Refina Privacy Policy & Terms

Last Updated: June 19, 2025

Who We Are

"Refina", "EnhanceMe", "we", "our", or "us" means Trilogy Labs LLC, United States.

Age & Medical Disclaimer

AI face previews are for illustration only — not medical advice. Consult a licensed professional before any cosmetic procedure.

What We Collect & Why

*GDPR art. 6 legal bases; CCPA = "business purpose", not selling/sharing.

How We Use Data

1. Provide core functions (login, photo upload, AI processing).
2. Validate trials and subscriptions via Superwall.
3. Prevent trial abuse or fraud (device & IP checks).
4. Improve stability through Crashlytics error reports.
5. Send essential emails or in-app messages (e.g., password reset, receipt).

We do not show third-party ads or track you across other apps.

Facial Data Protection

• Encryption: All facial images encrypted in transit
• Access Controls: Strict authentication required
• Processing Limitation: Used only for AI preview generation
• No Identification: No facial recognition used
• Secure Processing: AI processing via Firebase Cloud Functions
• User Control: Users can delete their facial data anytime
• Data Minimization: Only required photos are collected

AI Processing and Third-Party Services

Facial Enhancement Processing:

• When a user chooses to generate an AI preview, the selected facial image and enhancement parameters are securely transmitted via API to our third-party AI processing provider Replicate, Inc.
• This transmission occurs only after the user voluntarily uploads a photo and requests AI processing. By initiating the preview generation, the user consents to this secure transmission.
• The transmitted data may include the uploaded facial image and selected cosmetic enhancement parameters required to generate the preview.
• Processing occurs through Firebase Cloud Functions acting as a secure intermediary.
• Replicate processes images transiently to generate the requested result and does not retain images after processing is completed.
• The resulting enhanced image is returned to the app and stored only in the user's secure account storage.

Data Minimization:

• Only facial photos necessary for enhancement previews are processed.
• No facial data is used for advertising, marketing, or research purposes.
• No facial data is shared with advertising networks or social media platforms.

Data Sharing (Sub-processors)

No other third-party analytics, ad networks, or CDNs are integrated.

International Transfers

Data may be processed in the United States or other regions where Firebase operates.

Your Rights

You may access, export, or delete your data anytime via Settings → Account → Delete Account or by emailing team@trilogy-labs.com.

Security

All images encrypted in transit (TLS 1.2+) and at rest (AES-256). Strict authentication ensures users only access their own data.

Data Retention & Deletion

Account data kept while account exists. User-deleted photos removed immediately. AI processing files deleted immediately after processing.

Automated Processing

AI preview generation is automated but has no legal or similarly significant effect.

Changes

Updates will be posted here and users notified before major changes.

Contact

Email: team@trilogy-labs.com

END OF POLICY