Skin Type PRO Privacy Policy

Last Updated: June 25, 2026


Your Privacy Matters

Skin Type Solutions and Skin Type PRO are committed to protecting your privacy and maintaining the security of personal information, practice information, patient information, and platform data.

This Privacy Policy describes how Skin Type Solutions collects, uses, discloses, and protects information when you use the Skin Type PRO platform, provider dashboard, consult tools, Online Store workflows, PRO Marketplace, AudreyAI support features, patient-facing quiz and routine tools, and related services.


1 — Who We Are

Skin Type PRO is operated by Skin Type Solutions.

Skin Type PRO provides software and services for medical practices, medspas, dermatology practices, plastic surgery practices, aesthetic providers, and related professionals. The platform may include:

  • provider and practice accounts;
  • the Baumann Skin Type quiz;
  • skin type results;
  • personalized skincare routines;
  • Consult Software;
  • AudreyAI consult support;
  • Online Store workflows;
  • PRO Marketplace access;
  • patient-facing product recommendations;
  • checkout, fulfillment, and refill workflows;
  • reporting and analytics.

Patient Online Store purchases are processed through Shopify checkout or another checkout provider designated by Skin Type Solutions. Skin Type Solutions is the seller and merchant of record for patient purchases completed through Skin Type Solutions or Skin Type PRO Online Store checkout workflows, unless otherwise expressly stated.


2 — Scope of This Privacy Policy

This Privacy Policy applies to information collected through:

  • the Skin Type PRO website;
  • provider and practice signup flows;
  • the Skin Type PRO dashboard;
  • patient-facing quiz, skin type, routine, and Online Store workflows;
  • AudreyAI support features;
  • PRO Marketplace workflows;
  • demo forms, contact forms, and onboarding forms;
  • support communications;
  • email, SMS, refill, transactional, and educational communications;
  • related integrations, tools, and services.

This Privacy Policy does not replace any applicable Business Associate Agreement (“BAA”) between Skin Type Solutions and an eligible covered entity or business associate. Where a BAA applies to Protected Health Information (“PHI”), the BAA controls with respect to PHI.


3 — Information We Collect

3.1 Provider, Practice, and Account Information

We may collect information from providers, practices, staff members, administrators, and authorized users, including:

  • name;
  • email address;
  • phone number;
  • job title;
  • practice name;
  • practice type;
  • business address;
  • website URL;
  • provider count;
  • location details;
  • practice settings;
  • professional credentials or license information, where applicable;
  • team member information;
  • login credentials and authentication information;
  • role and permission settings;
  • onboarding details;
  • support requests and communications.

3.2 Billing and Subscription Information

Skin Type PRO SaaS subscription billing is processed through Stripe or another payment processor designated by Skin Type Solutions.

We may collect or receive information related to:

  • subscription plan;
  • billing status;
  • payment method status;
  • invoice records;
  • subscription start, renewal, cancellation, upgrade, or downgrade details;
  • taxes;
  • failed payments;
  • billing contact information;
  • Stripe customer or subscription identifiers;
  • related subscription metadata.

We do not store full credit card numbers. Payment information is processed by Stripe or another designated payment processor according to its own terms and privacy practices.

3.3 Commission and Payout Information

Commission payouts, referral payouts, and eligible Online Store earnings may be processed through Stripe Connect or another payout provider designated by Skin Type Solutions.

We may collect, receive, or process information related to:

  • payout onboarding status;
  • payout account status;
  • business identity verification;
  • tax information;
  • banking or payout information handled by the payout provider;
  • commission calculations;
  • online order attribution;
  • refunds;
  • returns;
  • chargebacks;
  • disputes;
  • payout history;
  • minimum payout thresholds;
  • negative balances;
  • compliance review.

Some payout information may be collected directly by Stripe or another payout provider and processed according to its own terms and privacy practices.

3.4 Patient and Consumer Information

When patients or consumers interact with Skin Type PRO or Skin Type Solutions workflows, we may collect or receive:

  • name;
  • email address;
  • phone number, if provided;
  • shipping address;
  • billing information handled by Shopify, Shopify Payments, Stripe, or other payment providers;
  • skin type quiz responses;
  • Baumann Skin Type results;
  • skin concerns;
  • skincare goals;
  • product preferences;
  • product recommendations;
  • routine information;
  • Online Store shopping cart data;
  • order history;
  • refill history;
  • return or refund requests;
  • customer support communications;
  • abandoned checkout or incomplete signup information, where applicable;
  • communication preferences;
  • opt-out preferences.

3.5 AudreyAI and Consult Information

When AudreyAI or consult support features are used, we may collect or process:

  • provider or staff prompts;
  • consultation questions;
  • AI-generated responses;
  • patient context provided during the consult;
  • skin type explanations;
  • regimen explanations;
  • product education requests;
  • ingredient or usage questions;
  • workflow activity;
  • conversation metadata;
  • quality, safety, and performance logs.

AudreyAI is intended to support education, scripting, workflow efficiency, and provider-led decision-making. AudreyAI does not replace professional judgment.

3.6 Technical and Usage Information

We may automatically collect technical and usage information, including:

  • IP address;
  • browser type;
  • device type;
  • operating system;
  • referring URLs;
  • pages visited;
  • feature interactions;
  • log files;
  • authentication activity;
  • cookies and similar technologies;
  • analytics events;
  • error logs;
  • session information;
  • approximate location derived from IP address;
  • fraud-prevention and security signals.

4 — How We Use Information

We use information to operate, secure, personalize, improve, and support Skin Type PRO and related Skin Type Solutions services.

4.1 Platform Services

We may use information to:

  • create and manage provider and practice accounts;
  • authenticate users;
  • manage roles and permissions;
  • administer subscriptions;
  • support onboarding;
  • operate the Baumann Skin Type quiz;
  • generate skin type results;
  • generate personalized skincare routines;
  • support provider-led consults;
  • provide AudreyAI support features;
  • manage Online Store workflows;
  • support PRO Marketplace access;
  • provide reporting and analytics;
  • maintain practice settings and preferences.

4.2 Online Store Transactions and Fulfillment

We may use information to:

  • operate patient-facing Online Store workflows;
  • process orders through Shopify checkout;
  • coordinate payment authorization through payment providers;
  • calculate taxes and shipping where applicable;
  • fulfill orders;
  • send order confirmations;
  • handle returns and refunds;
  • respond to customer support requests;
  • manage damaged, incorrect, missing, or delayed items;
  • support refill workflows;
  • calculate practice commissions;
  • reconcile refunds, returns, chargebacks, disputes, and payout adjustments.

4.3 Billing, Payments, and Payouts

We may use information to:

  • process SaaS subscriptions through Stripe;
  • manage invoices and billing records;
  • process subscription renewals, cancellations, upgrades, or downgrades;
  • support Stripe Connect or other payout provider onboarding;
  • calculate and pay eligible commissions;
  • verify business, tax, and payout information;
  • comply with tax, accounting, payment processor, and legal obligations.

4.4 Communications

We may use information to send:

  • account notices;
  • subscription notices;
  • billing notices;
  • platform updates;
  • security notices;
  • order confirmations;
  • shipping updates;
  • return/refund communications;
  • refill reminders;
  • routine reminders;
  • patient education;
  • product-related communications;
  • abandoned checkout reminders, where permitted;
  • marketing communications, where permitted;
  • support responses.

You may opt out of marketing communications as described in those communications. Transactional, security, legal, billing, and order-related communications may still be sent where necessary.

4.5 Security, Fraud Prevention, and Compliance

We may use information to:

  • protect accounts and platform security;
  • monitor suspicious activity;
  • prevent fraud;
  • enforce Terms of Service;
  • investigate misuse;
  • comply with legal obligations;
  • respond to legal requests;
  • support HIPAA-related obligations where applicable;
  • maintain audit logs;
  • detect technical issues;
  • improve reliability and performance.

4.6 Analytics and Improvement

We may use aggregated, de-identified, anonymized, or statistical information to:

  • improve the platform;
  • improve workflows;
  • improve product recommendations;
  • analyze usage trends;
  • improve onboarding and support;
  • understand product and refill behavior;
  • enhance security and performance;
  • develop new features.

We do not use aggregated or de-identified information to identify individual patients or practices.


5 — HIPAA and Healthcare Data

Skin Type Solutions serves healthcare and aesthetic practices, and certain information processed through the platform may be subject to HIPAA depending on the customer, workflow, and use case.

A Business Associate Agreement is available for eligible customers and applicable use cases where Skin Type Solutions creates, receives, maintains, or transmits PHI on behalf of a covered entity or business associate.

Where a BAA applies:

  • the BAA controls with respect to PHI;
  • we use appropriate administrative, technical, and physical safeguards;
  • we use and disclose PHI only as permitted by the BAA, Terms of Service, and applicable law;
  • providers and practices remain responsible for their own HIPAA compliance, patient notices, consent practices, and privacy obligations.

Not all information collected through Skin Type PRO is PHI. For example, website analytics, demo form submissions, subscription billing records, Stripe payout onboarding, Shopify checkout data, and general business contact information may be processed outside the BAA depending on the context.


6 — How We Share Information

We do not sell patient data or practice data.

We may share information only as reasonably necessary to operate, support, secure, or improve the Services, or as otherwise described in this Privacy Policy.

6.1 Service Providers and Subprocessors

We may share information with trusted third-party service providers and subprocessors that help us operate the platform and related services, including:

  • cloud hosting providers;
  • database providers;
  • authentication providers;
  • payment processors, including Stripe;
  • payout providers, including Stripe Connect;
  • ecommerce and checkout providers, including Shopify;
  • shipping and fulfillment providers;
  • tax calculation providers;
  • email providers;
  • SMS providers;
  • analytics providers;
  • security tools;
  • customer support tools;
  • AI model providers;
  • infrastructure providers;
  • professional advisors.

These providers may process information only as needed to provide services to us or as otherwise permitted by their agreements and applicable law.

6.2 Practices and Providers

Patient information may be shared with or made available to the practice, provider, location, or authorized users associated with the patient’s quiz, routine, consult, or Online Store workflow.

6.3 Payment, Checkout, and Payout Providers

Subscription billing may be processed through Stripe.

Commission payouts may be processed through Stripe Connect.

Patient Online Store transactions may be processed through Shopify checkout, Shopify Payments, Stripe, card networks, banks, fraud-prevention providers, tax providers, and related payment or checkout services.

These providers may collect and process payment, identity, banking, tax, fraud-prevention, and transaction information according to their own terms and privacy policies.

6.4 Legal, Compliance, and Safety

We may disclose information when necessary to:

  • comply with applicable law;
  • respond to subpoenas, court orders, or lawful requests;
  • protect our rights, property, users, providers, practices, patients, or the public;
  • investigate fraud, security incidents, abuse, or Terms violations;
  • enforce agreements;
  • comply with payment processor, card network, brand, vendor, or regulatory requirements.

6.5 Business Transfers

We may disclose information in connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar business transaction, subject to appropriate confidentiality and legal protections.


7 — Cookies and Tracking Technologies

We use cookies, pixels, tags, analytics tools, and similar technologies to operate and improve our websites and services.

7.1 Essential Cookies

Essential cookies are required for login, authentication, security, checkout, account settings, and platform functionality.

7.2 Analytics Cookies

Analytics cookies help us understand website and platform usage, improve performance, and troubleshoot issues.

7.3 Preference Cookies

Preference cookies remember settings and preferences to improve the user experience.

7.4 Marketing and Advertising Tools

Where used, marketing or advertising tools may help us understand campaign performance, website engagement, and conversion activity. These tools may use cookies, pixels, or similar technologies.

You may be able to manage cookies through your browser settings or through cookie controls made available on the website.


8 — Patient Communications and Consent

The Services may support email, SMS, refill reminders, routine reminders, order notifications, patient education, abandoned checkout reminders, and other communications.

Practices and providers are responsible for obtaining and maintaining any consents required for patient communications initiated by the practice or sent on the practice’s behalf.

Patients may opt out of marketing communications using the instructions provided in those communications. Transactional, security, order-related, legal, and service-related communications may still be sent where necessary.

For patient Online Store orders, support communications related to orders, fulfillment, returns, refunds, damaged items, incorrect items, and product support may be handled by Skin Type Solutions.


9 — Data Security

We use administrative, technical, and organizational safeguards designed to protect information.

These safeguards may include, where appropriate:

  • secure authentication;
  • role-based access controls;
  • encryption in transit;
  • encryption at rest where supported by applicable systems;
  • access logging;
  • session controls;
  • security monitoring;
  • incident response processes;
  • employee confidentiality obligations;
  • vendor review and contractual controls.

No system can guarantee absolute security. You are responsible for maintaining the confidentiality of your login credentials, using secure devices and networks, managing user access, and promptly removing access for former staff or unauthorized users.

If you believe your account or information has been compromised, contact us promptly.


10 — Data Retention

We retain information for as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, maintain records, prevent fraud, support accounting and tax obligations, and comply with any applicable BAA or Service Order.

Retention periods may vary based on the type of information and the context in which it was collected.

Examples include:

  • account information retained while the account is active;
  • billing and tax records retained as required for accounting, legal, and tax compliance;
  • order and fulfillment records retained as necessary for customer service, returns, chargebacks, disputes, and legal compliance;
  • support records retained as necessary to resolve issues and improve services;
  • analytics and usage data retained for platform improvement and security;
  • healthcare-related data retained in accordance with applicable law, the applicable BAA, and customer instructions where required.

Upon deletion or termination, we may delete, de-identify, aggregate, or anonymize information unless retention is required or permitted by law, contract, BAA, dispute resolution, fraud prevention, security, tax, accounting, or legitimate business purposes.


11 — Your Rights and Choices

Depending on your location and relationship with us, you may have rights to:

  • access personal information;
  • correct personal information;
  • delete personal information;
  • export or receive a copy of personal information;
  • object to or restrict certain processing;
  • opt out of certain marketing communications;
  • manage cookie preferences;
  • request information about our data practices.

To exercise rights, contact us using the contact information below. We may need to verify your identity and authority before fulfilling a request.

If you are a patient of a provider or practice using Skin Type PRO, certain requests involving healthcare records or PHI may need to be directed to your provider or practice.


12 — Children and Minors

The professional Skin Type PRO platform is designed for providers, practices, and authorized practice staff and is not intended for use by individuals under 18.

Patient-facing services are intended for adults or for minors only with parent or guardian consent and/or under the direction of a provider or practice.

We do not knowingly collect personal information from children under 13 without appropriate consent or legal basis. If we become aware that we have collected personal information from a child under 13 without appropriate consent or legal basis, we will take steps to delete such information where required.


13 — International Data Transfers

Our services are primarily hosted and operated in the United States. If you access the platform from outside the United States, your information may be transferred to, stored in, or processed in the United States or other locations where we or our service providers operate.

International use may require additional terms, consents, data processing agreements, or legal review. Unless otherwise agreed in writing, Skin Type PRO is designed primarily for U.S.-based practices and U.S.-based workflows.


14 — Third-Party Websites and Services

The Services may link to or integrate with third-party websites or services, including Shopify, Stripe, email providers, SMS providers, analytics tools, fulfillment partners, brand websites, and vendor websites.

We are not responsible for the privacy practices of third-party websites or services. Their terms and privacy policies govern their collection and use of information.


15 — Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, practices, technologies, legal requirements, or business operations.

When we make material changes, we may notify you by:

  • updating the “Last Updated” date;
  • posting a notice on the website or platform;
  • sending an email notice to registered account holders;
  • providing notice through the dashboard.

Your continued use of the Services after an updated Privacy Policy becomes effective means you accept the updated Privacy Policy, to the extent permitted by law.


16 — Contact Us

Privacy Questions

For privacy questions or requests, contact:

Privacy Officer: privacy@skintypesolutions.com

SaaS, Provider, Practice, Platform, Billing, or Technical Support

For Skin Type PRO SaaS subscription, provider, practice, dashboard, billing, onboarding, technical, or platform support:

Support: support@skintype.pro

Patient Online Store, Order, Fulfillment, Return, Refund, or Product Support

For patient Online Store order, fulfillment, return, refund, damaged item, incorrect item, shipping, or product support:

Support: support@skintypesolutions.com

Mailing Address

Skin Type Solutions
Privacy Department
Miami, FL 33101