We collect as little as we can, use it only for what you asked, and never sell it.

This is a plain-English summary. The full legal version lives below, but this summary is what we actually operate by.

Last updated · April 2026

Draft. This page is in pre-launch state — content is under legal review and may change before public launch. Send feedback to hi@thehairlibrary.com.

The short version

We collect your email and Norwood/budget/city details only when you ask us to connect you with a clinic or take the quiz.
Your contact info goes to the clinic you selected — plus up to 3 verified alternatives only if you explicitly opt in.
We never sell your data. Not to pharma, not to mailing lists, not to anyone.
We use standard analytics (Google Analytics or PostHog) to understand page usage. You can opt out via the cookie banner.
You can request deletion of everything we have about you at any time via privacy@thehairlibrary.com. We'll do it within 30 days.

Data we collect

From the quote request form: name, email, phone (optional), city, Norwood stage, budget range, timeline, procedure of interest, and any message you wrote.
From the quiz: Norwood stage, budget, city, procedure preference, timeline, priorities. We save this so you can come back to your results.
From your account (if you create one): email and a random anonymous patient code (e.g., PATIENT-4192). Never your real name.
From your device: standard server logs (IP, user agent, timestamp), and cookie-based analytics (subject to your consent).
From your journey tracking (if you publish one): photos are uploaded, automatically blurred to remove identifying features, and the original photo is deleted. Only the blurred version is kept.

How we share data

Clinics you chose receive your contact info when you submit a quote request.
Verified alternative clinics receive your contact info only if you explicitly opted in on the quote form, and only if your chosen clinic didn't respond within 48 hours.
Payment processors (Razorpay) handle subscription billing for clinics. We don't see or store credit card numbers.
Email delivery (Resend) sends transactional emails. They do not use your data for anything other than delivery.
Analytics vendors (PostHog, Google Analytics if you consented) receive pseudonymized usage data. No quote requests or quiz answers are sent to analytics.

We do not share your data with pharmaceutical companies, data brokers, or marketing lists. Ever.

Patient photos

If you publish a hair-restoration journey, you upload photos to a private Supabase Storage bucket. A server-side function blurs the photos before any public display, then deletes the raw originals. The raw photo never reaches the public internet. Blurred versions are served via a public CDN and are never personally identifiable.

Your rights

Access — email privacy@thehairlibrary.com and we'll send you everything we have within 30 days.
Deletion — same address, same timeline.
Correction — you can edit your profile directly, or email us.
Portability — we export your data as JSON on request.
Withdraw consent — anytime, with no cost.

Cookies

We use two categories of cookies: essential (required for login, form submission) and analytics (optional, helps us understand which pages work). You can accept or decline analytics via the banner. Declining doesn't break the site.

Children

The Hair Library is intended for adults (18+). We do not knowingly collect data from minors. If you believe a minor has used The Hair Library, email us and we'll delete their data immediately.

Changes to this policy

If we make material changes, we'll email users who have an account and post a changelog entry at least 30 days before the change takes effect.

Contact

Privacy questions: privacy@thehairlibrary.com. General support: hi@thehairlibrary.com.

The short version

We collect your email and Norwood/budget/city details only when you ask us to connect you with a clinic or take the quiz.

Your contact info goes to the clinic you selected — plus up to 3 verified alternatives only if you explicitly opt in.

We never sell your data. Not to pharma, not to mailing lists, not to anyone.

We use standard analytics (Google Analytics or PostHog) to understand page usage. You can opt out via the cookie banner.

You can request deletion of everything we have about you at any time via privacy@thehairlibrary.com. We'll do it within 30 days.

Data we collect

From the quote request form: name, email, phone (optional), city, Norwood stage, budget range, timeline, procedure of interest, and any message you wrote.

From the quiz: Norwood stage, budget, city, procedure preference, timeline, priorities. We save this so you can come back to your results.

From your account (if you create one): email and a random anonymous patient code (e.g., PATIENT-4192). Never your real name.

From your device: standard server logs (IP, user agent, timestamp), and cookie-based analytics (subject to your consent).

From your journey tracking (if you publish one): photos are uploaded, automatically blurred to remove identifying features, and the original photo is deleted. Only the blurred version is kept.

How we share data

Clinics you chose receive your contact info when you submit a quote request.

Verified alternative clinics receive your contact info only if you explicitly opted in on the quote form, and only if your chosen clinic didn't respond within 48 hours.

Payment processors (Razorpay) handle subscription billing for clinics. We don't see or store credit card numbers.

Email delivery (Resend) sends transactional emails. They do not use your data for anything other than delivery.

Analytics vendors (PostHog, Google Analytics if you consented) receive pseudonymized usage data. No quote requests or quiz answers are sent to analytics.

We do not share your data with pharmaceutical companies, data brokers, or marketing lists. Ever.

Patient photos