Privacy Policy

Last Updated: January 22, 2025

Introduction

Invisible String ("App," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application on iOS or Android.

Key Point: Your photos never leave your device. All processing happens locally on your phone.

Information We Collect

Information You Provide

  • Your Name: Used to identify you to your partner within the App
  • Meeting Date: The date you met your partner, used to filter photo matching
  • Partner Connection: Information about your connected partner (name, pairing data)

Information Collected Automatically

  • Photo Metadata: When you grant photo library access, we scan your photos' metadata (location coordinates and timestamps) on your device. We do not access, view, or store your actual photos.
  • Device Information: Basic device identifiers for app functionality

Information Shared with Your Partner

When you choose to share data with your partner, the following is exchanged:

  • Photo location coordinates (latitude/longitude)
  • Photo timestamps
  • Your name
  • Thumbnail images of photos at matched locations

How We Use Your Information

We use your information solely to:

  1. Find Near-Misses: Compare your photo locations with your partner's to identify times you were in the same place
  2. Generate Stories: Create shareable story cards showing your near-miss encounters
  3. Improve the App: Understand usage patterns (without accessing personal data)

Data Storage and Security

On-Device Processing

  • All photo scanning occurs entirely on your device
  • Your photo library is never uploaded to any server
  • Near-miss calculations happen locally

Data Encryption

  • Data shared between partners is encrypted end-to-end
  • Only you and your partner can decrypt your shared location data
  • We cannot read or access your encrypted data

Partner Data Transfer

  • We do not operate our own servers or databases
  • On iOS: When using invite code pairing, encrypted data is temporarily stored in Apple's iCloud (CloudKit) for up to 24 hours, then automatically deleted. When using nearby pairing, data transfers directly between devices with no cloud involvement.
  • On Android: You export your data as a file and share it directly with your partner using your preferred method (email, messaging apps, AirDrop, etc.). No data passes through our servers—you control how and when the file is transferred.
  • No permanent records of your data exist outside your device

Data Sharing

We do NOT:

  • Sell your personal information
  • Share your data with advertisers
  • Use your photos for any purpose other than metadata extraction
  • Store your data on external servers
  • Access your data without your explicit action

We MAY share information:

  • With your connected partner (only the data you explicitly choose to share)
  • If required by law (though we have minimal data to provide)
  • To protect our rights or safety, or those of others

Third-Party Services

iOS Platform Services

  • App Store: Handles app distribution and payment processing
  • StoreKit: Manages in-app purchases
  • Photos Framework: Provides access to photo metadata (with your permission)
  • CloudKit: Used for temporary data transfer when pairing via invite code. Encrypted data is automatically deleted after 24 hours.
  • MapKit: Displays maps and converts coordinates to place names

Android Platform Services

  • Google Play Store: Handles app distribution and payment processing
  • Google Play Billing: Manages in-app purchases
  • MediaStore: Provides access to photo metadata (with your permission)
  • Google Maps SDK: Displays maps and converts coordinates to place names

Analytics (Both Platforms)

We use TelemetryDeck, a privacy-focused analytics service, to understand how the app is used. TelemetryDeck collects anonymous usage events (such as "scan started" or "story viewed") without any personal information, device identifiers, or tracking across apps. No advertising networks or data brokers receive your information.

Your Rights and Choices

Access and Control

You can:

  • View Your Data: See all stored data within the App
  • Delete Your Data: Use "Start Over" in Settings to delete all local data
  • Revoke Photo Access: Change permissions in your device's Settings app
  • Disconnect from Partner: End the connection and remove shared data

Data Portability

Your data exists only on your device. Uninstalling the App removes all data.

Opt-Out

You may stop using the App at any time. Deleting the App removes all associated data from your device.

Children's Privacy

The App is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Data Retention

  • Local Data: Stored on your device until you delete it or uninstall the App
  • Shared Data: Exists only on your device and your partner's device
  • Server Data: We do not retain any personal data on servers

Security Measures

We implement appropriate security measures including:

  • End-to-end encryption for partner data sharing
  • Local-only processing of sensitive photo data
  • No transmission of actual photo content
  • Secure temporary channels for pairing

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of changes by:

  • Updating the "Last Updated" date
  • Posting a notice in the App for material changes

Your continued use of the App after changes constitutes acceptance of the updated policy.

California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect
  • Request deletion of your personal information
  • Not be discriminated against for exercising your privacy rights

Since we process data locally and don't maintain databases of user information, most CCPA requests are satisfied by the App's built-in data deletion features.

International Users

The App processes data locally on your device regardless of your location. No data is transferred internationally through our services.

Summary

Data Type Collected Stored on Our Servers Shared
Your Photos No (metadata only) No No
Photo Locations Yes (on device) No With partner only
Photo Timestamps Yes (on device) No With partner only
Your Name Yes No With partner only
Payment Info No (Apple/Google handles) No No
Usage Analytics Yes (anonymous events) No (sent to TelemetryDeck) No

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: support@invisiblestringapp.com