Data Protection and Compliance

This page collects an upper level information covering legal aspects of using Haut.AI services as a client.

Haut.AI Services are GDPR-compliant

We act as a data processor, and our clients remain the data controllers. We process data based solely on the client's instructions and in accordance with GDPR regulations.

If you want to learn more about GDPR, check out this website: GDPR.

Client Data

Client is a data owner

The client, as the data controller, retains ownership of all data and photos. Haut.AI acts solely as a data processor, handling the data based on the client's instructions.

Haut.AI does not require consent forms, but we do require that a customer guarantee that all uploaded data was obtained lawfully, is compliant with data protection and electronic communications laws, and has all the necessary consents to process personal data.

Data retention period

Haut.AI stores the uploaded data for as long as the Data Processing Agreement (DPA) between the client and Haut.AI is not terminated. Clients can control data retention and remove data at any time.

  • For clients with an Advanced+ subscription plan, the minimal period of data retention is 24 hours. It can be configured in settings for Skin Consultant App, see Photo retention

  • For clients with a Professional subscription plan, the data can be deleted as soon as the image has been processed by all Algorithms Applications, attached to the Datasets. See Create dataset API.

Upon DPA termination, Haut.AI can perform one of 2 actions:

  • release all the data to the client

  • delete all the data per the client's instructions

To request any of these actions, please reach out directly to your customer success manager.

PreviousSet up OIDC SSONextService License Agreement (SLA) and Maintenance

Last updated

Was this helpful?