Legal

Privacy Policy

Effective date: April 26, 2026

1. Introduction

Matcha ("we", "our", or "us") is an iOS and Android application that uses artificial intelligence to help you discover clothing colors and combinations that complement your skin tone. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

By using Matcha, you agree to the collection and use of information as described in this policy. If you do not agree, please discontinue use of the app.

2. Information We Collect

Account Information

When you create an account, we collect:

Email address — used to identify your account and send account-related communications
Display name — the name shown on your profile within the app
Authentication provider — whether you signed in via email/password, Apple Sign In, or Google Sign In

Photos and Images

When you scan a clothing item or outfit, the image is transmitted securely to our backend (a Supabase Edge Function) which forwards it to OpenAI's GPT-4 Vision API for color analysis. The image is used solely for that analysis and is not permanently stored on our servers or OpenAI's servers after analysis is complete.

Skin Tone Preference

If you select a skin tone within the app, this preference is stored in our database to personalise your color recommendations. You can update or remove it at any time from your Profile settings.

Saved Looks and Scan History

Analysis results you choose to save (your "looks") are stored in our database and associated with your account. This includes color recommendations, outfit descriptions, and metadata such as the date of the scan.

Usage Data

We collect your daily scan count and scan event logs to enforce free-tier limits and to understand how the app is being used. This data is associated with your account.

3. How We Use Your Information

To provide and operate the Matcha service
To generate personalised color analysis and recommendations
To enforce daily scan limits for free-tier users
To save and retrieve your look history across sessions and devices
To communicate with you about your account if necessary
To improve the app based on aggregate, anonymised usage patterns

4. Third-Party Services

Supabase

We use Supabase for authentication and database storage. Your account data and saved looks are stored on Supabase infrastructure. Supabase is SOC 2 compliant. See their Privacy Policy.

OpenAI

Images you submit for analysis are sent to OpenAI's API. Per OpenAI's API data usage policy, data submitted via the API is not used to train their models and is not retained after the request is fulfilled. See OpenAI's API Data Usage Policy.

Apple Sign In

If you choose to sign in with Apple, Apple may share your name and email address with us as part of the authentication flow. See Apple's Privacy Policy.

Google Sign In

If you choose to sign in with Google, Google authenticates your identity via OAuth. We receive only your email address and basic profile info from Google. See Google's Privacy Policy.

5. No Sale of Data

We do not sell, rent, or trade your personal information to any third party for marketing or commercial purposes. Ever.

6. Data Storage and Retention

Your account data is retained for as long as your account exists. If you delete your account, your personal data and saved looks will be permanently deleted from our database within 30 days.

To request account deletion, email us at matandaphiri64@gmail.com with the subject line "Delete My Account".

7. Your Rights

You have the right to:

Access — request a copy of the personal data we hold about you
Correction — update your display name directly in the app; contact us to correct other data
Deletion — request permanent deletion of your account and all associated data
Portability — request an export of your saved looks data

To exercise any of these rights, contact us at matandaphiri64@gmail.com.

8. Children's Privacy

Matcha is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

9. Security

We implement industry-standard security measures including encrypted data transmission (HTTPS/TLS), secure authentication via Supabase Auth, and row-level security on our database so users can only access their own data. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy. For significant changes, we will notify you within the app.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:

Email: matandaphiri64@gmail.com
App: Matcha — Color Match AI