Privacy
Privacy Policy
This Privacy Policy is a practical publication draft for BalconyAI. It should be reviewed by qualified legal counsel before you rely on it as legal advice.
1. Overview
This Privacy Policy explains how BalconyAI ("BalconyAI", "we", "us", or "our") collects, uses, stores, shares, and protects information when you use the BalconyAI iOS app, website, APIs, AI image generation features, subscription features, and support services (collectively, the "Service").
BalconyAI helps users create AI-assisted balcony garden design concepts from photos and design preferences. Because the Service depends on photo upload, AI processing, cloud storage, subscriptions, and optional location-based nursery search, we process several categories of information described below.
2. Information we collect
| Category | Examples | Source | Purpose | Typical retention |
|---|---|---|---|---|
| App identity | Anonymous public user ID, subscription status, free generation usage count | Created by the app and stored locally, including iOS Keychain; synchronized with our API and Adapty | Operate accounts, enforce usage limits, restore purchases, and provide history | For the life of the app identifier or account, unless deletion is requested and legally permitted |
| Photos and design inputs | Balcony photos, selected image files, balcony type, sun exposure, pet-friendly preference, style, selected plants, accessories, optional description | Provided by you through camera, photo library, and in-app controls | Generate AI design outputs and plant recommendations | As long as needed to provide generation history, support, security, and service operation, unless deletion is requested |
| Generated content | AI-generated design image, generation status, generated image URL, plant summaries, history records | Created by our systems and service providers | Display results, support before/after comparison, allow redesign and sharing | As long as needed to provide history and app functionality, unless deletion is requested |
| Subscription and purchase information | Adapty profile identifiers, Apple subscription status, product access level, webhook event IDs and payloads | Apple App Store, StoreKit, Adapty, and our backend | Process subscriptions, unlock premium features, restore purchases, prevent duplicate webhook processing | As needed for subscription operation, fraud prevention, support, accounting, and legal compliance |
| Location information | Latitude and longitude when you request nearby nursery suggestions | Provided by device permission and app request | Find nearby plant nurseries and related local results | Processed for the request and may be retained in logs only as needed for security and debugging |
| Device, network, and diagnostics | IP address, API headers, request logs, crash reports, error events, device and app environment information | Collected automatically by the app, API, hosting, and monitoring systems | Security, debugging, reliability, abuse prevention, and service analytics | Usually up to 24 months unless longer retention is needed for security, legal, or operational reasons |
| Support communications | Email address, message content, attachments, and related metadata if you contact us | Provided by you | Respond to support, legal, privacy, and billing-related requests | As long as needed to resolve the request and maintain business records |
3. How we use information
We use information to:
- Provide, maintain, secure, and improve the Service.
- Upload, process, and store photos and AI-generated results.
- Generate balcony design concepts, plant suggestions, and purchase lists.
- Operate free usage limits, premium access, subscriptions, and restore purchase features.
- Synchronize subscription status between Apple, Adapty, and our backend.
- Provide history, before/after comparison, sharing, and redesign features.
- Respond to support, privacy, legal, and security requests.
- Detect, prevent, and investigate fraud, abuse, service attacks, and policy violations.
- Comply with legal, tax, accounting, and App Store obligations.
4. Legal bases for processing
Where applicable law requires a legal basis, we process information based on one or more of the following:
- Performance of a contract, such as providing AI generation, subscription access, and app functionality.
- Consent, such as camera, photo library, location permissions, and optional communications.
- Legitimate interests, such as security, debugging, fraud prevention, service improvement, and support.
- Legal obligations, such as tax, accounting, consumer protection, and App Store compliance obligations.
5. Third-party services
We use service providers to operate BalconyAI. These providers may process information on our behalf or as independent controllers under their own policies.
| Provider | Purpose | Information involved |
|---|---|---|
| Apple App Store and StoreKit | App distribution, subscriptions, billing, refunds, subscription management | Purchase and subscription information, Apple account-related transaction data handled by Apple |
| Adapty | Paywall display, product configuration, subscription status, restore purchases, webhook synchronization | Anonymous user ID, subscription status, product/access-level events, device/app metadata |
| Railway and PostgreSQL | API hosting and database | App identifiers, generation metadata, history, subscription flags, webhook event records |
| Cloudflare R2 | Storage and delivery of uploaded and generated images | Original balcony photos, generated images, storage URLs, related object metadata |
| LaoZhang AI and/or fal.ai | AI image generation and image editing | Uploaded image content, prompts, design preferences, requested output settings |
| Sentry | Error monitoring and diagnostics | Error events, stack traces, request context, device/app environment, and related metadata |
| SerpAPI and Google Local Results | Nearby nursery search when requested | Location query, nursery search request, local result metadata |
| Perenual | Plant data enrichment and caching | Plant filter queries and plant database results; generally not user-identifying information |
6. Photos, camera, photo library, and location permissions
The app requests camera or photo library access only when you choose to take or select a photo. The app requests location access only when you use location-based features such as nearby nursery suggestions. You can manage these permissions in iOS Settings. If you deny permissions, some features may not work.
7. Payments
Subscriptions are processed through Apple. We do not receive or store your full payment card number. Apple may provide subscription status and transaction-related information to Adapty and to us so that we can provide premium access, restore purchases, and handle support.
8. Cookies and tracking
The current legal website is a static site and is not designed to use advertising cookies. The app and API may collect technical logs, diagnostics, and security events. If we add analytics, advertising cookies, or marketing pixels later, we will update this Privacy Policy and provide consent controls where required.
9. Data sharing
We do not sell your personal information. We may share information:
- With service providers listed above to operate the Service.
- With Apple and Adapty for subscription, billing, and purchase restoration.
- When you choose to share generated designs or purchase lists through your device share sheet.
- To comply with law, legal process, App Store requirements, or enforceable government requests.
- To protect the rights, safety, and security of BalconyAI, users, and others.
- In connection with a merger, acquisition, financing, restructuring, or sale of assets, subject to appropriate safeguards.
10. Data retention
We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, including providing app history, operating subscriptions, handling support, complying with legal obligations, resolving disputes, and enforcing agreements. Original photos and generated images may be retained while your history remains available. We may retain backups, logs, and security records for a limited period after deletion requests where permitted or required by law.
11. Security
We use reasonable administrative, technical, and organizational safeguards, including HTTPS, access controls, private storage for original photos where implemented, and provider security controls. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
12. International transfers
Your information may be processed in the United States and other countries where we or our service providers operate. These countries may have data protection laws different from those in your location. Where required, we rely on appropriate safeguards for international transfers.
13. Your rights and choices
Depending on where you live, you may have rights to access, correct, delete, export, restrict, or object to processing of your personal information. You may also have the right to withdraw consent and lodge a complaint with a data protection authority.
You can exercise privacy rights by contacting [email protected]. We may need to verify your request before acting on it. Some information may be retained where required or permitted by law, such as subscription, security, accounting, or legal records.
14. California privacy notice
For California residents, the categories of personal information we collect may include identifiers, internet or network activity, geolocation data if you use location features, commercial information related to subscriptions, user-generated content, and inferences from design preferences. We use and share these categories for the purposes described above. We do not sell personal information. If we begin sharing personal information for cross-context behavioral advertising, we will update this Policy and provide required opt-out mechanisms.
15. Children
The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information, contact us and we will take appropriate steps to delete it.
16. Deletion requests
You may request deletion of personal information by contacting [email protected]. Deleting certain information may prevent us from providing history, subscription-linked access, or other Service features. App Store subscription records may continue to be managed by Apple under Apple's policies.
17. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date above. If changes are material, we may provide additional notice in the app, on the website, or by other reasonable means.
18. Contact
For privacy questions or requests, contact [email protected]. For general support, contact [email protected].