Privacy Policy

Your privacy matters to us. Please read this Privacy Policy carefully — it explains who we are, what personal information we collect, how we use and protect it, who we share it with, and what rights you have. By using our website at finbeauty.app or our iOS application, you agree to the practices described in this policy. If you do not agree, please discontinue use of our platform.

1. Who We Are

FinBeauty LLC ("FinBeauty," "we," "us," or "our") is a Delaware limited liability company operating the financial and business education platform at finbeauty.app and its companion iOS application. Our mailing address is:

FinBeauty is the data controller responsible for your personal information collected through our platform.

2. Children's Privacy (COPPA)

FinBeauty's platform is intended for users who are 13 years of age or older. We do not knowingly collect personal information from children under the age of 13 in accordance with the Children's Online Privacy Protection Act (COPPA). Our platform, content, and services are not directed at children under 13, and we prohibit anyone under 13 from creating an account or providing us with personal information.

If we become aware that we have inadvertently collected personal information from a child under 13, we will delete that information promptly. If you believe we may have collected information from a child under 13, please contact us immediately at support@finbeauty.app.

Users Ages 13–17 (Direct Purchase Path)

Users between the ages of 13 and 17 who purchase access to FinBeauty directly (not through a school-issued seat code) must have parental or guardian authorization prior to creating an account or completing a purchase. By completing registration, users under 18 confirm that a parent or legal guardian has authorized their use of the platform. We encourage parents and guardians to contact us at support@finbeauty.app with any questions about their minor's account.

School-Enrolled Students (Seat Code Path)

Students who access FinBeauty through a seat code issued by a licensed cosmetology school do so under the school's institutional authority. Cosmetology schools that enroll minor students are responsible for obtaining all necessary parental consents as part of their enrollment process, in accordance with applicable state and federal law. FinBeauty relies on the school's existing consent framework for seat-code-activated accounts and does not independently collect parental consent for school-enrolled students.

Pro Subscription

The FinBeauty Pro subscription is intended for licensed or working beauty professionals. Users accessing Pro features represent that they are 18 years of age or older.

3. Information We Collect

Information you provide directly:

• Name and email address when creating an account
• Password (stored encrypted — we never see it in plain text)
• School or salon affiliation, where applicable
• Payment information submitted during checkout — processed exclusively by Stripe; we never store your full card number, CVV, or expiration date
• Any messages or inquiries you send to our support team

Information collected automatically:

• Lessons viewed, modules completed, quiz scores, and progress data
• IP address, browser type, device type, and operating system
• Pages visited, time spent on pages, and navigation patterns
• App version and session duration (iOS app)

Cookies and similar technologies:

We use cookies and similar session technologies to keep you logged in, remember your preferences, and understand how our platform is used. These technologies cannot execute code or transmit viruses. You may adjust your browser's cookie settings at any time, though doing so may affect your ability to use certain features of the platform. If your browser sends a "Do Not Track" signal, we honor it by limiting tracking to essential session functionality only.

4. How We Use Your Information

We use the information we collect to:

• Create and manage your account and deliver access to your curriculum
• Track, display, and sync your learning progress across devices
• Process payments and issue receipts via Stripe
• Send transactional emails — account confirmations, password resets, seat code delivery, and subscription updates
• Respond to your support requests and inquiries
• Improve platform content, features, and user experience
• Comply with legal obligations and protect against fraud or abuse

We do not use your personal information for automated decision-making that produces legal or similarly significant effects on you.

5. How We Share Your Information

We do not sell, rent, or trade your personal information. We share data only as necessary to operate our platform and fulfill our services:

• Stripe — payment processing. Stripe stores and processes your billing information under their own privacy policy and PCI-DSS compliance.
• Supabase — secure database hosting for your account and progress data. Supabase is SOC 2 Type II compliant.
• Vercel — web hosting and content delivery for finbeauty.app.
• Law enforcement or legal process — we may disclose information when required by applicable law, court order, or to protect the rights, property, or safety of FinBeauty, our users, or the public.
• Business transfers — in the event of a merger, acquisition, or sale of assets, your information may be transferred to the successor entity. We will notify you of any such change and provide options where required by law.

We will not share your personal information with any other third party without your explicit consent.

6. How Long We Keep Your Information

We retain your personal information for as long as your account is active or as needed to provide our services. Specifically:

• Account and progress data is retained while your account remains open and for up to 90 days following account deletion, after which it is permanently removed.
• Payment and billing records are retained for a minimum of six (6) years to comply with financial and tax reporting obligations.
• Support correspondence is retained for two (2) years.

You may request deletion of your account and personal data at any time by emailing support@finbeauty.app. We will confirm deletion within 30 days, subject to any legal retention requirements.

7. How We Protect Your Information

We implement industry-standard security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction:

• All data in transit is encrypted using TLS
• Data at rest is encrypted using AES-256
• Database access is governed by row-level security policies — users can only access their own data
• Payment processing is handled entirely by Stripe — we never handle raw card data
• Access to user data is limited to personnel with a legitimate need

We have procedures in place to detect and respond to suspected data security breaches. Where legally required, we will notify you and applicable regulatory authorities of any breach without undue delay.

No security system is impenetrable. While we take your data security seriously, we cannot guarantee absolute security of information transmitted over the internet.

8. Your Rights

Depending on where you are located, you may have the following rights regarding your personal information:

• Access — request a copy of the personal information we hold about you
• Correction — request correction of inaccurate or incomplete information
• Deletion — request erasure of your personal information, subject to legal retention requirements
• Portability — receive your personal data in a structured, machine-readable format
• Objection — object to processing of your personal information for direct marketing purposes
• Restriction — request that we limit how we use your information in certain circumstances
• Opt-out of sale — we do not sell personal data; no action is required

To exercise any of these rights, email us at support@finbeauty.app with your full name, email address, and a description of your request. We will respond within 30 days.

9. International Users — EEA and UK

FinBeauty is operated in the United States. If you are located in the European Economic Area (EEA) or the United Kingdom (UK), please be aware that your information will be transferred to and processed in the United States, which may not have the same data protection laws as your country of residence.

Where we transfer data outside the EEA or UK, we take steps to ensure appropriate safeguards are in place. If you have questions about international data transfers, contact us at support@finbeauty.app.

If you are in the EEA or UK, you also have the right to lodge a complaint with your local data protection supervisory authority. In the UK, this is the Information Commissioner's Office (ico.org.uk). In the EU, contact your national data protection authority.

10. California Residents — CCPA

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. You have the right to know what personal information we collect and how it is used, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us at support@finbeauty.app.

11. Third-Party Links

Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

12. iOS Application

The FinBeauty iOS app is available through the Apple App Store and shares your account, progress, and data with the web platform. The following applies specifically to the iOS app:

• Authentication tokens are stored securely in the iOS Keychain — not in plain text or unencrypted storage
• Learning progress (completed lessons, quiz scores, points) syncs in real time between the iOS app and the web platform via our secure database
• Device information including device type, iOS version, and app version may be collected to diagnose issues and improve the app
• No third-party advertising SDKs are embedded in the iOS app; we do not use third-party trackers for advertising purposes
• Push notifications are only sent if you explicitly grant permission; you may revoke this permission at any time in your iOS Settings

Apple is not a party to this Privacy Policy and has no responsibility for the collection or handling of your data by FinBeauty. For information on how Apple handles data related to the App Store, refer to Apple's own Privacy Policy at apple.com/privacy.

13. School Administrator Access & Student Records

If you access FinBeauty through a school or institution that has purchased seat codes on your behalf, your enrolled institution's designated administrator may have access to your learning records within FinBeauty, including lessons completed, quiz scores, and last active date. This access is limited to administrators of the institution that provided your seat code and is used solely for the purpose of monitoring academic progress within their program.

By activating a seat code provided by a school or institution, you acknowledge that your course progress within FinBeauty may be visible to that institution's designated administrator.

FinBeauty operates as a service provider to educational institutions and handles student learning data on their behalf in accordance with applicable federal education privacy law (FERPA). Institutions are responsible for ensuring appropriate use of student data accessed through the FinBeauty administrator portal. Students who wish to review or request correction of their learning records should contact their institution directly or reach us at support@finbeauty.app.

Student learning records are retained for the duration of the institution's active subscription with FinBeauty and for up to 90 days following termination, after which they are permanently removed from our systems.

14. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. For significant changes, we will notify you by email or by posting a prominent notice on our platform prior to the change taking effect. Your continued use of FinBeauty after any update constitutes your acceptance of the revised policy.

15. Contact Us

Questions, concerns, or requests related to this Privacy Policy or your personal information should be directed to:

We take privacy inquiries seriously and will respond to all requests within 30 days.