Privacy Policy

Last updated: 20 June 2026

Palora (“we”, “us”) is a personal colour-analysis app for iPhone. We built Palora to be private by design: your analysis happens for you, not for us. This policy explains what we process, why, and the choices you have. It applies to the Palora app and this website.

1. Who is responsible

The data controller is José Luis Saorín (independent developer), Spain. For any privacy question or request, contact [email protected].

2. The short version

You do not need an account, name or email to use Palora.
Your photos are processed only to generate your analysis. They are not stored on our servers and are never used to train AI models.
Your results live on your device.
We don't run advertising trackers and we don't sell your data.

3. What we process, and why

Photos you provide

When you run an analysis, the selfies (or garment photos) you choose are sent over an encrypted connection to our analysis provider to produce your colour and feature read. They are processed transiently for that single request and are not retained by us afterwards. We do not build a photo library, a face database, or a biometric identifier from your images. Legal basis (GDPR): performance of the service you requested, and your consent when granting camera/photo access.

Your answers

Optional questionnaire answers (for example jewellery preference, how your skin reacts to sun) refine your result. They are stored locally on your device. Legal basis: performance of the service.

Purchases

If you subscribe to Premium, the purchase is handled by Apple. We use RevenueCat to verify your subscription status using an anonymous app-generated identifier. We never see your card or full payment details. Legal basis: performance of a contract.

Security & abuse prevention

To stop our AI service from being abused, the app uses Apple's App Attest to confirm requests come from a genuine, unmodified copy of Palora. This does not identify you. Legal basis: our legitimate interest in keeping the service available and secure.

Diagnostics

We may process limited, non-identifying technical information (such as crash and performance data) to keep the app working. We do not use third-party advertising or cross-app tracking SDKs.

4. Who we share data with

We share data only with service providers acting on our instructions:

Google (Gemini API) — performs the AI analysis on the photo for that request. Under Google's API terms, this content is not used to train their models.
RevenueCat — manages subscription entitlements.
Apple — App Store distribution, payments and App Attest.

Some providers operate in the United States; such transfers are covered by Standard Contractual Clauses or equivalent safeguards. We do not sell personal information.

5. How long we keep it

Photos: processed transiently for your request, then discarded. Not stored by us.
Your results & answers: stored on your device until you delete them or uninstall the app.
Subscription status: kept as long as needed to provide Premium and meet legal/accounting duties.

6. Your rights

Depending on where you live (e.g. the EEA/UK under GDPR, or California under the CCPA), you may have the right to access, correct, delete, restrict or port your data, and to object to processing. Because most of your data lives only on your device, deleting your results in-app or uninstalling Palora removes it. For anything held by our providers, email [email protected] and we'll help. You may also complain to your local data-protection authority.

7. Children

Palora is not directed to children under 13 (or the minimum age in your country) and we do not knowingly collect their data.

8. Changes

We'll update this page when our practices change and revise the “last updated” date above. Material changes will be surfaced in the app.

9. Contact

Questions or requests: [email protected].