Privacy Policy
How we handle your data in the app and on the web.
1. Introduction
We are very pleased about your interest in our iOS app "LensApp Pro" and our website. Data protection is a particularly high priority for us. Use of the app and website is generally possible without any indication of personal data, provided you do not register. If a data subject wishes to use special services of our company via our app, however, processing of personal data could become necessary.
2. Name and Address of the Controller
The controller within the meaning of the General Data Protection Regulation (GDPR), other data protection laws applicable in the Member States of the European Union and other provisions of a data protection nature is:
Fabian Littmann
Meyerhofstraße 29A
40589 Düsseldorf
Germany
E-Mail: Support@lensapp-pro.de
3. Collection of data when downloading the app
When downloading the app, the required information is transferred to the Apple App Store. This includes in particular your username, your e-mail address and the customer number of your account, the time of the download and the individual device identifier. We have no influence on this data collection and are not responsible for it. We only process this data to the extent necessary for downloading the app to your smartphone.
4. Collection and processing of user data in the app (Supabase)
a) Registration and Login
LensApp Pro requires the creation of a user account for the use of the core functions (saving and synchronizing lens evaluation matrices). Here we collect:
- Your e-mail address
- A password of your choice (transmitted encrypted and cannot be viewed by us)
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures.
b) App-related data (User Content)
In the course of using LensApp Pro, we store the data you enter to provide app functionality and cross-system synchronization. This includes:
- Your lenses (title, type, manufacturer, filter thread, optical properties)
- Your ratings (matrices, individual ratings per focal length and aperture)
- App-specific settings and profile information (e.g. user profiles, Pro status from the in-app purchase or subscription)
This data is kept secure and separate for each account. Other users do not have access to this data unless you explicitly share generated "LensCodes".
c) Our backend provider (Supabase)
For the database and authentication services of our app, we use Supabase, a Backend-as-a-Service (BaaS) from Supabase, Inc, 972 E 3200 N, Lehi, UT 84043, USA.
Supabase processes your data on our behalf based on a data processing agreement pursuant to Art. 28 GDPR. As part of the use of Supabase, data transfers to third countries outside the EU (in particular the USA) may take place. These transfers are based on the EU-US Data Privacy Framework (Adequacy Decision of the EU Commission of 10 July 2023) and additionally on the Standard Contractual Clauses of the EU Commission. You can view Supabase's privacy policy here: https://supabase.com/privacy.
5. Data Processing on This Website
a) Hosting by Vercel
This website is hosted externally. The host is Vercel Inc., 440 N Barranca Ave #4133 Covina, CA 91723, USA.
Vercel is a provider of cloud platform services. We use Vercel on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the most reliable presentation of our website. A data processing agreement pursuant to Art. 28 GDPR is in place with Vercel. Data transfers to the USA are based on the EU-US Data Privacy Framework (Adequacy Decision of the EU Commission of 10 July 2023) and additionally on the Standard Contractual Clauses of the EU Commission.
b) Server Log Files
Vercel automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
- IP address
This data is not merged with other data sources. This data is used for technical error analysis and the security of the infrastructure.
c) No Tracking Cookies & No Tracking
Privacy by Design (Art. 25 GDPR): This website does not set tracking cookies and does not use any analytical tools like Google Analytics or Facebook Pixel. We do not track your browsing behavior.
d) Local storage (localStorage)
For storing your preferred language selection (DE/EN), a strictly necessary entry is placed in your browser's localStorage (key: lensapp_lang). This entry contains no personal data and is not transmitted to our servers. The legal basis is § 25 (2) No. 2 TTDSG, as the storage is strictly necessary to provide the language switch you have explicitly requested. No consent is required. You can delete the entry at any time via your browser settings.
e) Fonts (self-hosted)
This website uses the typefaces "Inter", "Archivo", "Hanken Grotesk" and "IBM Plex Mono". All font files are served exclusively from our own server (or our processor Vercel). No connection to Google servers takes place; in particular, Google Fonts is not loaded from Google servers. Your IP address is not transmitted to Google.
6. In-app purchases (optional upgrade)
The app is free to install and can be used to a limited extent at no cost. All Pro features can be unlocked optionally via an auto-renewing yearly subscription (currently EUR 9.99/year, regular price EUR 12.99/year) or via a one-time lifetime purchase (currently EUR 19.99, regular price EUR 29.99) with no recurring payment. The subscription can be cancelled at any time via the subscription settings of your Apple account. For this we use the platform API (StoreKit) provided by Apple (Apple Inc., One Apple Park Way, Cupertino, California, USA, 95014).
When you make an in-app purchase, we do not collect or process any sensitive payment data (such as credit card numbers), as the entire payment process is handled directly via your Apple account. We only receive a transaction confirmation (receipt) from Apple to activate the premium features.
7. Your rights (data subject rights)
Users have the right to receive information free of charge upon request about the personal data stored by us about them. In addition, users have the right to rectification of incorrect data, restriction of processing and deletion of their personal data (right to be forgotten), provided that there is no legal obligation to retain data.
Data deletion in the app: You can irrevocably delete your account and all associated data from our system yourself at any time. To do this, go to the "Account" settings in LensApp Pro and select "Delete Account". This will permanently and GDPR-compliantly delete all your data in our database.
Furthermore, users have the right to revoke any consent given with effect for the future and to lodge a complaint with the competent supervisory authority.