couplove-privacy

CoupLove — Privacy Policy

Effective date: 14.8.2025
Contact: iturosstojanovic@gmail.com

CoupLove (“we,” “us,” or “our”) is a simple mobile app that provides 100 date ideas for partners. We collect only what’s needed to operate purchases, optional photo attachments, and provide support.

---

Table of Contents

1. Controller & Contact
2. What We Collect & Why
3. Photos (Optional) — How Access Works
4. Legal Bases (GDPR/UK-GDPR)
5. Sharing & Processors
6. International Transfers
7. Retention
8. Security
9. Your Rights
10. California Notice at Collection
11. Children
12. Do Not Track / Global Privacy Control
13. Changes
14. How to Contact Us

---

1) Controller & Contact

• Data Controller: CoupLove
• Email: iturosstojanovic@gmail.com
• Data Protection Officer: Not appointed.
• EU/UK representative (GDPR Art. 27): Not appointed. If required in the future, we’ll update this notice.

---

2) What We Collect & Why

We do not require an account and do not access your microphone, contacts, or precise location.

A) You provide directly

• Support emails (your email address + message content) — used to reply and improve support.

B) Purchases & subscriptions (via RevenueCat – our processor)

To validate in-app purchases/subscriptions and grant entitlements, our provider may process:

• Identifiers: app-scoped device ID (e.g., IDFV), purchase receipts/tokens
• App/device metadata: app version, OS, country/locale
  Purpose: purchase validation, entitlement management, fraud prevention, compliance.

C) On-device data

• Preferences/favorites/viewed items and date entries (including optional photo attachments) are stored locally on your device. We don’t receive this data unless you explicitly share it (e.g., via support email).

---

3) Photos (Optional) — How Access Works

• Why we access Photos: Only to let you attach a photo to a date in the app.
• Optional: You can use CoupLove without granting Photos access.
• How access works: We use the operating system’s image picker. We do not scan your photo library; we only see the photo(s) you select.
• Where photos live: Photo content remains on your device. We do not upload photos to our servers or to third parties.
• Metadata: We do not read or store EXIF/location data from selected photos.
• Control: You can revoke permission at any time in your device settings.
• Platform notes:
  • iOS: Photos permission (limited to user-selected items).
  • Android: Photos/Media permission per OS version (e.g., READ_MEDIA_IMAGES on Android 13+). We access only the items you pick.

---

4) Legal Bases (GDPR/UK-GDPR)

• Performance of a contract: verify purchases and deliver entitlements.
• Legitimate interests: maintain and secure the app, prevent fraud, and respond to support.
• Consent: Photos access is based on your permission (you can grant/deny/revoke).

---

5) Sharing & Processors

We do not sell personal data. We share only with service providers that help run the app:

• RevenueCat (in-app purchases/subscriptions). Acts as our processor under a data processing agreement.

We do not share your photos with any third party.

---

6) International Transfers

Service providers may process data outside your country. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses/UK Addendum).

---

7) Retention

• Support emails: kept as long as needed for support and reasonable business/legal needs; we’ll delete earlier on request where feasible.
• Purchase/subscription data (via RevenueCat): retained only as long as needed to operate entitlements, prevent fraud, and meet legal/accounting obligations.
• On-device items (dates, attachments, preferences): remain on your device; deleting the app may remove this data unless your OS includes backups you control.

---

8) Security

We use reasonable technical and organizational measures. No method of transmission or storage is 100% secure.

---

9) Your Rights

GDPR/UK-GDPR (EEA/UK residents)

You may request access, rectification, erasure, restriction, objection, and data portability; and lodge a complaint with your supervisory authority. Contact: iturosstojanovic@gmail.com.

U.S. State Privacy Rights (e.g., CA/VA/CO/CT/UT)

Depending on your state, you may have the right to:

• Know/Access specific pieces and categories of personal information.
• Correct inaccurate information.
• Delete information (subject to legal exceptions).
• Opt out of sale/share/targeted advertising.
• Appeal if we deny a request (VA/CO/CT).

Our current practices:

• Sale/Share: We do not sell or share personal information as defined by the CPRA, and we do not engage in cross-context behavioral (targeted) advertising.
• Sensitive information: We do not collect sensitive personal information.
• Non-discrimination: We won’t discriminate for exercising your rights.
• Authorized agents (CA): You may designate an agent; we’ll require proof of authorization and identity.

To exercise rights or appeal a decision, email iturosstojanovic@gmail.com with your request and state of residence. If we deny your request, you may submit an appeal by replying with “Appeal” in the subject line.

---

10) California Notice at Collection

Categories collected/processed:

• Identifiers (email if you contact support; app-scoped device ID via purchase provider)
• Commercial information (purchase/entitlement status via purchase provider)
• Internet/technical info (basic app/device metadata for purchases)

Photos: We do not collect or upload your photos. When you attach a photo to a date, selection happens via the OS picker and the image remains on your device.

Sources: directly from you (support), your device/app, and our processor (purchase provider).
Business purposes: purchase validation, entitlement delivery, security/fraud prevention, support.
Retention: see Retention.
Sale/Share: No.
Use for targeted advertising: No.

---

11) Children

CoupLove is not directed to children under the age required by local law (e.g., 13 in the U.S., 16 in parts of the EEA). We do not knowingly collect children’s personal information.

---

12) Do Not Track / Global Privacy Control

Browsers may send “Do Not Track” or GPC signals. We do not sell/share personal information or use targeted advertising, so no opt-out is required. If our practices change, we will honor applicable signals as required.

---

13) Changes

We may update this policy from time to time. We’ll revise the Effective date and, where required, provide additional notice in-app.

---

14) How to Contact Us

• Email: iturosstojanovic@gmail.com
• App: CoupLove

---

This policy is provided for informational purposes and does not constitute legal advice. If you need region-specific additions (e.g., EU/UK representatives, exact vendor links, or a data retention schedule), open an issue or contact us and we’ll update this page.