Biometric Data Policy

See Stella provides general wellness and skincare information only. It is not a medical service and does not diagnose, treat, cure, or prevent any disease or condition. Stella’s insights are educational and should never replace professional medical advice. Always consult a qualified healthcare practitioner for a personalised diagnosis or treatment.

Title

Last updated: Aug 2025

1. What Counts as “Biometric Data” at Stella?

At Stella, Biometric Data refers to:

  1. High‑resolution facial photographs captured via the in‑app camera.
  2. Derived facial‑skin metrics (e.g., wrinkle depth, redness index, pore visibility, pigmentation maps).

We do not collect full 3‑D face geometry or use facial recognition to identify individuals.

2. Why We Collect Biometric Data

To Generate Skin Insights. Analyse facial metrics to provide personalised cosmetic and wellness advice.

 

User Experience. Display scan history and progress over time. 

 

Product Improvement. Train and validate AI models (in aggregated or de‑identified form where feasible).

 

Security & Fraud Prevention. Detect spoofed or reused images.

 

We do not use Biometric Data for advertising outside the Stella ecosystem.

3. Consent

We obtain explicit, informed opt‑in consent before the first facial scan.
 

Consent can be withdrawn at any time by deleting your account or emailing privacy@seestella.com.au.
 

Without consent, scanning features will be unavailable, but you can still browse content and e‑commerce.

4. Retention Schedule

Raw facial images are retained for 3 years from capture. They are securely deleted from primary storage, and cryptographic erasure is applied to backups within 90 days.

 

Derived biometric metrics (like skin scores and analysis data) are kept for up to 3 years from your last account activity, or until you delete your scan history or close your account. These are removed via logical deletion, index scrubbing, and purged from analytics systems.

 

If you withdraw consent or request deletion earlier, we’ll complete the process within 45 days (or 30 days for Illinois residents).

6. Security Measures

AES‑256 encryption at rest; TLS 1.2+ in transit.
Production network isolation and MFA on all privileged accounts.

7. Sharing & Disclosure

We share Biometric Data only with:

  1. Service providers under contract that process data on our instructions and do not further disclose it.
  2. Regulators or law‑enforcement when legally compelled.

We never sell, rent, or license Biometric Data.
 

8. Your Rights

Access & Download. Get a copy of your Biometric Data by contacting us at privacy@seestella.com.au.


Deletion. Delete individual scans or your entire history at any time.


Withdraw Consent. Disable future scans in settings; no further Biometric Data collected.