PRIVACY POLICY

RoamCard ("we", "us", "our") is an iOS app that turns travel photos into styled posters using AI. The app is operated as an independent product. Questions about this policy can be directed to gyuguoyu@gmail.com.

• Anonymous device identifier. When you first open RoamCard, an anonymous ID is created and stored in your device Keychain. This ID never contains your name, email, or any personally identifiable information.
• Photos you submit. When you generate a poster, your photo is compressed and sent to our server solely to produce the AI illustration. We do not store your photos — they are discarded after the generation completes.
• Generation count. We store a count of how many posters you have generated (keyed to your anonymous ID) to enforce fair-use quotas. No image content is retained.
• Purchase receipts. If you purchase a Memory Pack or Roam Pro, Apple provides us with a verified purchase record containing the product ID and expiry date. No payment details are shared with us.
• Usage logs. Our server logs standard HTTP request metadata (timestamp, status code, response time) for debugging. These logs do not contain photo data or prompt text.

• To generate AI poster illustrations using your photo and location.
• To enforce per-tier generation quotas (free, Memory Pack, Pro).
• To verify your subscription entitlement and unlock paid features.
• To debug technical issues in our API.

We do not sell your data, use it for advertising, or share it with third parties except as described below.

• Replicate (replicate.com).Your compressed photo and text prompt are sent to Replicate's API to generate the illustration. Replicate's privacy policy governs their handling of inference inputs. We use their API with inference data deletion enabled where available.
• Supabase (supabase.com). We use Supabase to store your anonymous ID and generation count. Data is stored in the EU (Ireland) region.
• Apple (StoreKit). In-app purchases are processed entirely by Apple. We receive only a verified token confirming purchase — no card or billing details.

Generation counts are retained for up to 90 days, then automatically deleted. Your anonymous device ID persists until you uninstall the app and clear your device Keychain. Photos submitted for generation are not retained beyond the duration of a single API call (typically < 60 seconds).

Because RoamCard does not collect personally identifiable information, most data protection rights (access, correction, deletion) do not apply in the traditional sense. If you would like all data associated with your anonymous ID to be deleted, email us at gyuguoyu@gmail.com with the subject "Delete my data". We will remove your quota records within 7 business days.

RoamCard is not directed at children under 13. We do not knowingly collect data from children.

We may update this policy when our practices change. The updated date at the top of this page will reflect any revision. Continued use of the app after a change constitutes acceptance.