# Privacy Policy for Collection Vault App
—
**Last Updated:** 11/24/2025
—
## Introduction
Welcome to Collection Vault (“we,” “our,” or “us”). We are committed to protecting your privacy and providing a transparent experience. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application.
**Key Points:**
– We don’t collect or store your personal data
– Your collections stay on your device
– No tracking or analytics
– No advertisements
– No third-party data sharing
—
## Information We Collect
### Information You Provide
**Collection Data:**
– Collection names, items, and details you create
– Photos you add to items
– Custom fields and notes you enter
– Purchase prices and estimated values you input
**Storage:** All this information is stored locally on your device only.
**We Do NOT Collect:**
– Your name or personal information
– Email address or contact information
– Location data
– Browsing history
– Search history
– Device identifiers for tracking
### Automatically Collected Information
**Camera & Photos:**
– When you use the barcode scanner, we access your camera
– When you add photos to items, we access your photo library
– These permissions are only used when you actively choose to use these features
– We don’t store, transmit, or share these beyond your device
**Subscription Information:**
– Apple manages all subscription information through StoreKit
– We receive confirmation of your subscription status (active/expired)
– We don’t receive your payment information
– All billing is handled by Apple
**We Do NOT Collect:**
– IP addresses
– Device identifiers (IDFA)
– Usage analytics
– Crash reports (unless you choose to send them via iOS)
—
## How We Use Your Information
**On-Device Use Only:**
All your collection data is:
– Stored locally on your device
– Never transmitted to our servers (we don’t have servers!)
– Not accessible to us or anyone else
– Under your complete control
**Barcode Scanner:**
When you use the barcode scanner:
– We send the barcode number to UPC Item DB API
– This is used to retrieve product information
– No personal information is sent
– This only happens when you actively scan a barcode
**eBay Market Values:**
When you request market value for an item:
– We send the item name/description to eBay API via RapidAPI
– This is used to retrieve sold listing prices
– No personal information is sent
– This only happens when you have Premium and view an item
**We Don’t:**
– Track your behavior
– Collect analytics about app usage
– Share your data with third parties
– Sell your data to anyone
– Profile you for advertising
—
## Data Sharing and Disclosure
**We Don’t Share Your Data. Period.**
Your collection data never leaves your device unless you explicitly:
– Export it yourself (PDF/CSV)
– Share it using iOS Share Sheet
– Sync it via iCloud (coming soon – will be optional)
**Third-Party Services:**
We use these services with minimal data:
– **Apple StoreKit:** For subscription management (Apple’s privacy policy applies)
– **UPC Item DB:** For barcode lookups (only barcode numbers sent)
– **eBay/RapidAPI:** For market values (only item descriptions sent)
**We Never:**
– Sell data to advertisers
– Share data with data brokers
– Use data for marketing
– Track you across other apps or websites
—
## Your Rights and Choices
**Data Control:**
– **View:** All your data is visible in the app
– **Export:** Export your collections anytime (PDF/CSV)
– **Delete:** Delete items or collections anytime
– **Uninstall:** Deleting the app removes all local data
**Permissions:**
You can control app permissions at any time:
– **Camera:** Settings → Collection Vault → Camera
– **Photos:** Settings → Collection Vault → Photos
Denying permissions only limits those features – the app remains fully functional.
**Subscription Management:**
– Manage or cancel: Settings → Your Name → Subscriptions
– All handled by Apple
– Cancel anytime (subscription remains active until period ends)
—
## Data Security
**How We Protect Your Data:**
**On-Device Storage:**
– Your data is protected by iOS security
– Encrypted at the iOS level
– Only accessible when device is unlocked
**No Cloud Storage (Currently):**
– We don’t store your data on servers
– No accounts means no account breaches
– Your data can’t be hacked from us (because we don’t have it!)
**Future iCloud Sync:**
– Will be optional (opt-in)
– Encrypted using your iCloud account
– Subject to Apple’s iCloud privacy policy
**Best Practices:**
– Keep your device password protected
– Enable device encryption (iOS default)
– Regularly back up your device
—
## Children’s Privacy
Collection Vault is rated 4+ and safe for all ages. We don’t knowingly collect personal information from anyone, including children under 13.
If you believe a child has used the app, please contact us. However, since we don’t collect data, there’s nothing for us to delete.
—
## International Users
**Data Location:**
Your data stays on your device, regardless of where you’re located.
**GDPR Compliance (EU Users):**
Under GDPR, you have rights to:
– Access your data: It’s all in the app
– Rectify data: Edit it in the app
– Erase data: Delete it in the app
– Export data: Use our export features
– Object to processing: We don’t process your data remotely
Since we don’t collect or process personal data, most GDPR obligations don’t apply, but we respect all privacy rights.
**California Privacy Rights (CCPA):**
– We don’t sell personal information
– We don’t collect personal information to sell
– No opt-out needed (there’s nothing to opt out of!)
—
## Changes to This Policy
We may update this Privacy Policy to:
– Reflect changes in the app
– Comply with legal requirements
– Improve clarity
**How You’ll Know:**
– Updated “Last Updated” date at top
– Notice in app (for significant changes)
– Email notification (if we add email collection)
**Your Continued Use:**
Using the app after changes means you accept the updated policy.
—
## Third-Party Links and Services
**External Links:**
The app may contain links to:
– Support website
– Social media
– Third-party websites
We’re not responsible for their privacy practices. Review their policies separately.
**Third-Party Services We Use:**
**1. Apple StoreKit** (Subscriptions)
– Privacy Policy: https://www.apple.com/legal/privacy/
– Purpose: Handle subscription payments
– Data Shared: Subscription status only
**2. UPC Item DB** (Barcode Lookups)
– Website: https://www.upcitemdb.com
– Purpose: Product information from barcodes
– Data Shared: Barcode numbers only
**3. RapidAPI / eBay** (Market Values)
– Website: https://rapidapi.com
– Purpose: Average selling prices
– Data Shared: Item descriptions only
—
## Data Retention
**How Long We Keep Data:**
We don’t keep any data! It’s all on your device.
**On Your Device:**
– Data remains until you delete it
– Uninstalling the app deletes all data
– Deleting items/collections removes them immediately
**Third-Party Services:**
– Barcode lookups: Immediately discarded after response
– Market values: Immediately discarded after response
– Subscription status: Managed by Apple
—
## Do Not Track
Some browsers support “Do Not Track” signals. Since we don’t track you in the first place, these signals don’t apply to our app.
**We Don’t:**
– Track you across apps
– Use tracking pixels
– Place cookies (it’s a native app!)
– Build advertising profiles
—
## Contact Us
**Questions or Concerns?**
We’re here to help!
**Email:** timtruex@gmail.com
**Response Time:** Usually within 24 hours
**Mailing Address:**
Tim Truex
103 Markey St.
Bellville, OH 44813
USA
**Data Requests:**
Since we don’t collect your data, there’s nothing for us to provide. Your data is already on your device!
—
## Consent
By using Collection Vault, you consent to this Privacy Policy.
If you don’t agree with this policy, please don’t use the app. (Though honestly, we think this is one of the most privacy-friendly policies you’ll find!)
—
## Transparency Commitment
We believe in radical transparency about privacy. That’s why:
**We Don’t Have:**
– User databases
– Analytics dashboards
– User profiles
– Data mining operations
– Third-party integrations for ads
**We Do Have:**
– A simple app that respects your privacy
– Local-first architecture
– Minimal cloud dependencies
– Your best interests in mind
—
## Legal Basis for Processing (GDPR)
For EU users, our legal basis for any data processing:
**Contract:**
– Providing the app service you’ve requested
**Legitimate Interest:**
– Improving the app
– Preventing fraud
– Security
But remember: We barely process any data at all!
—
## Security Incident Response
In the unlikely event of a security breach:
1. We’d notify affected users within 72 hours
2. We’d report to relevant authorities if required
3. We’d take immediate action to fix the issue
**Current Risk:** Nearly zero, since your data never leaves your device!
—
## Open Source & Transparency
We believe in transparency. If you want to verify our privacy claims:
– Code is auditable
– No hidden tracking
– No obfuscated analytics
**Trust, but verify!**
—
## Questions About This Policy?
If anything is unclear or you have questions:
– **Email us:** timtruex@gmail.com
– **We’ll respond:** Within 24 hours
– **We’ll clarify:** Any confusing parts
**We want you to understand how we protect your privacy!**
—
## Summary (TL;DR)
**The Short Version:**
✅ Your data stays on your device
✅ We don’t collect personal information
✅ No tracking or analytics
✅ No advertisements
✅ No data selling
✅ You control everything
✅ Export your data anytime
✅ Delete anytime
✅ Privacy-first design
**That’s it!** We built an app that respects your privacy because that’s what we’d want as users.
—
**Thank you for trusting Collection Vault with your collections!** 🔒
—
## Document History
| Version | Date | Changes |
|———|——|———|
| 1.0 | 11/24/2025 | Initial privacy policy |
—
https://thevelvetbootleggers.com/collectionvaultprivacy