Privacy Policy

Last updated: 11/15/2025

1. Introduction

Welcome to TryOn ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our virtual try-on application and todo management service (the "Service").

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our practices, please do not use our Service.

2. Information We Collect

2.1 Personal Information

  • Account Information: Name, email address, profile image
  • Authentication Data: Password (encrypted), email verification status
  • Social Login Data: When you sign in with Google or GitHub, we receive your public profile information

2.2 Usage Data

  • Todo Lists: Todo list names, content, completion status, and timestamps
  • Session Information: IP address, user agent, session tokens, and login timestamps
  • Device Information: Browser type, operating system, and device identifiers

2.3 Virtual Try-On Data

  • User Photos: Images you upload for virtual try-on generation
  • Generated Images: AI-generated virtual try-on images
  • Clothing Data: Clothing images, product information, brand names, prices, and categories
  • Source Information: Website URLs, logos, and product metadata from where clothing items are found
  • AI Analysis: AI-generated descriptions, categories, and feature analysis of clothing items

2.4 Financial Information

  • Credit Balance: Your account credit balance for using premium features
  • Purchase History: Records of credit purchases and subscriptions
  • Billing Information: Processed by our payment processor Polar.sh (we do not store payment card details)
3. How We Use Your Information
  • Service Provision: To provide, maintain, and improve our virtual try-on and todo management features
  • Account Management: To create and manage your account, authenticate users, and provide customer support
  • AI Processing: To generate virtual try-on images and analyze clothing items using AI technologies
  • Credit Management: To track usage, manage credit balances, and process payments
  • Communication: To send verification emails, password reset links, and account-related notifications
  • Personalization: To customize your experience and provide relevant features
  • Security: To protect against fraud, unauthorized access, and abuse of our Service
  • Legal Compliance: To comply with applicable laws and regulations
4. Third-Party Services

4.1 Authentication Providers

  • Google OAuth: For Google sign-in authentication
  • GitHub OAuth: For GitHub sign-in authentication
  • Better Auth: Authentication management service

4.2 AI and Processing Services

  • Cloudflare AI: For image generation using Flux models
  • Google Gemini API: For virtual try-on generation and clothing analysis

4.3 Infrastructure and Storage

  • Supabase: For secure image storage and file management
  • PostgreSQL: For database hosting and data storage

4.4 Communication and Billing

  • Resend: For sending transactional emails (verification, password reset)
  • Polar.sh: For payment processing and subscription management
5. Data Storage and Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

  • Encryption: All data is encrypted in transit and at rest
  • Access Controls: Strict access controls and authentication mechanisms
  • Secure Storage: Images and files are securely stored using Supabase Storage
  • Password Security: Passwords are hashed and never stored in plain text
  • Session Management: Secure session handling with automatic expiration
6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy:

  • Account Data: Retained until account deletion
  • Todo Data: Retained until manually deleted by user or account deletion
  • Virtual Try-On Images: Retained in your account history until manually deleted or account deletion
  • Session Data: Automatically expires based on inactivity
  • Email Communications: Transaction records retained for billing and legal purposes
7. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request access to your personal information
  • Correction: Update or correct your account information through your profile settings
  • Deletion: Delete your account and associated data through account settings
  • Portability: Request a copy of your data in a portable format
  • Email Preferences: Manage email verification and notification settings
  • Data Processing: Object to certain types of data processing

To exercise these rights, please contact us at support@chronocode.ai or use the account settings in the application.

8. Cookies and Tracking

We use cookies and similar technologies to:

  • Authentication: Maintain your login session securely
  • Preferences: Remember your language and theme preferences
  • Security: Protect against unauthorized access and CSRF attacks
  • Performance: Cache content for better app performance

You can control cookies through your browser settings, but some features may not function properly if cookies are disabled.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to remove such information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Email: support@chronocode.ai

Application: TryOn

Support: Available through in-app contact forms

13. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for processing your personal information includes:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract: To perform our contract with you (providing the Service)
  • Legitimate Interest: For improving our services, security, and customer support
  • Legal Obligation: To comply with applicable laws and regulations

This Privacy Policy is effective as of 11/15/2025 and was last updated on 11/15/2025.

TryOn