Privacy Policy for App Sprint ASO

Effective Date: March 15, 2026

1. Introduction

This Privacy Policy describes how Tap & Swipe ("we", "us", "our") collects, uses, and protects information when you use App Sprint ASO ("App"), a macOS desktop application for App Store Optimization. We are committed to protecting your privacy and being transparent about our data practices.

2. Data We Collect

2.1 License & Account Data

When you purchase and activate the App, we collect:

  • License key: Your unique license identifier, used for activation and access control
  • Machine identifier: A device-specific identifier bound to your computer upon first activation
  • Email address: Collected by Stripe during purchase for billing and communication

2.2 Payment & Subscription Information

Payment is processed entirely by Stripe. We do not store or have access to your credit card number or full payment details. Stripe may collect billing name, address, and payment method information in accordance with their privacy policy.

We store your Stripe customer ID and subscription status to manage your recurring billing and license activation. Subscription data includes your plan type (Solo or Pro), billing interval (monthly or yearly), and payment status.

2.3 Crash Reports

We use Sentry for crash reporting. When the App encounters an error, Sentry may collect:

  • Error messages and stack traces
  • Device and operating system information
  • App version

Crash reports do not include your personal data, keywords, projects, or credentials.

3. Data Stored Locally Only

The following data is stored exclusively on your device and is never transmitted to our servers:

  • Keywords, keyword lists, and research projects
  • App Store Connect credentials
  • Apple Search Ads API keys and campaign data
  • App metadata and optimization history
  • Application preferences and settings

This data remains under your control. We have no access to it.

4. How We Use Data

We use the collected data for the following purposes:

  1. License validation: To verify your license key and device binding upon activation
  2. Subscription management: To manage your recurring billing, activate/deactivate your license based on payment status, and process plan changes
  3. Crash reporting: To identify and fix bugs and improve App stability
  4. Billing: To process payments via Stripe
  5. Communication: To send important updates about your subscription or the App (only to your billing email)

We do not use your data for advertising, profiling, or any purpose not listed above.

5. Third-Party Services

We use the following third-party services:

Stripe

  • Purpose: Payment processing and subscription management
  • Data shared: Email, billing information, payment method
  • Privacy policy: https://stripe.com/privacy

Sentry

  • Purpose: Crash reporting and error tracking
  • Data shared: Error logs, device information, App version
  • Privacy policy: https://sentry.io/privacy/

Railway

  • Purpose: Server hosting for license validation API
  • Data shared: License key and machine identifier (for activation requests)
  • Privacy policy: https://railway.com/legal/privacy

6. Cookies

The App does not use cookies. Our website does not use tracking cookies. The App stores preferences and data using local storage on your device only.

7. Data Retention

  • Payment records: Retained for 5-10 years as required by tax and accounting regulations
  • Crash reports: Automatically deleted after 90 days
  • License records: Retained for the duration of your subscription and a reasonable period after cancellation
  • Local data: Remains on your device until you delete it; uninstalling the App removes application data

8. Your Rights (GDPR)

As we are based in France and comply with the General Data Protection Regulation (GDPR), you have the following rights:

  • Right of access (Article 15): Request a copy of the personal data we hold about you
  • Right to rectification (Article 16): Request correction of inaccurate or incomplete data
  • Right to erasure (Article 17): Request deletion of your personal data ("right to be forgotten")
  • Right to restriction (Article 18): Request that we limit how we use your data
  • Right to data portability (Article 20): Receive your data in a structured, machine-readable format
  • Right to object (Article 21): Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent at any time without affecting prior processing
  • Right to lodge a complaint: File a complaint with the CNIL or your local supervisory authority

To exercise any of these rights, contact us at [email protected] with "GDPR Request" in the subject line. We will respond within 30 days of receipt of your request.

Data Protection Authority

For users in France, the supervisory authority is:

CNIL (Commission Nationale de l'Informatique et des Libertés)

  • Website: https://www.cnil.fr
  • Address: 3 Place de Fontenoy, TSA 80715, 75334 PARIS CEDEX 07, France

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • All communications between the App and our servers use HTTPS/TLS encryption
  • Server infrastructure is hosted on secure, managed platforms
  • License data is stored in a secured PostgreSQL database
  • Access to personal data is limited to authorized personnel only

No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

10. International Transfers

Your data may be processed in the United States by our third-party service providers:

  • Stripe (United States): Payment processing
  • Sentry (United States): Crash reporting
  • Railway (United States): Server hosting

These transfers are conducted in compliance with GDPR, using appropriate safeguards such as Standard Contractual Clauses (SCCs) or the EU-U.S. Data Privacy Framework.

11. Children

The App is not intended for children under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the "Effective Date" above
  • Notifying you via email if required by law

Your continued use of the App after changes become effective constitutes acceptance of the revised policy.

13. Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: [email protected] Entity: Tap & Swipe App: App Sprint ASO Location: France

By using App Sprint ASO, you acknowledge that you have read and understood this Privacy Policy.