Privacy Policy
1. Information We Collect
TipFit ("the Company") collects and uses the following information.
• Anonymous device identifier (UUID): a random identifier generated and stored on your device by the app (account key)
• Automatic: IP address, app usage logs, push token (when permitted)
• User-generated content: design prompts, generated images, display name (auto-generated), any content you choose to enter, and the gallery name (@handle) registered by Pro subscribers
• Community operation data: reports you submit against other members (reason and detail), and block relationships
We do not collect direct identifiers such as email, phone number, or real name.
2. Purpose of Use
• Account identification (anonymous auth via device identifier)
• Providing AI nail design generation
• Subscription billing and entitlement management
• Push notification delivery (optional)
• Moderation of inappropriate content and handling of member reports
• Fraud prevention and security
3. Retention
• While your subscription is active: account info and user content retained
• After expiry/refund: 30-day grace period during which you can view your own content. After that, all data (designs, profile, social relationships) is automatically and permanently deleted
• If you tap "Delete Account": immediate permanent deletion
Payment receipts and other transaction records are retained separately by Apple App Store, Google Play, and RevenueCat as required by applicable laws.
4. Third-Party Processors
• Google Vertex AI / Gemini (USA, Google LLC) — image generation. Only the design prompt is sent; under Google Cloud enterprise terms, not used for AI training.
• Cloudflare R2 (USA, Cloudflare Inc.) — design image storage and global CDN delivery. Transferred via TLS HTTPS at generation time; auto-deleted at the end of the 30-day grace period after subscription expiry.
• Oracle Cloud Infrastructure (Osaka, Japan; Oracle Corporation) — backend database and application server hosting (user metadata, subscriptions, design metadata). Transferred via TLS; auto-deleted at the end of the 30-day grace period after subscription expiry.
• RevenueCat (USA, RevenueCat Inc.) — purchase receipt verification and subscription state management. Processes the anonymous user ID issued by the Company and receipt metadata.
• Apple App Store (USA, Apple Inc.) / Google Play (USA, Google LLC) — in-app payment processing.
• Expo Push Notifications (USA, Expo Inc.) — push delivery, only the token is stored.
• PostHog (USA, PostHog Inc.) — usage analytics, anonymized events.
The Company does not use member designs or prompts to train its own AI models.
5. Your Rights
• Access / correction: edit display name, avatar, etc. on the profile screen
• Deletion: Profile → "Delete Account" for immediate permanent deletion
• Stop processing: revoke push token in OS settings
EU/EEA residents have rights under GDPR Articles 15-22 (access, portability, objection, etc.). California residents have rights under CCPA.
6. Public Information and Search Engine Exposure
The following information, when set to public by the member, is accessible to anyone on the share.tipfit.app domain and may be indexed by search engines.
• Designs marked public (the prompt text used to generate a design is never exposed on external pages or to search engines)
• Display name and avatar
• Gallery name (@handle) and gallery page (share.tipfit.app/u/{handle}) of Pro subscribers
Switching a design to private, deleting it, or having a gallery name reclaimed immediately removes access from those external pages. However, caches and snapshots held by external search engines are outside the Company's control and may remain in search results for some time (you must follow each search engine's cache-removal procedure separately).
7. Minors
We do not accept service use from children under 14 (under 16 in the EU, under 13 in the US). If we become aware of such data, we delete it immediately upon discovery.
8. Security Measures
• No password storage (anonymous auth based on a device identifier)
• All communication TLS-encrypted
• Device session token stored in SecureStore (Keychain/Keystore)
• Sensitive identifiers handled server-side, never exposed to client
9. Data Protection Officer
The Company designates the person in overall charge of personal data processing as follows.
• Title: Data Protection Officer
• Contact: help@tipfit.app
In addition to the contact above, residents of the Republic of Korea may also report privacy violations to the Korea Internet & Security Agency (KISA) Personal Information Infringement Report Center (privacy.kisa.or.kr / 118).