Privacy Policy

Last updated: June 2025

Soniche ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Soniche mobile application ("App") and related services.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Email address
  • Display name (optional)
  • Authentication tokens (Apple Sign In or Google Sign In identifiers)

1.2 Facial Scan Data

Soniche uses Apple's ARKit TrueDepth camera system to capture 3D facial geometry for analysis. This includes:

  • 3D mesh vertices — 1,220 facial surface points per scan angle
  • Blend shape coefficients — 52 ARKit facial expression parameters
  • Depth maps — structured depth data from the TrueDepth sensor
  • Facial photographs — RGB images captured during the scan session

1.3 Computed Measurements

All 50+ facial measurements (proportions, ratios, angles, symmetry scores) are computed entirely on your device before being submitted to our servers for scoring and analysis.

1.4 Device & Usage Information

  • Device model and operating system version
  • App version
  • General usage analytics (feature interactions, session duration)

2. TrueDepth Camera Disclosure

Soniche uses the TrueDepth camera exclusively for facial measurement and analysis purposes as described in this policy. Specifically:

  • TrueDepth data is processed on-device to extract facial measurements
  • Facial mesh data may be transmitted to our servers solely for scoring and report generation
  • TrueDepth data is never used for advertising, tracking, or user profiling
  • TrueDepth data is never sold to or shared with third-party data brokers
  • TrueDepth data is never used for facial recognition or identification of other people

3. How We Use Your Information

  • Generate facial analysis scores and reports
  • Provide AI-powered facial analysis commentary via large language models
  • Generate PDF reports summarising your results
  • Track your analysis history and progress over time
  • Improve our scoring algorithms and measurement accuracy
  • Communicate service updates and important notices

4. Data Storage & Security

Your data is stored on Cloudflare's global infrastructure using:

  • D1 (SQLite) — structured analysis data and account information
  • R2 (Object Storage) — facial images and PDF reports
  • Workers KV — temporary cache data

All data is encrypted in transit (TLS 1.3) and at rest. We implement industry-standard security measures including JWT-based authentication, input validation, and rate limiting.

5. Third-Party Services

We use the following third-party services:

  • Cloudflare — hosting, CDN, and data storage
  • OpenRouter / AI providers — LLM-based facial analysis commentary (anonymised measurement data only; no images are sent to LLMs)
  • Apple App Store — subscription and payment processing
  • RevenueCat — subscription management

6. Data Retention

We retain your data for as long as your account is active. You can request deletion of your account and all associated data at any time through the App settings or by contacting support.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent for data processing
  • Object to automated decision-making

8. Biometric Data (Illinois BIPA & Similar Laws)

Soniche collects facial geometry data that may be classified as biometric information under laws such as the Illinois Biometric Information Privacy Act (BIPA). By using Soniche, you acknowledge and consent to the collection and processing of this biometric data for the purposes described in this policy.

You may revoke consent and request deletion of all biometric data at any time by deleting your account or contacting privacy@soniche.app.

9. Children's Privacy

Soniche is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes through the App or via email. Your continued use of the App after changes constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related inquiries, data requests, or concerns:

privacy@soniche.app