mechanisms to protect your data.

9. Security

We use industry-standard security measures including TLS encryption in transit, encrypted storage at rest, and access controls. However, no system is completely secure — if you suspect a security issue, email security@trimly.app.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. The "Last updated" date at the top reflects the most recent revision.

11. Contact Us

For any privacy questions or requests:
Email: privacy@trimly.app