Privacy Policy

Hair Wellness Lab by Wynn Essentials ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our platform at hairwellnessslab.com.

By using Hair Wellness Lab, you agree to the terms of this Privacy Policy.

We may collect the following types of information:

• — Email address — collected when you create an account or subscribe to premium.
• — Quiz responses and analysis inputs — your answers to hair health questions, including hair type, porosity, and routine details.
• — Journal entries and check-in data — entries you create voluntarily in the Crown Journal and Weekly Check-In tools.
• — Subscription and billing information — processed securely through Stripe. We do not store full payment card details.
• — Scalp health logs and shedding logs — entries you create voluntarily in the Scalp Health Log and Crown Shedding Log tools.
• — Community content — posts, replies, and interactions you create in the Crown Community.
• — Profile information — display name, avatar, and other details you add to My Crown Profile.
• — Direct messages — messages you send and receive through Crown Mail.
• — Usage data — general information about how you interact with the platform, such as pages visited, tools used, and scroll depth.

We use your information to:

• — Provide and personalize your hair wellness experience.
• — Generate AI-powered insights and recommendations through Claude (by Anthropic).
• — Manage your account, subscription, and premium access.
• — Improve the platform over time.

Hair Wellness Lab uses Claude, an AI model developed by Anthropic, to analyze your inputs and generate personalized hair health insights, routines, and recommendations.

Your quiz responses and analysis inputs may be sent to Anthropic's API to generate these outputs. Please review Anthropic's privacy policy at anthropic.com for details on how they handle API data.

AI-generated outputs are for informational and educational purposes only. They do not constitute medical or dermatological advice.

Your account information, quiz results, journal entries, subscription status, and profile data are stored securely using Supabase. Supabase uses PostgreSQL and industry-standard encryption practices for data at rest and in transit.

For more information, see Supabase's privacy policy at supabase.com/privacy.

Hair Wellness Lab is hosted on Vercel. Vercel may collect standard server logs and performance metrics as part of hosting operations. For more information, see Vercel's privacy policy at vercel.com/legal/privacy-policy.

We do not sell your personal data to third parties. We do not share your data with advertisers.

We may share data with the following third-party services strictly to operate the platform:

• — Anthropic (Claude) — for AI analysis of your inputs.
• — Supabase — for authentication and data storage.
• — Stripe — for payment processing.
• — Vercel — for application hosting and delivery.

Hair Wellness Lab uses a small number of cookies and browser storage mechanisms to operate the platform:

• — Session cookies — set by Supabase to maintain your authenticated session. These are essential and cannot be disabled without signing you out.
• — Preference storage — we store your cookie consent preferences in your browser's localStorage under the key cookie_consent. This data stays on your device and is not sent to our servers.
• — Analytics cookies (optional) — used to understand how visitors use the platform. Only loaded if you grant analytics consent via the cookie banner.
• — Marketing cookies (optional) — used for newsletters and communications. Only active with your explicit consent.

No third-party advertising cookies are used. We do not participate in cross-site ad tracking networks.

On your first visit to Hair Wellness Lab, a cookie consent banner gives you full control over which optional cookie categories are active on your device:

• — Accept All — enables essential, analytics, and marketing cookies.
• — Essential Only — keeps only the cookies required for the platform to function.
• — Manage Preferences — lets you individually toggle analytics and marketing categories.

Your consent is stored in your browser and timestamped. You can update your preferences at any time by clearing localStorage for this site, which will cause the banner to reappear on your next visit.

You may request to:

• — Access the personal data we hold about you.
• — Correct inaccurate data.
• — Delete your account and associated data.
• — Withdraw consent to data processing where applicable.

You have the right to permanently delete your Hair Wellness Lab account and all associated data at any time.

Deletion removes your profile, crown journal entries, quiz results, scalp logs, shedding logs, weekly check-in history, community posts and comments, and all other data linked to your account. This action is irreversible — we are unable to recover your data after the account is removed.

You can initiate account deletion from your Settings page or from Security Settings. You will be asked to type a confirmation phrase before deletion proceeds.

If you hold a premium subscription, it is canceled at the time of account deletion. Unused billing time is not refunded. For billing concerns, contact us directly.

We retain your personal data for as long as your account is active or as needed to provide the service. You may request deletion at any time — see “Account Deletion” above.

When an account is deleted, all user-linked application data (profile, journal entries, quiz results, check-ins, community posts) is removed immediately from our active database. Supabase infrastructure backups may retain encrypted copies of data for up to 7 days after deletion before those backups expire naturally. We do not use backups to restore deleted user data.

Inactive accounts (no login for 24+ months) may be flagged for deletion review. We will send a notice to the registered email address before taking any action on inactive accounts.

Stripe retains billing records as required by financial regulations, independent of account deletion. This data is governed by Stripe's own retention policies.

We maintain technical and organizational measures designed to protect personal information from unauthorized access, disclosure, alteration, or destruction.

If a breach affecting personal information is discovered, affected users will be notified as required by applicable law.

To report a security concern, see our Security page for responsible disclosure guidelines.

Hair Wellness Lab is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will promptly remove it.

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us at hello@hairwellnesslab.com.

• — Terms of Service
• — Data Retention Policy
• — Refund Policy
• — DMCA & Copyright Policy
• — Vulnerability Disclosure Policy

If you have questions about these terms or policies, please contact us at: