Privacy Policy

Last updated: September 27, 2025

This Privacy Policy describes how Haydesk (the “App” and the “Website”) collects, uses, and shares information when you use our services. By using Haydesk, you agree to the practices described below.

Data Controller: Haydesk (operated by Your Company/Legal Entity)
Registered office: Your address
Email: privacy@haydesk.com
Applies to: Website at haydesk.com and mobile apps distributed via Google Play and other app stores.
Effective Area: Global. Rights sections include GDPR (EU/EEA/UK) and CCPA/CPRA (California).

Quick Links

App Store Privacy Details (Apple)

This section aligns our disclosures with Apple’s App Privacy taxonomy for App Store Connect. Use it as the public reference that you link in your store listing and from within the app.

Data Collected

Depending on how you use the app and the features you enable, we may collect the following categories of data:

Contact Info: name, email address (Account creation & support)
User Content: photos, videos, notes, trip entries (Core app functionality)
Location: precise/approximate (optional; for saving visits & nearby features)
Identifiers: user ID, device identifiers (for authentication, fraud prevention)
Usage Data: interactions, pages/screens viewed, referrers (analytics & product improvement)
Diagnostics: crash logs, performance data (reliability & debugging)
Purchases: transaction metadata (for subscriptions/in‑app purchases)

Data Linked to You

The following data may be linked to your identity (account or device): Contact Info, User Content, Location (if enabled), Identifiers, Usage Data, Diagnostics, and Purchases.

Tracking

We do not use data for cross‑app tracking or third‑party advertising. If this changes (e.g., we add ad networks), we will update this policy and the App Store disclosures and request App Tracking Transparency (ATT) consent where required.

Purposes

App Functionality: authentication, saving visits, syncing content, notifications
Analytics: understanding usage to improve features and usability
Developer Communications: service messages and support
Account Management: managing subscriptions and purchases
Fraud Prevention & Security: protecting accounts and services

Sign in with Apple

If you choose Sign in with Apple, we receive a unique Apple user identifier and (optionally) your name and email address as permitted by Apple and your settings. You can revoke access in your Apple ID settings at any time. We use this data only to create and manage your Haydesk account and do not share it for advertising purposes.

1. Information We Collect

Account & Identity

Name, display name, email address, profile photo (if you create an account or sign in via third‑party providers).
Authentication identifiers and tokens.

Content You Add

Trip entries, notes, captions, comments.
Photos, videos, and media you choose to upload.
Places/visits you save (including metadata like timestamps).

Location (Optional)

Approximate or precise location if you grant permission, for logging visits or enhancing features (e.g., nearby places). You can disable this in your device settings.

Device & Usage Data

Device model, OS version, app version, language, country, time zone.
Log data: IP address, timestamps, crash reports, performance data, diagnostics.
Interaction data: pages/screens viewed, actions in the app, referrers.

Payments (If Applicable)

We use a payment processor (e.g., Stripe). We do not store full card details. Processor handles card data under PCI‑DSS. We may receive limited billing info (e.g., last4, card brand, transaction IDs).

Third‑Party Sign‑In

If you sign in with providers like Google/Apple/Microsoft, we receive information they provide according to their terms and your settings.

2. How We Use Information

Provide and maintain the App and Website, including account creation and authentication.
Enable core features: saving visits, media upload, timelines, sharing with others.
Improve safety, performance, and reliability; prevent fraud and abuse.
Personalize your experience (e.g., suggestions, reminders, language).
Customer support and service communications.
Analytics and product improvement.
Process payments for subscriptions or in‑app purchases.
With your consent, send marketing communications you can opt out of at any time.

3. Legal Bases for Processing (GDPR)

Contract — to provide the service you requested.
Legitimate Interests — to secure and improve the service, prevent fraud, and understand usage.
Consent — for optional features like precise location, marketing emails, or certain analytics.
Legal Obligation — to comply with laws (e.g., tax/transaction records).

5. Data Retention

We keep personal data only as long as necessary for the purposes outlined in this Policy. Retention depends on account status, legal obligations, dispute resolution, and enforcement of agreements. You may request deletion at any time (see Request Data Deletion).

6. Security

We use reasonable technical and organizational measures to protect your information (e.g., encryption in transit, access controls, backups). No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

7. International Data Transfers

Your information may be processed outside your country. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) to protect your data.

8. Your Rights

Depending on your region, you may have the right to:

Access, correct, or delete your personal information.
Object to or restrict certain processing.
Data portability.
Withdraw consent where processing is based on consent.
Lodge a complaint with a supervisory authority (EU/UK).

To exercise these rights, contact us at privacy@haydesk.com.

9. Children’s Privacy

Haydesk is not directed to children under 13 (or older, as defined by your local law). We do not knowingly collect personal information from children without appropriate consent. If you believe a child has provided us data, contact us and we will take appropriate steps to delete it.

10. Cookies & Local Storage

We use cookies and similar technologies (such as local storage) to keep you signed in, remember preferences, perform analytics, and improve the service. You can control cookies in your browser settings; disabling some cookies may affect functionality.

11. Changes to This Policy

We may update this Policy from time to time. We will post the new version on this page and update the “Last updated” date above. For material changes, we may provide additional notice (e.g., in‑app message or email).

12. Contact Us

Questions or concerns? Email us at privacy@haydesk.com. Postal address: Your address.

13. Request Data Deletion

You can request deletion of your account and personal data at any time:

In the app: Settings → Account → Delete account (when available), or
Email privacy@haydesk.com from your account email with the subject “Account Deletion Request”.

We will verify your request and permanently delete or irreversibly anonymize your personal data, unless retention is required by law (e.g., transaction records).

Third‑Party Services We May Use

Depending on your region and enabled features, we may use some of the following providers (examples):

Hosting/CDN: Vercel, Netlify, Cloudflare, or similar
Analytics: Google Analytics, Firebase Analytics
Crash Reporting: Firebase Crashlytics, Sentry
Authentication: Firebase Auth, Sign in with Apple/Google/Microsoft
Payments: Stripe
Email: SendGrid, Mailgun, or similar
Maps/Geocoding: Google Maps Platform, Mapbox

Each provider processes data in accordance with its own privacy policy and, where applicable, under a data processing agreement with us.