Effective date: August 30, 2025
Developer/Publisher: DEVLOFT LTD (“we”, “us”, “our”)
Contact: [email protected]
This Privacy Policy explains how our iOS apps (the “Apps”) collect, use, and share information. If you visit our website, see our separate Website Privacy Policy.
We comply with applicable laws, including GDPR/UK GDPR, CCPA/CPRA, and LGPD, where they apply to our processing.
This Policy applies to all App Store apps published by DEVLOFT LTD.
Each app may use different device permissions and data depending on its features. See Feature Modules below and the App Privacy section (nutrition label) on each App Store listing.
Account & profile (if applicable): name, email, username, avatar.
Content you upload: photos, images, text, preferences, feedback.
Support requests: messages and attachments sent to support.
Device & usage data: app version, device model, iOS version, language, time zone, app screens used, session duration, crash logs, diagnostics, and performance data.
Identifiers: app-scoped identifiers (e.g., Installation ID), push notification token.
Purchase data: product IDs, receipts/transaction IDs (handled by Apple; we never store full card data).
Sign in with Apple / social sign-in: basic account info you authorize.
Analytics/attribution: pseudonymous data about installs and engagement.
Subscription platform: customer info and entitlement status.
We do not intentionally collect sensitive categories (e.g., health, biometrics, precise geolocation) unless specifically required for a feature you enable (see Feature Modules).
Operate the apps: provide core features, maintain accounts, enable purchases and subscriptions. (Legal basis: contract/legitimate interests.)
Improve and secure: fix bugs, measure performance, detect/prevent abuse. (legitimate interests.)
Communicate with you: transactional emails (receipts, service notices). Marketing only with your consent where required. (consent/legitimate interests.)
Compliance: tax/accounting, legal requests, enforcement of terms. (legal obligation/legitimate interests.)
Where required (EEA/UK, some US states, Brazil), we rely on consent for optional analytics/advertising and for any feature using sensitive data (e.g., precise location).
Keep the modules you need; delete the rest.
Data: precise or approximate location; foreground and/or background location (if you grant “Always” or “While Using the App”).
Use: real-time sharing with people you explicitly authorize, showing your location on a map, routing/alerts, and safety features (e.g., arrival/departure).
Storage: [choose: ephemeral only / last known location kept for up to X hours/days] on Supabese to deliver the feature.
Sharing: visible only to members of groups/circles you join or invite; not shared with advertisers.
Your control: you can revoke at any time in iOS Settings → Privacy & Security → Location Services → [App] or in-app (“Stop Sharing”).
Important: You may not add or track a person without their knowledge and consent. Misuse may result in account restrictions.
Data: photos you choose; camera access to capture images in-app.
Use: generate designs, previews, or effects; allow saving/sharing.
Processing: images may be sent to OpenIA strictly to fulfill your request and not used for training.
Retention: stored up to 30 days, then deleted/anonymized.
Your control: revoke in iOS Settings → Privacy & Security → Photos/Camera → [App]; delete your uploads in-app.
Data: names/emails/phone numbers only for inviting, with your explicit permission.
Use: send invitations; we don’t use contacts for other purposes.
Your control: revoke in iOS Settings → Privacy & Security → Contacts → [App].
Data: a push token to deliver notifications you opt into (e.g., alerts, reminders, invite updates).
Your control: disable in iOS Settings → Notifications → [App].
Use: voice search, commands, or recording within a feature you choose.
Storage: [e.g., on device / temporarily on server for transcription].
Apple IAP: Purchases are processed by Apple; we receive a transaction status and product identifiers.
Subscription management: We use RevenueCat to validate receipts and manage entitlements. They receive a unique app user ID, transaction data, and may collect diagnostics per their policy.
We do not store full payment card details.
We share data only as needed to operate the apps:
Service providers (processors): hosting/CDN, databases, AI processing, analytics, push notifications, crash reporting, subscription management, email delivery. They act under contract and follow our instructions.
Legal/safety: to comply with laws, respond to lawful requests, or protect rights, property, and safety.
Business transfers: if we are involved in a merger, acquisition, or asset sale, your data may transfer under this Policy.
We do not sell your personal information. If we ever engage in cross-context behavioral advertising, we will provide a region-specific opt-out.
We keep personal data only as long as necessary for the purposes above, then delete or anonymize it.
Account data: until you delete your account.
Analytics/diagnostics: until you delete your account or provider default.
Location (if applicable): last location up to 24 hours.
Uploaded images (if applicable): up to 30 days.
Purchases/receipts: per legal/accounting obligations 7 years.
We implement technical and organizational measures appropriate to risk (encryption in transit, access controls, monitoring). No system is 100% secure, but we work to protect your data continuously.
Access/Correction/Deletion/Portability/Restriction/Objection/Withdraw Consent (GDPR/UK GDPR, LGPD, etc.)
CCPA/CPRA (California): right to know/access, correct, delete, and opt-out of sale/share of personal information; right to limit use of sensitive info; no discrimination for exercising rights.
How to exercise: use the in-app Account → Privacy → Data Request (if available) or email [email protected]. We may ask for information to verify your identity. If you use Sign in with Apple, you may also manage permissions in your Apple ID settings.
Permissions: revoke device permissions anytime via iOS Settings as described above.
Our apps are not directed to children under 13 (or under 16 in certain regions). We do not knowingly collect personal data from children. If you believe a child has provided data, contact [email protected] and we will take appropriate action.
If data is processed outside your country (including the EEA/UK), we use lawful transfer mechanisms (e.g., Standard Contractual Clauses) and additional safeguards where required.
We may update this Policy. We’ll update the “Effective date” and, when appropriate, notify you in-app. Continued use means you accept the updated Policy.
Email: [email protected]
Address: UK, London