Privacy Policy.

NorthStudio is an indie developer studio that builds privacy-respecting utility apps for iOS and other platforms. This Privacy Policy describes how we handle information across all NorthStudio apps and our website at northstud.io.

We believe most data created in our apps should never leave your device. The sections below explain how we put that into practice, where the exceptions are, and what you can do about them.

If anything is unclear after you read this, write to us at support@northstud.io. A real person will reply.

Information you provide directly

Anything you type, paste, save, scan, capture, or import into our apps stays on your device by default. We do not see it, we do not transmit it, and we do not store it on our servers.

If you choose to sync content via iCloud, the data moves between your devices using your own Apple ID and iCloud account. We have no access to that sync.

The only information you give us directly that ever reaches us is what you send to support@northstud.io when you write to us, or what you provide if you make a purchase through the App Store or Google Play (which is handled entirely by Apple or Google).

Information collected automatically

To keep our apps stable and useful, we collect a small amount of anonymous technical information:

• ·Device model and operating system version
• ·App version and build number
• ·Crash logs and diagnostic events
• ·Anonymous usage events (for example, how often a feature is opened)
• ·Aggregate performance metrics

This information contains no personal identifiers. It cannot be tied back to you. It is used only to fix bugs, understand which features are useful, and improve future versions.

Permissions our apps may request

Our apps may ask for access to certain features on your device. Each permission is requested only when a specific feature in the app needs it, and you can deny it or revoke it at any time in your device Settings under Privacy and Security.

• ·Camera for scanning documents, codes, or capturing media for in-app features
• ·Photo library for importing or saving media you choose to work with
• ·Microphone for features that record or process audio
• ·Contacts for features that import or share with people you select
• ·Calendar for features that read or add events
• ·Location for features that use approximate location
• ·Notifications for reminders, status updates, or sync confirmations

We never use a permission for anything other than the feature you triggered. Denying a permission only affects the feature that needs it; the rest of the app continues to work.

We want to be explicit about this.

• ✓We never read or transmit the personal content you create, paste, scan, or import into our apps.
• ✓We never sell your data to third parties.
• ✓We never share data with advertisers or ad networks.
• ✓We never track you across other apps or websites.
• ✓We never access permissions beyond what each feature requires.
• ✓We never store passwords, payment credentials, or identity documents on our servers.
• ✓We never build a profile about you for marketing or any other purpose.

If something feels missing from this list, write to us at support@northstud.io and we will clarify.

We only use the limited information we do receive for these purposes:

• ·Operating our apps and the features you use
• ·Responding to support requests sent to support@northstud.io
• ·Diagnosing crashes and improving app stability
• ·Understanding which features are used so we can improve future versions
• ·Complying with legal obligations when required by law

We do not use your information for advertising, profiling, or any commercial purpose outside the operation of our apps.

Most data created within our apps is stored locally on your device. For the majority of features in the majority of our apps, this is the only place the data ever lives.

If you choose to enable iCloud sync, your content moves between your devices through your own Apple ID. We do not have access to your iCloud account.

For the small amount of information that does reach us (anonymous analytics, crash logs, and support correspondence), we follow security practices recommended by Apple and the broader industry:

• ·All network connections use HTTPS with modern TLS
• ·Data at rest in our limited backend systems is encrypted
• ·No password or payment credential is ever transmitted to our servers
• ·Access to support correspondence is limited to the small team that needs it

In the unlikely event of a data breach affecting any system under our control, we will notify affected users via in-app notification and email within 72 hours of becoming aware of it.

Our apps use a small number of third-party services to operate. Each is listed below, with a clear note on what they receive.

Apple and Google platform services

Our apps run on Apple and (in the future) Google platforms, and use standard platform services such as iCloud, Sign in with Apple, the App Store, Google Play, and Apple’s built-in crash reporting via App Store Connect. Your use of these services is governed by Apple’s and Google’s own privacy policies.

Analytics

We use the following anonymous analytics services to understand how our apps perform and which features are used:

• ·Firebase Analytics (Google) for anonymous event counts and aggregated usage data
• ·Mixpanel for anonymous feature-usage analytics
• ·Microsoft Clarity for anonymous interaction and performance insights, with content masked by default

None of these services receive the personal content you create, scan, or import within our apps. They receive anonymous events and aggregated metrics only.

Brand and logo APIs

Some of our apps display recognizable service icons (for example, a logo next to a website or service name). To do this, we may use services such as Logo.dev. We only send public domain names to these services. We never send personal data.

AI processing services

For features that use AI, we prefer on-device processing wherever possible. For example, Apple Intelligence runs on your device, and your content does not leave it. For features that need server-side AI (such as some premium features powered by services like OpenAI), processing happens only when you trigger the feature, and we only send the specific content needed for that request.

Future third parties

If we add any new third-party service in the future, we will update this Privacy Policy to reflect it before that service is enabled.

• ·On-device data stays on your device for as long as you keep the app installed. Uninstalling removes it.
• ·iCloud backup datapersists per your Apple ID and iCloud settings. It is fully under your control and you can delete it at any time from your device’s iCloud settings.
• ·Anonymous analytics are retained for up to 14 months by our analytics providers, then aggregated or deleted per their policies.
• ·Support email correspondence is retained for up to 24 months for service quality and follow-up purposes, then deleted.

You can request deletion of any data we hold about you at any time by emailing support@northstud.io.

You have rights over your personal data regardless of where you live. The exact wording varies by region, but the substance is the same.

General rights

• ·Right to access — request a copy of any data we hold about you
• ·Right to rectification — ask us to correct any inaccurate data
• ·Right to erasure(“right to be forgotten”) — request deletion of your data
• ·Right to data portability — receive your data in a portable format
• ·Right to object to processing — ask us to stop processing your data for specific purposes
• ·Right to withdraw consent at any time for any processing based on consent
• ·Right to lodge a complaint with your local data protection authority

European Union and United Kingdom (GDPR / UK GDPR)

If you are in the EU, EEA, or UK, you have all the rights listed above under the General Data Protection Regulation. Our lawful basis for processing the small amount of data we do collect is our legitimate interest in operating and improving our apps, and in providing support to people who write to us. If you believe we have not handled your data correctly, you have the right to complain to your local supervisory authority.

California (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect, the right to delete that information, the right to correct inaccurate information, and the right to opt out of the sale or sharing of personal information. We do not sell or share personal information for advertising purposes, so the opt-out is effectively the default for everyone.

India (DPDP Act)

If you are in India, you have the right to access information about the personal data we hold, to correct or update it, to request deletion, to nominate someone to exercise these rights in case of incapacity, and to lodge a grievance.

How to exercise your rights

To exercise any of these rights, email support@northstud.io. We will respond within 30 days. There is no charge.

Our apps are rated 4+ in the App Store and are designed for general audiences. The minimal information our apps do collect is anonymous and does not identify any individual user.

We do not knowingly collect personal information from children under 13 (or the equivalent minimum age in your region). If you believe a child has provided personal information to us, please contact support@northstud.io and we will delete it.

We may update this Privacy Policy from time to time as our apps evolve or as laws change. When we make a significant change, we will notify users via in-app notification or email before the change takes effect.

The “Updated” date at the top of this page reflects the most recent revision.

For any privacy questions, requests, or concerns, write to:

support@northstud.io

A real person reads every email. We aim to respond within five business days, usually faster.