What we buildApproachPlatformsContactPrivacyTerms
Legal

Privacy Policy

Last updated: 5 July 2026 · Effective: 5 July 2026 · Version 1.0

Plain-language summary. We build a range of mobile apps and this website under the name schlamm.dev. We collect as little personal information as we reasonably can, most of our apps keep your content on your own device, we never sell your personal information, and we give you clear ways to access, export, or delete your data. The full detail — required for legal completeness — is below.

01 Scope & overview

This Privacy Policy ("Policy") explains how schlamm.dev ("schlamm.dev", "we", "us", or "our") collects, uses, discloses, stores, secures, and protects information in connection with:

  • the websites we operate at the schlamm.dev domain and its subdomains (the "Site"); and
  • the mobile applications, and any related features, content, or services, that we publish under the schlamm.dev name to the Apple App Store, Google Play, or elsewhere (each an "App", and together with the Site, the "Services").

Because we publish multiple Apps across different categories, the specific data practices for any individual App are described in that App's store listing (its Apple "App Privacy" label or Google Play "Data safety" section) and, where relevant, an in-App or supplemental notice. This Policy is the umbrella framework that applies to all of them. Where an App-specific notice conflicts with this Policy, the App-specific notice controls for that App.

By using the Services, you acknowledge that you have read and understood this Policy. If you do not agree with it, please do not use the Services.

02 Who we are & how to reach us

For the purposes of the EU General Data Protection Regulation ("GDPR"), the UK GDPR, and similar laws, the data controller responsible for your personal information is the operator of schlamm.dev, [legal entity name and registered address to be inserted].

You can contact us about privacy at any time at support@schlamm.dev. If we are required to designate a representative or data protection officer under applicable law, their contact details will be added here.

Note for the operators: replace the bracketed placeholders (legal entity, address, governing jurisdiction, any EU/UK representative) before publishing, and have counsel review this Policy against the actual data practices of each shipped App.

03 Information we collect

The categories of information we may collect depend on which Services you use and how you use them. Not every App collects every category. We may collect:

Information you provide to us

  • Account & profile data — such as a display name, email address, and password or authentication token, where an App offers accounts or sync.
  • User content — the notes, entries, tasks, media, settings, or other content you create in an App. In local-first Apps this typically stays on your device unless you enable sync or backup.
  • Support & communications — the contents of messages you send us, your email address, and any information you choose to include (for example a bug description, screenshots, or device details).
  • Purchase & subscription data — a record that a purchase occurred and its status. Payment card details are handled by the App Store or Google Play; we do not receive or store your full payment card number.
  • Survey, beta, and feedback data — information you volunteer through optional surveys, beta programs, or feedback forms.

Information collected automatically

  • Device & technical data — device model, operating system and version, app version, language and region, screen and locale settings, time zone, and similar diagnostic identifiers.
  • Usage & interaction data — which features are used, in-app events, session length, and navigation paths, generally in aggregated or pseudonymized form to help us understand what works.
  • Diagnostics & crash data — crash logs, error reports, and performance metrics that help us find and fix problems.
  • Approximate location — coarse location derived from IP address for security, fraud-prevention, and regional-compliance purposes. Precise (GPS) location is only collected by an App if that App's feature needs it and you grant the OS-level permission.
  • Identifiers — app-instance identifiers, and, only where you permit it, advertising or attribution identifiers (see §9).
  • Cookies & similar technologies on the Site (see §16).

Information from third parties

  • App stores & platforms — Apple and Google may share limited data such as purchase validation receipts, subscription status, and (where you opt in) attribution data.
  • Service providers — analytics, crash-reporting, and infrastructure vendors that process data on our behalf (see §7–8).

We do not intentionally collect special category data (such as health, biometric, precise religious, or sexual-orientation data). Some Apps may let you record such information as user content (for example a wellness journal); in those cases the content stays under your control on your device or in your chosen backup, and we do not use it beyond providing the feature you enabled.

04 How we collect it

We collect information: (a) directly from you when you enter it, contact us, or configure an App; (b) automatically through the Services and the standard telemetry described above; and (c) from third parties such as the app stores and our service providers. Where a permission is required by the operating system (camera, photos, notifications, location, etc.), we request it only when a feature needs it, and you can decline or later change it in your device settings.

05 How we use information

We use information for the following purposes:

  • Provide & operate the Services — run the Apps and Site, deliver features you request, and maintain your account and settings.
  • Sync & back up your content across your devices where you enable those features.
  • Process purchases & subscriptions and validate entitlements through the app stores.
  • Support you — respond to requests, troubleshoot, and communicate about your account or issues.
  • Improve & develop — understand usage, fix bugs, measure performance, and build new features, generally using aggregated or pseudonymized data.
  • Security, fraud prevention & integrity — detect, investigate, and prevent abuse, security incidents, and violations of our Terms.
  • Legal compliance — comply with law, respond to lawful requests, and enforce our agreements.
  • Communications — send service and transactional messages and, only with your consent where required, optional product updates (see §18).

We will not use your personal information for a materially different, incompatible purpose without providing notice and, where required, obtaining your consent.

06 Legal bases for processing (EEA / UK)

If you are in the European Economic Area, the United Kingdom, or another region with similar law, we rely on the following legal bases:

  • Performance of a contract — to provide the Services you request and administer your account and purchases.
  • Legitimate interests — to secure, maintain, analyze, and improve the Services, prevent fraud, and communicate with you, provided those interests are not overridden by your rights. You may object to this processing (see §13).
  • Consent — for optional analytics/advertising identifiers, certain cookies, precise location, and marketing communications, where consent is required. You may withdraw consent at any time.
  • Legal obligation — to comply with laws, tax and accounting requirements, and lawful requests.
  • Vital or public interests — in rare cases where processing is necessary to protect someone's life or safety.

07 When we share or disclose information

We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We disclose information only in these limited situations:

  • Service providers / processors — vendors who process data on our behalf under contract, such as cloud hosting, sync/backup storage, analytics, crash reporting, and email delivery. They may only use the data to provide services to us.
  • App stores & platforms — Apple and Google, in connection with distribution, purchases, and subscription management.
  • Legal & safety — to comply with law, valid legal process, or governmental request; to enforce our Terms; and to protect the rights, property, or safety of our users, the public, or us.
  • Business transfers — in connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to this Policy. We will notify you of any change in ownership or use of your personal information.
  • With your direction or consent — for example when you share content through an App's sharing feature.

We may also create and share aggregated or de-identified information that cannot reasonably be used to identify you.

08 Third-party services & SDKs

Our Apps and Site may incorporate third-party tools ("SDKs" and services) to operate. Depending on the App, these may include categories such as: cloud infrastructure and databases, authentication, analytics, crash and performance reporting, push-notification delivery, and app-store billing. Each such provider processes only the data needed for its function and is bound by contractual data-protection obligations. Each App's store privacy label lists the specific categories of data the SDKs in that App collect. We keep the number of third-party SDKs to the minimum needed to run a reliable App.

09 Analytics & advertising

Analytics. We use privacy-respecting analytics to understand aggregate usage and improve the Services. Where required, we ask for your consent, and we prefer analytics configured to minimize or pseudonymize identifiers.

Advertising. Our goal is ad-free Apps. If any App displays ads or uses attribution, it will say so in its store listing and in-App, and — on iOS — we will request permission through Apple's App Tracking Transparency framework before any tracking across apps or websites owned by other companies. You can also reset or limit your advertising identifier in your device settings, and use the "Limit Ad Tracking" / "Opt out of Ads Personalization" controls provided by Apple and Google. We do not knowingly enable interest-based advertising to children.

10 Where your data is stored & international transfers

Local-first storage. Many of our Apps store your content on your device by default. That data is protected by your device's own security (passcode, biometrics, OS encryption) and is not transmitted to us unless a feature requires it.

Cloud storage. Where an App uses sync, backup, accounts, or other server features, the associated data is stored with reputable cloud infrastructure providers on secured servers. These providers may operate data centers in various countries.

International transfers. We and our service providers may process information in countries other than the one in which you live, including the United States. Where we transfer personal data out of the EEA or UK, we rely on an appropriate safeguard — such as the European Commission's Standard Contractual Clauses (and the UK Addendum), an adequacy decision, or another lawful transfer mechanism. You may request more information about these safeguards using the contact details in §22.

11 How long we keep information

We keep personal information only as long as necessary for the purposes described in this Policy, then delete or anonymize it. Retention periods depend on the type of data and context:

  • Account data — for as long as your account is active, then deleted or anonymized within a reasonable period after closure (typically up to 90 days), unless a longer period is legally required.
  • User content in the cloud — until you delete it or close your account; local content persists until you delete the App or the data.
  • Support communications — generally up to 24 months after the matter is resolved.
  • Diagnostics & analytics — retained in aggregated or pseudonymized form for limited periods needed to analyze trends.
  • Purchase records — retained as required for tax, accounting, and audit obligations.

12 How we protect information

We maintain administrative, technical, and organizational measures designed to protect personal information against unauthorized access, loss, misuse, and alteration, including:

  • Encryption in transit using TLS/HTTPS for data moving between the Services and our servers, and encryption at rest for data stored on our cloud infrastructure where supported.
  • Access controls that limit data access to what is necessary, with authentication for administrative systems.
  • Data minimization — collecting and retaining as little as we reasonably can.
  • Reputable infrastructure providers that maintain their own recognized security certifications.
  • Ongoing maintenance — dependency updates, monitoring, and prompt handling of reported vulnerabilities.

No method of transmission or storage is completely secure, so we cannot guarantee absolute security. If we become aware of a personal-data breach that is likely to result in a risk to your rights, we will notify the relevant authorities and affected users as required by law. Please help protect your account by using a strong, unique password and keeping your device software up to date. Report any suspected vulnerability to support@schlamm.dev.

13 Your privacy rights & choices

Depending on where you live, you may have some or all of the following rights over your personal information:

  • Access — request a copy of the personal information we hold about you.
  • Rectification — correct inaccurate or incomplete information.
  • Erasure — request deletion of your personal information ("right to be forgotten").
  • Restriction — ask us to limit how we process your information.
  • Portability — receive your information in a structured, commonly used, machine-readable format.
  • Objection — object to processing based on legitimate interests or to direct marketing.
  • Withdraw consent — where we rely on consent, withdraw it at any time without affecting prior processing.
  • Lodge a complaint — with your local data-protection authority (in the EEA/UK) or other regulator.

To exercise any right, email support@schlamm.dev or use in-App controls where offered. We will verify your identity before acting, respond within the timeframe required by law (generally within 30 days, extendable where permitted), and will not discriminate against you for exercising your rights. There is normally no fee unless a request is manifestly unfounded or excessive.

14 US state privacy rights

If you are a resident of California or another US state with a comprehensive privacy law (such as Virginia, Colorado, Connecticut, Utah, Texas, and others), you may have rights to: know/access the categories and specific pieces of personal information we collect; delete personal information; correct inaccurate information; obtain a portable copy; and opt out of the "sale" or "sharing" of personal information and of certain targeted advertising or profiling.

We do not sell or share personal information as those terms are defined under the California Consumer Privacy Act (as amended by the CPRA) or similar laws, and we do not process it for cross-context behavioral advertising. We do not knowingly sell or share the personal information of anyone under 16. To exercise your rights, contact support@schlamm.dev; you may use an authorized agent, and we will honor recognized opt-out preference signals where required. You may appeal a decision by replying to our response, and you will not be discriminated against for exercising these rights.

15 Children's privacy

Our Services are not directed to children under the age of 13 (or the higher age of digital consent in your jurisdiction, such as 16 in parts of the EEA), and we do not knowingly collect personal information from them without verifiable parental consent. Any App specifically intended for children will follow the additional requirements of the US Children's Online Privacy Protection Act ("COPPA"), Apple's "Kids" category rules, and Google Play's Families policies, and will not include behavioral advertising or unnecessary data collection. If you believe a child has provided us personal information without appropriate consent, contact support@schlamm.dev and we will delete it promptly.

16 Cookies & similar technologies

The Site uses a minimal set of cookies and similar technologies. Strictly necessary cookies keep the Site functioning and remember your theme preference; optional analytics cookies, if used, help us understand Site traffic and are only set where required with your consent. Our mobile Apps generally do not use browser cookies but may use local storage and device identifiers as described above. You can control cookies through your browser settings, and where a consent banner is presented you can accept or reject non-essential categories. Because meaningful "Do Not Track" standards are not consistently adopted, we respond to Global Privacy Control (GPC) signals where legally required rather than to legacy DNT headers.

17 App store & platform terms

When you download an App, your use is also subject to the terms and privacy practices of the platform you use it on — including Apple (App Store, Apple Media Services) and Google (Google Play). Purchases, subscriptions, and refunds are processed by those platforms under their terms; we receive transaction and subscription-status information but not your full payment details. We complete each platform's required privacy disclosures (Apple's App Privacy and Google Play's Data safety) for every App.

18 Communications & notifications

We may send you service and transactional messages (for example, account, security, purchase, or important policy notices) that are necessary to the Services. With your consent where required, we may also send optional product updates; you can opt out of those at any time via the unsubscribe link or your settings. Push notifications are controlled by the OS-level permission you grant, and you can disable them in your device settings at any time.

The Services may link to third-party sites, services, or content that we do not control. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. Please review the privacy policies of any third party before providing them information.

20 Automated decision-making

We do not use your personal information to make decisions that produce legal or similarly significant effects about you solely by automated means without human involvement. If this ever changes for a particular feature, we will describe it and provide the safeguards required by law.

21 Changes to this Policy

We may update this Policy from time to time to reflect changes in our practices, technology, or the law. When we make material changes, we will update the "Last updated" date above and, where appropriate, provide additional notice (such as an in-App notice or email). Your continued use of the Services after an update takes effect constitutes acceptance of the revised Policy. We encourage you to review it periodically.

22 How to contact us

For any question, request, or complaint about this Policy or your personal information, contact us at:

If you are in the EEA or UK and believe we have not resolved your concern, you have the right to complain to your local supervisory authority — though we would appreciate the chance to address it first.

This Policy is provided as a thorough starting framework and does not constitute legal advice. schlamm.dev's operators should have it reviewed by qualified counsel and tailored to each App's actual data practices and the jurisdictions in which it operates.

Read the Terms of Service →