Privacy Policy

Overview

Rough Draft Oy ("we", "us", "our") builds small, independent iOS apps with a focus on clarity, usefulness, and respect for users.

We believe privacy is a basic expectation, not a feature. Our apps are designed to collect as little data as possible and to operate primarily on the user's device.

If you have questions, you can contact us at info@roughdraftapps.com.

Information We Collect

Personal Information

Rough Draft Oy does not require users to create accounts or provide personal identifiers such as name, email address, or phone number to use our apps.

If you choose to contact support by email, we receive the information you voluntarily include in your message.

App Usage & Diagnostics

To understand performance and improve reliability, our apps use:

• Firebase Analytics (anonymous usage metrics)
• Firebase Crashlytics (crash and error reporting)

This data includes technical details such as device type, operating system version, app version, and interaction events. It does not directly identify you.

Ad Campaign Attribution

When you install the app from an ad campaign, anonymous attribution data (such as which campaign led to the install) may be collected by Apple's AdServices and SKAdNetwork frameworks. This data is aggregated and privacy-preserving - it does not identify you personally. It helps us understand which campaigns help users discover our apps.

Subscriptions & Payments

Paid features are managed through the App Store using RevenueCat.

We do not receive or store payment card details, billing information, or Apple ID credentials. RevenueCat processes anonymous purchase and subscription status data solely to manage access to paid features.

User Identifiers

Our apps may generate a random, non-personal user identifier visible in app settings. This identifier is not linked to your identity and exists only to help diagnose issues if you contact support.

How We Use Information

Information is used only to:

• Operate core app functionality
• Improve performance and stability
• Understand feature usage at a high level
• Respond to support requests
• Manage subscriptions

We do not sell data, rent data, or use data for advertising purposes.

Artificial Intelligence Features

Some Rough Draft Oy apps include AI-based features that analyze user-provided input to deliver personalized results. This section explains what data is collected, how it is collected, how it is used, and with whom it is shared.

What data is sent to AI

When you use an AI feature, the following data may be sent to a third-party AI service through our secure backend server:

• User-provided text input - such as meal descriptions you type into the app
• Contextual health data - such as your pregnancy week, dietary preferences, and allergies, which you provide during onboarding or in settings
• Derived data - such as current nutrient gaps calculated from your meal logs, used to generate meal suggestions

How data is collected

All data sent to AI is either directly entered by you (meal descriptions, dietary preferences, allergies) or calculated from data you entered (pregnancy week derived from your due date, nutrient gaps derived from your meal logs). No data is collected passively or without your action.

How data is used

Data is sent to the AI service solely to generate the specific response you requested (e.g., a nutrition analysis of your meal, or meal suggestions based on your nutrient gaps). We do not use this data to build personal profiles, train AI models, or associate AI results with your identity.

Third-party AI service

AI processing is performed by Google Gemini, accessed through our secure backend server. Your data is sent to Google's servers for processing and is subject to Google's privacy policy. We do not store your AI inputs or outputs on our servers beyond the time needed to deliver the response.

What is NOT sent to AI

The following data is stored only on your device and is never sent to our servers or any third-party AI service: your due date, height, weight, name, email, or any personal identifiers.

Authentication

Some of our apps use Firebase Anonymous Authentication to securely communicate with our backend services. This creates a random, anonymous session identifier that is not linked to your personal identity. No email, password, or personal information is required.

Data Storage & Sharing

Rough Draft Oy does not operate user databases that store personal information.

App data such as logs, preferences, and settings is stored locally on your device using Apple's on-device frameworks. This data is not transmitted to us.

Limited data is processed by trusted third-party services:

• Google Firebase (analytics, crash reporting, and anonymous authentication)
• Google Gemini (AI-powered features, accessed via our secure backend)
• RevenueCat (subscription management)
• Apple App Store services

We do not share your data with any other third parties.

Data Retention

• On-device data: Stored only on your device. Deleted when you delete the app.
• Analytics data: Retained by Firebase according to Google's data retention policies.
• Crash reports: Retained by Firebase Crashlytics for up to 90 days.
• Subscription data: Managed by RevenueCat and Apple according to their respective retention policies.
• AI request data: Not stored on our servers beyond the time needed to process and return a response.
• Usage limits: Anonymous daily API usage counts are stored server-side to enforce fair use limits. These are keyed by anonymous session identifier and reset daily.
• User-submitted feedback: If you submit feedback through an in-app form, the subject and message text you enter are stored on our server alongside your anonymous user ID. This data is retained to help us improve our apps.

Children's Privacy

Our apps are not directed at children under the age of 13, and we do not knowingly collect personal information from children.

Your Choices

You can limit analytics collection through system-level settings where available. App data can be removed at any time by deleting the app from your device.

Changes

This policy may be updated from time to time. Any changes will be posted on this page with an updated revision date.

App-Specific Information

The following sections describe data practices specific to individual Rough Draft Oy apps.

NutriNest - Pregnancy Nutrition Tracker

NutriNest helps expecting mothers track daily nutrition during pregnancy.

Data stored on your device only

The following data is stored locally on your device and is never sent to our servers or any third party:

• Due date, height, and weight
• Meal logs and nutrition analysis results
• Custom nutrient goals and daily scores

Data shared with AI

When you use AI-powered features, data such as meal descriptions, pregnancy week, dietary preferences, and nutrient gaps is sent to our secure backend server for processing by Google Gemini. This data is used solely to generate the response you requested. We do not store AI inputs or outputs on our servers. See Google's privacy policy.

Other server-side data

• Trial tracking: NutriNest offers a free trial. Trial eligibility is tracked server-side using an anonymous identifier. No personal information is collected or stored.
• Usage limits: Anonymous daily API usage counts are stored server-side to enforce fair use limits.
• Subscription status: Managed by RevenueCat. See RevenueCat's Privacy Policy.

ScanRx - Pill Counter

ScanRx helps pharmacists and healthcare professionals count pills using on-device AI.

Data collected and stored on your device only

The following data is stored locally on your device using Apple's on-device frameworks. It is never sent to our servers or any third party:

• Photos - images you capture or select for pill counting are processed entirely on-device using a Core ML model. No photos are uploaded to any server.
• Scan history - pill count results and thumbnail images are stored locally using SwiftData.

AI processing

All pill detection and counting is performed entirely on your device using Apple's Core ML framework. No images, pill data, or detection results are sent to any server or cloud AI service.

Other server-side data

• Trial tracking: ScanRx offers a free trial. Trial eligibility is tracked server-side using an anonymous identifier. No personal information is collected or stored.
• Feedback: If you submit feedback through the in-app form, the subject and message you enter are stored on our server to help us improve the app.
• Subscription status: Managed by RevenueCat. See RevenueCat's Privacy Policy.
• Analytics: Firebase Analytics collects anonymous usage data such as feature usage and crash reports. See Firebase Privacy Policy.

Tero - Rock Identifier

How Identification Works

Tero offers two identification modes:

• Free (On-Device AI): Your rock photo is analyzed entirely on your device using a built-in machine learning model. No data leaves your phone. No internet required. Unlimited scans.
• Pro (Enhanced AI): Your rock photo is sent to Google Gemini AI via our secure backend server for deeper analysis with reasoning, verification tips, and collector information. Requires an internet connection and a Pro subscription.

Data Sent During Pro Scans

When you use a Pro scan, the following data is sent to our server and then to Google Gemini:

• Your rock photo (resized, not full resolution)
• Optional context you provide: where you found it (city/region) and surface conditions

This data is used solely to generate your identification result and is not retained after processing. Google's data usage policies apply to AI processing — see Google's Privacy Policy.

Data We Never Send to AI

• Your name, email, or Apple ID
• Your GPS coordinates or precise location
• Your device information or IP address
• Any other photos on your device
• Your collection or scan history

Device-Only Data

Your rock collection, scan history, and app preferences are stored locally on your device via SwiftData. This data is never uploaded to any server and is deleted when you uninstall the app.

Community Discoveries

When you share a rock discovery to the community feed, the following data is uploaded to our servers:

• Your rock photo (stored in Google Cloud Storage)
• Rock identification result (name, confidence, assessment)
• Approximate location (rounded to ~1km precision, never your exact GPS coordinates)
• City name (if provided)

Community discoveries are visible to all users on the map and in the discoveries feed. You can report inappropriate content or block users whose discoveries you don't want to see. Reports are reviewed by our team.

Geology Explorer

The map shows geological data from Macrostrat.org (CC-BY 4.0). When you tap or search a location on the map, that coordinate is sent to our server to fetch geological data. Your device's GPS location is never accessed or sent — the app uses city selection, not GPS.

Server-Side Data

• Authentication: Firebase Anonymous Authentication creates a random device-level identifier — no personal credentials required.
• Subscriptions: Managed by RevenueCat via the App Store. We do not receive or store payment card details, billing information, or Apple ID credentials.
• Feedback & Reports: If you submit feedback or report a discovery, your message is stored with your anonymous user ID. No personal information is attached.
• Analytics: Firebase Analytics and Crashlytics collect anonymous usage metrics (device type, OS version, feature usage) to improve the app. No personally identifiable information is collected.

Subscription Information

• Tero Pro Weekly: $3.99 per week, auto-renews unless cancelled at least 24 hours before the end of the current billing period.
• Tero Pro Annual: $34.99 per year, auto-renews unless cancelled at least 24 hours before the end of the current billing period.
• Payment is charged to your Apple ID at confirmation of purchase.
• Manage or cancel subscriptions in Settings → Apple ID → Subscriptions.
• Terms of Use (Apple Standard EULA)

BioSnap - Heal Your Neighbourhood

BioSnap is a plant identification game that turns scanning real plants into greening a map of your city. All plant identification happens on your device.

How Identification Works

BioSnap uses a Core ML model bundled with the app to identify plants entirely on your device. When you scan a plant:

• The photo is processed on-device by Apple's Core ML framework
• The result (species name, confidence) is computed locally and never leaves your phone
• No internet connection is required for identification
• No image is sent to any server, AI service, or third party

Device-Only Data

The following data is stored locally on your device using Apple's SwiftData and UserDefaults frameworks. It is never sent to our servers or any third party:

• Your discovered species and collection progress
• Tile healing progress for your city
• Heart balance and economy state
• Onboarding and tutorial state
• App preferences and city selection

This data is deleted when you uninstall the app.

Location Data

BioSnap uses your device's location (when-in-use only) to:

• Show plant species commonly found near you on the map
• Tag scans with an approximate location so you can revisit your discoveries
• Verify scans are made in the real world (anti-cheat)

Your precise GPS coordinates are stored only on your device and used only by the app. Approximate location (city, country) is included in anonymous analytics events to help us understand which regions our users come from. Your exact GPS coordinates are never sent off-device.

What We Never Send

• Your name, email, or Apple ID
• Your exact GPS coordinates
• Photos you take in the app (camera capture is processed entirely on-device, then discarded)
• Photos from your photo library — BioSnap can only scan via the camera
• Any contents of your collection or scan history

Server-Side Data

• Authentication: Firebase Anonymous Authentication creates a random device-level identifier so we can attribute analytics events to your install. No personal credentials, email, or sign-in is required. Reinstalling the app generates a new identifier.
• Analytics: Firebase Analytics and a per-user Firestore event log collect anonymous usage metrics — onboarding progression, scan counts, heal progress, session duration, app version, device model, OS version, and your selected city. No personally identifiable information is collected. This data helps us understand how the app is used and improve it. See Firebase Privacy Policy.
• Crash diagnostics: Firebase Crashlytics collects crash reports and performance data when the app crashes. Reports include device model, OS version, and stack traces. No personally identifiable information is included.

Subscription Information

BioSnap is free to use. There are no subscriptions, in-app purchases, or paid tiers at this time. If we add paid features in a future version, this policy will be updated and the new section will describe them clearly before the change takes effect.

Tracking

BioSnap does not track you across other apps or websites. We do not use the App Tracking Transparency framework because we do not link any data to third-party tracking. The anonymous Firebase identifier is used only within BioSnap.