Privacy Policy — iOS App

Last updated: April 18, 2026

1. Data Controller

Gheorghe Gabriel Popa, acting as an individual sole proprietor, Str. Sibiului 263, 555301 Cisnădioara, Sibiu, Romania, is the data controller for personal data processed through the iOS App. Contact: contact@timelines.me.

2. Data We Collect

2.1 Account Data (from Sign in with Apple or Google)

• Name — your display name, from the OAuth provider
• Email address — used as account identifier and for service communications. If you use Sign in with Apple with private email relay, we only see the relay address (...@privaterelay.appleid.com).
• Profile picture URL — from your OAuth provider, used as your avatar (optional)
• Authentication provider — Apple or Google

We do not receive or store your password from any provider.

2.2 Content Data (created by you in the App)

• Timeline names, descriptions, and visibility settings
• Event titles, descriptions, dates, tags, and importance levels
• Echoes (names and email addresses of people you share private events with)
• Uploaded photos (resized and stored on our servers)

Your content data is encrypted at rest using post-quantum cryptography (Kyber1024 KEM + AES-256-GCM).

2.3 Technical Data (automatic)

• Bearer token (stored in the iOS Keychain, used for API authentication)
• Device name (iPhone name reported by iOS)
• Platform marker ("ios") and app version

2.4 Purchase Data (Pro subscription only)

• Apple originalTransactionId — links your Pro subscription to your timelines.me account
• Product ID (monthly or annual)
• Subscription expiry date
• Sandbox/Production environment marker

We do not receive or store your Apple ID, payment card, or billing address. All payment processing is handled by Apple.

3. Apple's Role

Apple processes your purchase data under Apple's own Privacy Policy. We use the Apple App Store Server API and App Store Server Notifications V2 to receive confirmation of subscription events (purchase, renewal, cancellation, refund). These messages are signed by Apple and contain the transaction identifiers listed in §2.4.

4. Legal Basis (GDPR Article 6)

5. How We Use Your Data

• To provide, maintain, and improve the App
• To authenticate you and manage your account
• To encrypt and store your content securely
• To activate, renew, or deactivate your Pro subscription based on Apple's notifications
• To send service-related communications (account, security, subscription changes)
• To comply with legal obligations

We do not use your data for advertising, profiling, cross-app tracking, or selling to third parties.

6. Tracking Transparency (ATT)

The App does not use the App Tracking Transparency framework because it does not track you across other companies' apps or websites. We do not use IDFA, IDFV, or any third-party advertising SDKs.

7. Data Sharing

We do not sell, rent, or share your personal data with third parties, except:

• Apple Inc. — for App Store purchase processing and server notifications (Apple's Privacy Policy)
• OAuth providers (Apple, Google) — only during authentication, as initiated by you
• Google Cloud Platform — as infrastructure provider hosting your encrypted data, subject to Google's Data Processing Addendum
• Law enforcement — only when required by law or valid legal process

8. Data Storage and Security

• Location: European Union (Western Europe region, Google Cloud)
• Encryption at rest: Post-quantum cryptography (Kyber1024 + AES-256-GCM)
• Encryption in transit: TLS 1.3 (HTTPS)
• Key separation: Encryption keys stored separately from encrypted data
• On device: Bearer token stored in iOS Keychain with kSecAttrAccessibleAfterFirstUnlockThisDeviceOnly — never backed up to iCloud. Optional biometric unlock (Face ID / Touch ID) with automatic token rotation on biometry change.

9. Your Rights (GDPR)

Under the General Data Protection Regulation, you have the right to:

• Access — request a copy of your personal data (Art. 15)
• Rectification — correct inaccurate data (Art. 16)
• Erasure — delete your account and all data (Art. 17). Deletion is immediate. Note: this does not cancel your Apple subscription — you must do that separately in iOS Settings.
• Data portability — export your data in JSON format (Art. 20)
• Restriction — restrict processing of your data (Art. 18)
• Objection — object to processing based on legitimate interest (Art. 21)
• Complaint — file a complaint with ANSPDCP (Romanian Data Protection Authority) or your local supervisory authority

To exercise these rights, contact contact@timelines.me. We will respond within 30 days.

10. Children's Privacy

The App is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has provided us data, contact us immediately and we will delete it.

11. International Transfers

Your data is stored within the European Union. Transfers to Apple (United States) for subscription processing are covered by Apple's adherence to the EU-US Data Privacy Framework. Transfers through OAuth providers are protected by Standard Contractual Clauses (SCCs) or adequacy decisions.

12. Data Retention

• Active account: Data retained as long as your account exists
• Account deletion: All data permanently deleted immediately
• Apple transaction records: Kept for 90 days after subscription ends for audit and fraud-prevention purposes, then removed
• Backup retention: Encrypted backups, if any, are purged within 30 days of account deletion

13. Changes

We may update this Privacy Policy. Material changes will be notified via the App or by email at least 30 days in advance. The "Last updated" date at the top reflects the most recent revision.

14. Contact

For privacy-related inquiries:
Gheorghe Gabriel Popa — Data Protection
Str. Sibiului 263, 555301 Cisnădioara, Sibiu, Romania
contact@timelines.me