notepush-ios-main

Privacy Policy - NotePush

Effective Date: [Date]
Last Updated: [Date]

---

Overview

Your privacy is fundamental to NotePush. We’ve designed our app with a privacy-first architecture that ensures your personal information and notification content remain under your complete control.

Key Privacy Principles:

• ✅ Local Data Storage - All your data stays on your device
• ✅ No Content Access - We never see your notification messages
• ✅ Minimal Data Collection - Only what’s necessary for the app to function
• ✅ No Advertising - No data collection for marketing purposes
• ✅ User Control - You choose your notification infrastructure

---

Information We Do NOT Collect

Personal Information

• ❌ Names, emails, phone numbers
• ❌ Location data
• ❌ Demographic information
• ❌ Contact lists
• ❌ Photo library access

Notification Content

• ❌ Notification messages or content
• ❌ Server URLs or configurations
• ❌ Authentication credentials
• ❌ Topic names or subscriptions
• ❌ Usage patterns or analytics for advertising

Device Information

• ❌ Device identifiers for tracking
• ❌ Installed apps
• ❌ Network information beyond basic connectivity

---

Information We Do Collect

Essential App Functionality

1. Push Notification Token

• What: A unique identifier issued by Apple for your device
• Why: Required to deliver push notifications to your device
• Where: Shared only with Apple’s Push Notification Service and your chosen notification servers
• Control: Automatically managed by iOS; you can disable in iOS Settings

2. Crash Reports (Optional)

• What: Anonymous technical data when the app unexpectedly closes
• Why: To identify and fix bugs that affect app stability
• Control: You can opt out in app settings
• Content: No personal information or notification content included

Local Storage Only

Information stored only on your device:

• Server configurations and URLs
• Topic subscriptions and display names
• Authentication credentials (encrypted in iOS Keychain)
• Notification history (optional, can be disabled)
• App preferences and settings

---

How We Use Information

Push Notification Delivery

• Your device’s push token is shared with your chosen notification servers
• This enables servers to send notifications directly to your device
• We act only as a conduit; no content passes through our systems

App Improvement

• Anonymous crash reports help us identify and fix bugs
• No personal information is included in crash reports
• Participation is optional and can be disabled

No Other Uses

• We do not use your information for advertising
• We do not create user profiles
• We do not track usage patterns
• We do not share data with third parties for marketing

---

Information Sharing

With Your Chosen Servers

• Push tokens are shared with servers you configure
• This is necessary for notification delivery
• You control which servers receive your token
• Credentials are encrypted and stored locally

With Apple

• Push delivery uses Apple’s Push Notification Service
• Standard iOS functionality - same as all iOS apps
• Apple’s privacy policy governs their handling

With Third Parties

• ❌ No personal information sharing
• ❌ No data sales
• ❌ No marketing partnerships
• ❌ No analytics services (beyond basic crash reporting)

---

Data Security

Encryption

• Credentials encrypted using iOS Keychain
• Local data protected by iOS security features
• Network traffic uses HTTPS when communicating with servers

Access Control

• No remote access to your device data
• No cloud storage of your personal information
• Local-only data processing

Security Practices

• Regular security reviews of app code
• Minimal permission requests
• No unnecessary data collection
• Secure coding practices

---

Your Privacy Controls

In NotePush Settings

• Disable crash reporting
• Clear notification history
• Review server connections
• Manage topic subscriptions

In iOS Settings

• Notification permissions - Control if NotePush can send notifications
• Background refresh - Control when NotePush can run in background
• Camera access - Required only for QR code scanning

Server Choice

• Complete control over which servers you use
• Switch servers anytime without data loss
• Remove servers and all associated data
• Self-host for maximum privacy

---

Third-Party Services

Apple Push Notification Service

• Purpose: Delivery mechanism for push notifications
• Data Shared: Device push token only
• Privacy Policy: Apple Privacy Policy

Firebase (Google)

• Purpose: Technical infrastructure for push notification delivery
• Data Shared: Device push token only (no content)
• Privacy Policy: Firebase Privacy Policy

Your Notification Servers

• Controlled by you - you choose which servers to trust
• Direct communication - your device connects directly to your servers
• Privacy depends on your server choice and configuration

---

Children’s Privacy

COPPA Compliance

• Safe for children - no personal information collection
• No marketing to minors
• Parent/guardian control through iOS parental controls
• Educational use supported through institutional server deployment

---

International Users

Global Privacy Protection

• Same privacy protection worldwide
• Local data storage regardless of location
• No cross-border data transfers of personal information
• Compliance with local privacy regulations

GDPR Compliance (EU)

• Minimal data processing under legitimate interest
• No personal data collected in most cases
• Right to access - contact us for any data we might have
• Right to deletion - remove app to delete all local data

---

Privacy by Design

Architectural Choices

• Server-agnostic design prevents vendor lock-in
• Local-first approach keeps data on your device
• Direct communication eliminates middleman data access
• Minimal permissions - only what’s necessary

Technical Implementation

• No user accounts required
• No cloud synchronization by default
• Encrypted local storage
• Open protocol based on ntfy standard

---

Changes to Privacy Policy

Notification Process

• Email notification if we have your contact information
• In-app notification for significant changes
• Website posting of updated policy
• Continued use constitutes acceptance

What Triggers Updates

• New features that affect privacy
• Changes in third-party services
• Legal requirement changes
• User feedback and improvements

---

Data Retention

Local Data

• Retained until you delete the app or clear data
• Your control - clear anytime in app settings
• Automatic cleanup available in app preferences

Our Systems

• Minimal retention - only crash reports if enabled
• Automatic deletion of old crash reports
• No personal data retention

---

Your Rights

Access and Control

• View all settings in the app
• Export configurations (manual process)
• Delete all data by removing the app
• Contact us for any privacy questions

Questions and Concerns

• Email: developer@notepush.app
• Response time: Within 48 hours
• Detailed explanations provided for all privacy questions

---

Commitment to Privacy

We built NotePush because we believe you should control your own notification infrastructure without sacrificing privacy. Our business model is based on providing valuable software, not on collecting your data.

Our Promise:

• Your privacy will always be our priority
• We will never sell your data
• Transparency in all our privacy practices
• Continuous improvement of privacy protections

---

Contact Information

Privacy Questions:

• Email: developer@notepush.app
• Response Time: Within 48 hours

General Support:

• Email: support@notepush.app
• Documentation: docs.notepush.app

---

This privacy policy reflects our commitment to protecting your privacy while providing a powerful, flexible notification service. Thank you for trusting NotePush with your notifications.

Last Updated: [Date]
Version: 0.9.1