Dermalytics API Logo
Dermalytics API

Privacy Policy

Last updated: January 16, 2026

1. Introduction

Welcome to Dermalytics API ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our API services and website.

2. Information We Collect

2.1 Information You Provide

  • Email address (for waitlist signups and account creation)
  • Contact information (when you reach out to us)
  • Payment information (processed securely through third-party payment processors)
  • API usage data and preferences

2.2 Automatically Collected Information

  • IP address and location data
  • Browser type and version
  • Device information
  • Usage patterns and API call logs
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our API services
  • Process transactions and send related information
  • Send you technical notices, updates, and support messages
  • Respond to your comments, questions, and requests
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: We may share information with trusted third-party service providers who assist us in operating our services
  • Legal Requirements: We may disclose information if required by law or in response to valid legal requests
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred
  • With Your Consent: We may share information with your explicit consent

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Your Rights (GDPR & Data Protection)

If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdictions with data protection laws, you have the following rights:

  • Right of Access: Request a copy of your personal data we hold
  • Right to Rectification: Correct inaccurate or incomplete information
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing of your personal data for certain purposes
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise these rights, please contact us at [email protected]. We will respond within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze site usage, and assist in marketing efforts. For detailed information about our cookie practices, please see our Cookie Policy.

You can manage your cookie preferences through our cookie banner or browser settings. Note that disabling certain cookies may impact website functionality.

8. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. When we no longer need your data, we will securely delete or anonymize it.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your data.

11. Data Controller Information

For users in the EEA, the data controller is Dermalytics API. If you have questions or wish to exercise your rights, contact our Data Protection Officer at [email protected].

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a prominent notice on our website. The "Last updated" date at the top indicates when changes were last made.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

For EU users, you also have the right to lodge a complaint with your local data protection authority. A list of EU data protection authorities can be found at https://edpb.europa.eu.