Photo Purge Privacy Policy

Effective: August 20, 2025

1. Data Controller

LAN ZHANG

Contact: [email protected]

2. Data Collection

A. Information You Provide

When contacting support, you may optionally provide:

B. Automatically Collected Data

Photo Processing Notice: All photo analysis occurs locally on your device. Visual content is never accessed, stored, or transmitted externally.
Data Category Examples Purpose
Device Data Device model, OS version, language settings, IP address Service optimization
Usage Analytics Session duration, features used, subscription status Improve user experience
Advertising ID* IDFA (Apple Identifier for Advertising) Personalized ads (opt-in)
Photo Metadata File size, creation date, format type Duplicate identification

*Requires explicit consent via Apple's App Tracking Transparency (ATT) framework

C. Gmail Integration Data (Optional)

Gmail Integration Notice: When you choose to connect your Gmail account, Photo Purge uses Google's secure OAuth authentication. We only access data you explicitly authorize through the permissions below.

Permission Scope Data Accessed Purpose
.../auth/userinfo.email Your Google account's primary email address Account identification
.../auth/userinfo.profile Basic profile information (publicly visible) Personalized service
.../auth/gmail.readonly Email metadata (sender, subject, timestamp) Email classification
.../auth/gmail.modify Apply labels to emails Subscription management
Important: Photo Purge never accesses:

3. Data Usage

Purpose Legal Basis (EEA) Third Parties
Provide core photo management features Contractual necessity -
App performance monitoring & crash reporting Legitimate interest Firebase Crashlytics
Personalized advertising Consent (ATT) Facebook Ads, Google Ads
Customer support response Legitimate interest -
Email organization and subscription management Consent (via OAuth) Google APIs

Gmail Data Protection Mechanisms

We implement industry-leading security measures to protect your sensitive Gmail data:

🔒
End-to-End Encryption

All data transmission between your device and Google servers uses TLS 1.3 encryption. Your credentials are never stored or accessible to our servers.

🔑
Token-Based Authentication

We use OAuth 2.0 access tokens instead of storing your credentials. These tokens are stored securely in Apple's Keychain Services with biometric protection.

⏱️
Limited Token Lifespan

Access tokens automatically expire after 7 days of inactivity. Long-lived refresh tokens are stored exclusively on your device and never shared with our servers.

🧩
Minimal Data Access

We adhere to Google's "least privilege" principle, requesting only the specific permissions needed for email management features. We never request access to email content or attachments.

📊
Anonymized Processing

Email metadata is processed locally on your device. Only anonymized statistics (e.g., "30% reduction in promotional emails") are transmitted to our servers for feature improvement.

iOS-Specific Controls

Photo Access

Requires explicit permission via iOS Photos API. Manage permissions:

Settings → Privacy → Photos → Photo Purge

Ad Personalization

Control ad tracking:

Settings → Privacy → Tracking → Disable "Allow Apps to Request to Track"

Subscription Management

Manage in-app purchases:

Settings → [Your Name] → Subscriptions

Gmail Permissions

Revoke app access anytime:

Google Account → Security → Third-party apps → Remove Photo Purge

Or directly from the app: Photo Purge → Settings → Connected Accounts → Disconnect

4. Your Rights

5. Security Measures

6. Policy Updates

Significant changes will be notified through:

Continued use of Photo Purge after policy updates constitutes acceptance of the changes.

Contact Us

For privacy-related inquiries or to exercise your data rights:
[email protected]

We respond to all requests within 30 days as required by GDPR and CCPA regulations.

Last Updated: August 20, 2025