Privacy Policy
Last updated: May 2026
Overview
Rough Draft Oy ("we", "us", "our") builds small, independent iOS apps with a focus on clarity, usefulness, and respect for users.
We believe privacy is a basic expectation, not a feature. Our apps are designed to collect as little data as possible and to operate primarily on the user's device.
If you have questions, you can contact us at info@roughdraftapps.com.
Information We Collect
Personal Information
Rough Draft Oy does not require users to create accounts or provide personal identifiers such as name, email address, or phone number to use our apps.
If you choose to contact support by email, we receive the information you voluntarily include in your message.
App Usage & Diagnostics
To understand performance and improve reliability, our apps use:
- Firebase Analytics (anonymous usage metrics)
- Firebase Crashlytics (crash and error reporting)
This data includes technical details such as device type, operating system version, app version, and interaction events. It does not directly identify you.
Ad Campaign Attribution
When you install the app from an ad campaign, anonymous attribution data (such as which campaign led to the install) may be collected by Apple's AdServices and SKAdNetwork frameworks. This data is aggregated and privacy-preserving - it does not identify you personally. It helps us understand which campaigns help users discover our apps.
Subscriptions & Payments
Paid features are managed through the App Store using RevenueCat.
We do not receive or store payment card details, billing information, or Apple ID credentials. RevenueCat processes anonymous purchase and subscription status data solely to manage access to paid features.
User Identifiers
Our apps may generate a random, non-personal user identifier visible in app settings. This identifier is not linked to your identity and exists only to help diagnose issues if you contact support.
How We Use Information
Information is used only to:
- Operate core app functionality
- Improve performance and stability
- Understand feature usage at a high level
- Respond to support requests
- Manage subscriptions
We do not sell data, rent data, or use data for advertising purposes.
Artificial Intelligence Features
Some Rough Draft Oy apps include AI-based features that analyze user-provided input to deliver personalized results. This section explains what data is collected, how it is collected, how it is used, and with whom it is shared.
What data is sent to AI
When you use an AI feature, the following data may be sent to a third-party AI service through our secure backend server:
- User-provided text input - such as meal descriptions you type into the app
- Contextual health data - such as your pregnancy week, dietary preferences, and allergies, which you provide during onboarding or in settings
- Derived data - such as current nutrient gaps calculated from your meal logs, used to generate meal suggestions
How data is collected
All data sent to AI is either directly entered by you (meal descriptions, dietary preferences, allergies) or calculated from data you entered (pregnancy week derived from your due date, nutrient gaps derived from your meal logs). No data is collected passively or without your action.
How data is used
Data is sent to the AI service solely to generate the specific response you requested (e.g., a nutrition analysis of your meal, or meal suggestions based on your nutrient gaps). We do not use this data to build personal profiles, train AI models, or associate AI results with your identity.
Third-party AI service
AI processing is performed by Google Gemini, accessed through our secure backend server. Your data is sent to Google's servers for processing and is subject to Google's privacy policy. We do not store your AI inputs or outputs on our servers beyond the time needed to deliver the response.
What is NOT sent to AI
The following data is stored only on your device and is never sent to our servers or any third-party AI service: your due date, height, weight, name, email, or any personal identifiers.
Authentication
Some of our apps use Firebase Anonymous Authentication to securely communicate with our backend services. This creates a random, anonymous session identifier that is not linked to your personal identity. No email, password, or personal information is required.
Data Storage & Sharing
Rough Draft Oy does not operate user databases that store personal information.
App data such as logs, preferences, and settings is stored locally on your device using Apple's on-device frameworks. This data is not transmitted to us.
Limited data is processed by trusted third-party services:
- Google Firebase (analytics, crash reporting, and anonymous authentication)
- Google Gemini (AI-powered features, accessed via our secure backend)
- RevenueCat (subscription management)
- Apple App Store services
We do not share your data with any other third parties.
Data Retention
- On-device data: Stored only on your device. Deleted when you delete the app.
- Analytics data: Retained by Firebase according to Google's data retention policies.
- Crash reports: Retained by Firebase Crashlytics for up to 90 days.
- Subscription data: Managed by RevenueCat and Apple according to their respective retention policies.
- AI request data: Not stored on our servers beyond the time needed to process and return a response.
- Usage limits: Anonymous daily API usage counts are stored server-side to enforce fair use limits. These are keyed by anonymous session identifier and reset daily.
- User-submitted feedback: If you submit feedback through an in-app form, the subject and message text you enter are stored on our server alongside your anonymous user ID. This data is retained to help us improve our apps.
Children's Privacy
Our apps are not directed at children under the age of 13, and we do not knowingly collect personal information from children.
Your Choices
You can limit analytics collection through system-level settings where available. App data can be removed at any time by deleting the app from your device.
Changes
This policy may be updated from time to time. Any changes will be posted on this page with an updated revision date.
App-Specific Information
The following sections describe data practices specific to individual Rough Draft Oy apps.
NutriNest - Your Pregnancy Companion
NutriNest is a private pregnancy companion. It tracks your week-by-week pregnancy, lets you journal, count baby kicks, time contractions, plan your hospital bag, log weight, manage appointments, ask questions to an AI assistant, and discover pregnancy-friendly recipes.
Data stored on your device only
The following data is stored locally using Apple's on-device SwiftData framework and is never sent to our servers or shared with any third party:
- Your name and due date
- Dietary preference and allergies (used to personalize AI responses; see below)
- Whether you're carrying more than one baby
- Journal entries and notes
- Weight log entries
- Contraction timer history
- Baby kick session history
- Hospital bag checklist progress
- Appointment list
- Chat messages with the AI assistant (history is local to your device)
- Saved recipes
Data shared with AI (Google Gemini)
When you use the in-app AI features (chat or recipe generation), you can choose whether to opt in. If you opt in, the following data is sent to our secure backend, which forwards it to Google Gemini for processing:
- Your pregnancy week and trimester
- Your dietary preference (plant-based, mixed, or animal-based)
- Your allergies and any other restrictions you entered
- Whether you're carrying more than one baby
- The chat message or ingredient list you type
We do not send: your name, your journal entries, weight log, kick or contraction history, appointment details, hospital bag list, or any other personal information you entered into the app. We do not store AI inputs or outputs on our servers. See Google's privacy policy for how Google handles data sent to the Gemini API.
Server-side data
- Usage limits: An anonymous Firebase identifier is used to count your daily AI requests, so we can enforce fair-use limits and the free tier. No personal information is stored alongside the counter.
- Engagement metrics: To understand how the app is used, we store anonymous per-day engagement rollups on our server — time spent in the app, number of sessions, and counts of which features you used (for example, how many chat messages or recipes you generated, or which tools you opened). These are linked only to your anonymous Firebase identifier and contain only event names and counts — never your journal text, chat messages, recipe content, or any personal information.
- Feedback: If you submit feedback through the in-app form, the subject and message you enter are stored on our server to help us improve the app. They are linked only to your anonymous Firebase identifier, never to your name or any other personal information.
- Subscription status: Managed by RevenueCat. See RevenueCat's Privacy Policy.
Analytics and crash reporting
We use Firebase to collect anonymous app-quality data, all linked only to an anonymous on-device identifier (never to your name or any personal data you entered):
- Firebase Analytics — which screens and features are used (for example, how many users open the Tools tab or use the kick counter). Event names and parameters carry no personal content (no journal text, no chat messages, no recipe names).
- Firebase Crashlytics — crash reports and stack traces when the app encounters an error.
- Firebase Performance Monitoring — app launch time and network latency, used to keep the app fast.
See Firebase Privacy and Security in Firebase for how Firebase handles this data.
What we don't do
- We do not track you across other apps or websites. NutriNest sets
NSPrivacyTracking = falsein its Privacy Manifest. - We do not sell or rent your data to anyone, ever.
- We do not show ads in the app.
- We do not require an account, an email, or a password. NutriNest uses Apple's Anonymous Firebase Auth — a per-install identifier stored in your iOS keychain. There is no profile to log into.
Deleting your data
Deleting the NutriNest app from your device removes all on-device data immediately. Server-side records (anonymous usage counters, any feedback you submitted, and your subscription record from RevenueCat) are tied only to the anonymous Firebase identifier created on your device. If you'd like us to delete those records as well, email info@roughdraftapps.com with the request and we'll remove them.
ScanRx - Pill Counter
ScanRx helps pharmacists and healthcare professionals count pills using on-device AI.
Data collected and stored on your device only
The following data is stored locally on your device using Apple's on-device frameworks. It is never sent to our servers or any third party:
- Photos - images you capture or select for pill counting are processed entirely on-device using a Core ML model. No photos are uploaded to any server.
- Scan history - pill count results and thumbnail images are stored locally using SwiftData.
AI processing
All pill detection and counting is performed entirely on your device using Apple's Core ML framework. No images, pill data, or detection results are sent to any server or cloud AI service.
Other server-side data
- Trial tracking: ScanRx offers a free trial. Trial eligibility is tracked server-side using an anonymous identifier. No personal information is collected or stored.
- Feedback: If you submit feedback through the in-app form, the subject and message you enter are stored on our server to help us improve the app.
- Subscription status: Managed by RevenueCat. See RevenueCat's Privacy Policy.
- Analytics: Firebase Analytics collects anonymous usage data such as feature usage and crash reports. See Firebase Privacy Policy.
Tero - Rock Identifier
How Identification Works
Tero offers two identification modes:
- Free (On-Device AI): Your rock photo is analyzed entirely on your device using a built-in machine learning model. No data leaves your phone. No internet required. Unlimited scans.
- Pro (Enhanced AI): Your rock photo is sent to Google Gemini AI via our secure backend server for deeper analysis with reasoning, verification tips, and collector information. Requires an internet connection and a Pro subscription.
Data Sent During Pro Scans
When you use a Pro scan, the following data is sent to our server and then to Google Gemini:
- Your rock photo (resized, not full resolution)
- Optional context you provide: where you found it (city/region) and surface conditions
This data is used solely to generate your identification result and is not retained after processing. Google's data usage policies apply to AI processing — see Google's Privacy Policy.
Data We Never Send to AI
- Your name, email, or Apple ID
- Your GPS coordinates or precise location
- Your device information or IP address
- Any other photos on your device
- Your collection or scan history
Device-Only Data
Your rock collection, scan history, and app preferences are stored locally on your device via SwiftData. This data is never uploaded to any server and is deleted when you uninstall the app.
Community Discoveries
When you share a rock discovery to the community feed, the following data is uploaded to our servers:
- Your rock photo (stored in Google Cloud Storage)
- Rock identification result (name, confidence, assessment)
- Approximate location (rounded to ~1km precision, never your exact GPS coordinates)
- City name (if provided)
Community discoveries are visible to all users on the map and in the discoveries feed. You can report inappropriate content or block users whose discoveries you don't want to see. Reports are reviewed by our team.
Geology Explorer
The map shows geological data from Macrostrat.org (CC-BY 4.0). When you tap or search a location on the map, that coordinate is sent to our server to fetch geological data. Your device's GPS location is never accessed or sent — the app uses city selection, not GPS.
Server-Side Data
- Authentication: Firebase Anonymous Authentication creates a random device-level identifier — no personal credentials required.
- Subscriptions: Managed by RevenueCat via the App Store. We do not receive or store payment card details, billing information, or Apple ID credentials.
- Feedback & Reports: If you submit feedback or report a discovery, your message is stored with your anonymous user ID. No personal information is attached.
- Analytics: Firebase Analytics and Crashlytics collect anonymous usage metrics (device type, OS version, feature usage) to improve the app. No personally identifiable information is collected.
Subscription Information
- Tero Pro Weekly: $3.99 per week, auto-renews unless cancelled at least 24 hours before the end of the current billing period.
- Tero Pro Annual: $34.99 per year, auto-renews unless cancelled at least 24 hours before the end of the current billing period.
- Payment is charged to your Apple ID at confirmation of purchase.
- Manage or cancel subscriptions in Settings → Apple ID → Subscriptions.
- Terms of Use (Apple Standard EULA)
BioSnap - Heal Your Neighbourhood
BioSnap is a plant identification game that turns scanning real plants into greening a map of your city. All plant identification happens on your device.
How Identification Works
BioSnap uses a Core ML model bundled with the app to identify plants entirely on your device. When you scan a plant:
- The photo is processed on-device by Apple's Core ML framework
- The result (species name, confidence) is computed locally and never leaves your phone
- No internet connection is required for identification
- No image is sent to any server, AI service, or third party
Device-Only Data
The following data is stored locally on your device using Apple's SwiftData and UserDefaults frameworks. It is never sent to our servers or any third party:
- Your discovered species and collection progress
- Tile healing progress for your city
- Heart balance and economy state
- Onboarding and tutorial state
- App preferences and city selection
This data is deleted when you uninstall the app.
Location Data
BioSnap uses your device's location (when-in-use only) to:
- Show plant species commonly found near you on the map
- Tag scans with an approximate location so you can revisit your discoveries
- Verify scans are made in the real world (anti-cheat)
Your precise GPS coordinates are stored only on your device and used only by the app. Approximate location (city, country) is included in anonymous analytics events to help us understand which regions our users come from. Your exact GPS coordinates are never sent off-device.
What We Never Send
- Your name, email, or Apple ID
- Your exact GPS coordinates
- Photos you take in the app (camera capture is processed entirely on-device, then discarded)
- Photos from your photo library — BioSnap can only scan via the camera
- Any contents of your collection or scan history
Server-Side Data
- Authentication: Firebase Anonymous Authentication creates a random device-level identifier so we can attribute analytics events to your install. No personal credentials, email, or sign-in is required. Reinstalling the app generates a new identifier.
- Analytics: Firebase Analytics and a per-user Firestore event log collect anonymous usage metrics — onboarding progression, scan counts, heal progress, session duration, app version, device model, OS version, and your selected city. No personally identifiable information is collected. This data helps us understand how the app is used and improve it. See Firebase Privacy Policy.
- Crash diagnostics: Firebase Crashlytics collects crash reports and performance data when the app crashes. Reports include device model, OS version, and stack traces. No personally identifiable information is included.
Subscription Information
BioSnap is free to use. There are no subscriptions, in-app purchases, or paid tiers at this time. If we add paid features in a future version, this policy will be updated and the new section will describe them clearly before the change takes effect.
Tracking
BioSnap does not track you across other apps or websites. We do not use the App Tracking Transparency framework because we do not link any data to third-party tracking. The anonymous Firebase identifier is used only within BioSnap.
TipTracker - Tip & Income Tracker
TipTracker helps service workers log their shifts, tips, and hourly earnings, and see insights into their income over time. Your earnings data stays on your device.
Data stored on your device only
The following data is stored locally using Apple's on-device SwiftData framework and is never sent to our servers or shared with any third party:
- Shift & earnings data - tip amounts, hourly wages, hours worked, sales, cash totals, cover counts, and any notes you add to a shift
- Workplaces - the jobs or workplaces you set up to organize your shifts
Your actual earnings figures never leave your device. This data is deleted when you uninstall the app.
Server-side data
- Authentication: TipTracker uses Firebase Anonymous Authentication to create a random device-level identifier. No account, email, password, or personal information is required. Reinstalling the app generates a new identifier.
- Analytics: Firebase Analytics and a per-user Firestore event log collect anonymous usage metrics — app opens, onboarding progression, when a shift is saved, paywall views, and subscription events — along with aggregate session and performance metrics. When a shift is saved, only whether it included tips, hours, or a wage is recorded (as true/false flags); your tip, wage, and hour amounts are never sent. No personally identifiable information is collected. See Firebase Privacy Policy.
- Subscription status: Managed by RevenueCat via the App Store. We do not receive or store payment card details, billing information, or Apple ID credentials. See RevenueCat's Privacy Policy.
Tracking
TipTracker does not track you across other apps or websites, and sets NSPrivacyTracking = false in its Privacy Manifest. We do not use the App Tracking Transparency framework. We do not collect your name, email, contacts, or location. The anonymous Firebase identifier is used only within TipTracker.
Deleting your data
Deleting the TipTracker app from your device removes all on-device data immediately. Server-side records (anonymous analytics events and your subscription record from RevenueCat) are tied only to the anonymous Firebase identifier created on your device. If you'd like us to delete those records as well, email info@roughdraftapps.com with the request and we'll remove them.