Privacy Policy

1) Who we are & how to reach us

This Privacy Policy explains what data our mobile application (the “App”) collects, why we collect it, how we use it, and the rights you have.
Appcreations Ltd (“we”, “us”, “our”) is the developer and publisher of the App and the data controller for the App.

Our websites are catsense.app and app-creations.net. You can access this Privacy Policy anytime in the App (Settings ▸ Privacy) and on our websites.
Our App Store App Privacy disclosure reflects the same practices described here.

We operate globally, including in the EEA/UK/Brazil, and process personal data in accordance with the GDPR and other applicable laws.

2) What we collect

Chat Data
Text you send to the in-App AI assistant and the assistant’s replies. Do not include personal or confidential information in chats. Our AI provider may process your prompts to generate responses. Processed only to deliver real-time responses and core functionality, then handled per Retention below.

Technical & Usage Data
Device model, operating-system version, language/region settings, transient IP address (not used to derive location), timestamps, screens viewed/taps, crash logs, and other diagnostic/performance metrics.

Identifiers
A single internal device-scoped identifier (a random string of letters and numbers) used to operate features (e.g., preferences and fraud-prevention).
We do not access the IDFA and we do not show the iOS App Tracking Transparency (ATT) prompt.

Subscription & Purchase Metadata
If you buy a subscription via the app store, we receive non-personal transaction metadata (purchase receipt, an anonymous transaction ID, subscription status, renewal date). We do not collect or store payment card or Apple ID account details. Used to enable premium features, restore purchases, and support.

Support communications
If you contact us by email (outside the App), you may provide an email address and message content. We use this only to respond to your inquiry and retain it for a limited period necessary to handle the request. Providing an email is optional and will never be shared or used for commercial purposes.

Not collected
We do not collect your name, phone number, physical address, or email address within the App. We also do not collect contacts, photos, audio, precise or approximate location, or health data. We do not require registration and do not create user accounts.

3) Third-party service providers

We use independent providers who process limited data on our behalf to run the App:

Cloud AI processing (to generate responses from your Chat Data).

Subscription management (to verify app-store receipts and sync entitlements).

Analytics & attribution (to measure installs and in-App events using privacy-preserving attribution).

Each provider is bound by contract to (i) process only under our instructions, (ii) apply appropriate security, and (iii) not use data for their own marketing or unrelated purposes.

4) How we use data & your choices

Deliver the service — provide AI interactions and maintain subscription entitlements.

Improve performance — analyze aggregated usage patterns, diagnose crashes, optimize reliability.

Secure the App — detect and prevent fraud, abuse, and security threats.

Marketing measurement (attribution) — measure installs and campaign performance using AdAttributionKit/SKAdNetwork only (privacy-preserving attribution that does not use IDFA and does not require ATT).

Legal compliance — comply with law, enforce terms, and protect our rights.

We do not use push notifications at this time.

5) Legal bases (EEA/UK)

Performance of a contract; legitimate interests; legal obligation; consent (only for optional communications).

6) Data retention

We retain each data type only as long as needed for its purpose, after which it is deleted or irreversibly anonymized:

Chat Data — kept only as long as needed for real-time responses and short-term integrity.

Technical & Usage Data; Subscription/Receipt Metadata — up to 24 months.

Receipts / accounting records — statutory period.

Support emails — up to 90 days after closure.
Aggregated, de-identified metrics may be kept longer.

7) Disclosure of information

We disclose data only to service providers, for legal reasons, or in business transfers.
We do not otherwise share, sell, or rent personal data. We do not “sell” or “share” personal information as defined by the California Consumer Privacy Act (CPRA).

8) International transfers

Data may be processed outside your country (including EEA/UK/Brazil) with safeguards (Standard Contractual Clauses, adequacy decisions).

9) Children’s privacy

The App is not directed to children under 13 (or the age of digital consent in your country). We do not knowingly collect data from children.

10) Your rights

You may have the right to access, rectify, erase, restrict, object, or port your data, and to withdraw consent.

In-App Delete my data (no account)
This option resets your local app profile and related data. Trigger via Settings ▸ Delete my data.

This will:

Permanently erase residual Chat Data;

Remove or anonymize Technical & Usage Data linked to the internal identifier;

Disassociate device and identifier from subscription metadata.

Executed promptly, completed within 30 days, except minimal retention where legally required. (This resets data; we do not operate accounts.)

11) Security

Encryption in transit, least-privilege access, periodic security reviews.

12) Changes

We may update this Policy; updates are posted with a revised “Last Updated” date.

13) Contact

Questions or requests: privacy@catsense.app

Available in-app under Settings ▸ Privacy.

----------