Privacy Policy

1. Introduction

Maplet ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we process, use, store, and protect your information when you use the Maplet mobile application (the "App").

      Key point: Maplet's core features run entirely on‑device. We never store your personal data on our own servers.
    

Exception: Anonymous analytics and crash data are transmitted to Google's Firebase services, which act as our data processor solely for app‑improvement purposes.

2. Information We Process

2.1 Location Information (Local Processing Only)

Current Location – Shown on the map and used to calculate distances.
Saved Locations – Coordinates, address, and any notes you add.
Permissions – Requested only to:
- display your position
- calculate distances
- enable journey planning & reminders

All location data remains on your device and is never sent to Maplet servers.

2.2 User‑Generated Content (Local Storage / iCloud Sync)

Titles, notes, folders & categories for saved locations
Photos (stored locally and optionally synced via your iCloud Drive)
Voice notes (stored locally / iCloud)
Journey plans and checklists

2.3 App Usage Data (Anonymous)

Collected via Firebase Analytics and Firebase Crashlytics:

Screen‑flow and feature‑usage events (no personal identifiers)
Crash logs and stack traces
Performance metrics (e.g., launch time)

2.4 Device Information (Anonymous)

iOS device model & OS version
App version
Basic network status (online / offline)

3. Legal Bases for Processing (EU / UK GDPR)

Purpose	Legal Basis
Core app functions (location, saving places, iCloud sync)	Performance of a contract (providing the service you requested)
Anonymous analytics & crash diagnostics	Legitimate interests (maintaining and improving the App)
Push notifications & location services	Consent (granted via system prompts)

4. How We Use Your Information

4.1 Core Functionality (On‑Device)

Display your location, save places, calculate distances, plan journeys, and sync via iCloud.

4.2 App Improvement (Anonymous Off‑Device)

Analyse aggregated usage patterns to prioritise features.
Diagnose and fix crashes or performance issues.

4.3 Personalisation (On‑Device)

Remember your settings and customise the UI locally.

5. Data Storage & Sync

Storage Layer	What's Stored	Who Can Access It
Local (primary)	All personal data, photos, voice notes, preferences	Only you
iCloud (optional)	Same data, encrypted in transit & at rest by Apple	Only you (via Apple ID)
Firebase	Anonymous analytics & crash data	Maplet dev team via Google Firebase console

6. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data.

When you open a location in Apple Maps, Google Maps, Waze, etc., those apps handle your data under their own policies.

Third‑party policies for reference:

Apple: https://www.apple.com/legal/privacy/
Google / Firebase: https://policies.google.com/privacy

7. Your Privacy Rights

7.1 All Users

Manage permissions – Disable location or iCloud in iOS Settings.
Delete or export data – Built‑in options in the App Settings.

7.2 EU / UK Residents (GDPR)

Access & Portability – Request a copy of your data.
Rectification & Erasure – Ask us to correct or delete data (mostly stored locally; instructions provided).
Restriction & Objection – Limit or object to certain processing.
Supervisory Authority – Lodge a complaint with your local DPA.

7.3 California Residents (CCPA / CPRA)

Right to Know what categories of personal information we collect (only anonymous data).
Right to Delete personal information we hold.
Right to Correct inaccurate information.
Right to Opt‑Out of sharing for cross‑context behavioural advertising (we do not share).

To exercise any right, email gemshi@me.com

8. Data Security

On‑Device: iOS file‑system encryption & Secure Enclave.
iCloud: End‑to‑end encryption for eligible data; TLS in transit.
Firebase: TLS in transit; server‑side encryption at rest.
Access to Firebase projects is limited to authorised Maplet engineers.

9. Data Retention

Data Type	Retention Period
Local & iCloud data	Until you delete it or uninstall the App
Firebase Analytics	Up to 14 months (Google default)
Crashlytics traces	90 days

You may request earlier deletion of Firebase data via email.

10. Children's Privacy

We do not knowingly collect personal data from children under 13. If you believe such data has been provided, contact us and we will delete it promptly. Parents can monitor or disable location and iCloud usage in device settings.

11. International Transfers

Firebase servers may be located outside your country. Transfers rely on Google's EU Standard Contractual Clauses and other safeguards to ensure adequate protection.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated by:

Updating the "Last Updated" date above, and
Displaying an in‑app notice or requiring acceptance upon next launch.

13. Contact Us

Email: gemshi@me.com

For unresolved EU/UK matters you may contact your local Data Protection Authority.