Privacy Policy

Last Updated: May 6, 2026

Effective Date: May 6, 2026

1. Introduction

Welcome to TopoXY ("we," "our," or "us"). This Privacy Policy explains how the TopoXY mobile application (the "App") collects, uses, shares, and protects information when you use our coordinate conversion and surveying tools.

By using TopoXY, you agree to the practices described in this policy. We comply with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Apple's App Store privacy requirements.

2. Information We Collect

2.1 Information You Provide

• Coordinates and Calculations: Coordinates you enter for conversion (Stereo70 ↔ WGS84), distance, area, perimeter, and slope calculations. Stored locally on your device only.
• Subscription Information: When you subscribe to TopoXY Pro, your purchase is processed by Apple via StoreKit. We do not receive your payment details.

2.2 Information Collected Automatically

• Device Information: iOS version, device model, app version, language and region settings.
• Usage Data: Anonymous app usage statistics (e.g., features used, screens viewed, conversion counts) via Firebase Analytics.
• Crash Reports: Anonymous crash logs and stack traces via Firebase Crashlytics.
• Advertising Identifier (IDFA): If you grant permission via Apple's App Tracking Transparency prompt, we and our advertising partners may use your device's IDFA for personalised ads.
• Approximate Location (via IP address): Used by ad networks to serve geographically relevant ads. We do not store IP addresses ourselves.

2.3 Location Data

TopoXY may request access to your device's location to display your current GPS coordinates for surveying tasks. This is optional. Location data is processed locally and never transmitted to our servers. You can revoke this permission anytime via iOS Settings → TopoXY → Location.

3. Third-Party Services

3.1 Google AdMob (Advertising)

We use Google AdMob to display advertisements. AdMob may collect:

• Advertising Identifier (IDFA), if granted via ATT
• IP address (for geographic ad targeting)
• Ad interaction data (impressions, clicks)
• Device information (model, OS version, language)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, ad personalisation requires your consent, collected via Google's User Messaging Platform (UMP) on first launch. When consent is denied or limited, only contextual (non-personalised) advertisements are served.

Google's privacy policy: https://policies.google.com/privacy

3.2 Google User Messaging Platform (UMP)

For GDPR-compliant consent management, we use Google's UMP SDK. It presents a consent form to users in regulated regions before any personalised advertisement is served. You can update or withdraw your consent anytime via Settings → Privacy Choices within the app.

3.3 Firebase Analytics (Google LLC)

We use Firebase Analytics to understand how users interact with TopoXY in aggregate (e.g., which features are used most, where users drop off). Data collected includes anonymous event names, screen views, session duration, app version, and approximate device characteristics. No personally identifiable information is collected.

Firebase privacy: https://firebase.google.com/support/privacy

3.4 Firebase Crashlytics (Google LLC)

We use Firebase Crashlytics to collect anonymous crash reports including the device model, OS version, app version, and stack trace at the moment of the crash. This helps us identify and fix bugs. No personally identifiable information is collected.

3.5 RevenueCat (Subscription Management)

We use RevenueCat to manage TopoXY Pro subscriptions. RevenueCat receives subscription receipts from Apple's StoreKit, including:

• Anonymous user identifier (assigned by RevenueCat)
• Subscription status and history
• Receipt validation tokens from Apple

RevenueCat does not have access to your name, email, or payment details. RevenueCat's privacy policy: https://www.revenuecat.com/privacy

3.6 Apple StoreKit (Payment Processing)

Subscription purchases are processed by Apple via StoreKit. Apple receives your payment information; we do not. Receipt validation is handled through RevenueCat. See Apple's Privacy Policy for details.

3.7 Mapbox (Map Tiles & Elevation)

Map and elevation data are provided by Mapbox. When you use map features, anonymous tile requests are sent to Mapbox containing approximate location and zoom level. Mapbox privacy.

3.8 ANCPI (Romanian Government Imagery)

For Romanian ortophoto imagery, TopoXY queries the National Agency for Cadastre and Real Estate Publicity (ANCPI). Only the requested geographic tile is sent; no personal information.

4. How We Use Your Information

• Provide the App's core features (coordinate conversion, distance/area calculations, map display)
• Process subscriptions (TopoXY Pro)
• Display advertisements (free version only)
• Improve the App via anonymous analytics and crash reports
• Comply with legal obligations (GDPR, CCPA, Apple guidelines)

We do NOT:

• Sell your personal information to third parties
• Use your coordinates or calculations for any purpose other than displaying them to you
• Track you across other apps or websites (unless you grant ATT consent for advertising partners)

5. Data Storage

Coordinates, calculations, and app preferences are stored locally on your device using iOS UserDefaults and SwiftData. They never leave your device through our systems.

Anonymous analytics and crash reports are stored on Google's Firebase servers. Subscription data is stored on Apple's servers and replicated to RevenueCat's servers (United States).

6. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights regarding your personal data under the GDPR:

• Right of access (Article 15) — request a copy of personal data we hold about you
• Right to rectification (Article 16) — correct inaccurate or incomplete data
• Right to erasure (Article 17) — request deletion of your data ("right to be forgotten")
• Right to restrict processing (Article 18) — limit how we use your data
• Right to data portability (Article 20) — receive your data in a machine-readable format
• Right to object (Article 21) — opt out of personalised advertising or analytics
• Right to withdraw consent — change advertising consent anytime via Settings → Privacy Choices in the App
• Right to lodge a complaint (Article 77) with your national data protection authority

To exercise any of these rights, email us at iosallapps@icloud.com. We will respond within 30 days as required by GDPR Article 12.

7. Your Rights (CCPA / California)

California residents have the right to know what personal information we collect, request deletion, and opt out of the "sale" of personal information. We do not sell personal information. To exercise CCPA rights, email iosallapps@icloud.com.

8. App Tracking Transparency (ATT)

On iOS 14.5 and later, Apple requires apps to request permission before tracking users across other apps and websites. The first time you open TopoXY, iOS will ask whether to allow tracking. Your choice is stored by iOS and we respect it. If you decline, only non-personalised ads will be shown. You can change this anytime via iOS Settings → Privacy & Security → Tracking → TopoXY.

9. How to Revoke Consent

• Advertising consent (UMP): Open the App → Settings → Privacy Choices → Update Privacy Choices.
• Tracking (ATT): iOS Settings → Privacy & Security → Tracking → TopoXY (toggle off).
• Location: iOS Settings → TopoXY → Location.
• Analytics: Email iosallapps@icloud.com to request opt-out from Firebase Analytics.
• Subscription cancellation: iOS Settings → [Your Apple ID] → Subscriptions → TopoXY Pro.

10. Children's Privacy

TopoXY is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact iosallapps@icloud.com, and we will take steps to delete such information.

11. Data Security

We use industry-standard security measures to protect your data:

• HTTPS encryption for all network requests
• iOS sandboxing for local data storage
• Apple's App Tracking Transparency framework
• Anonymous identifiers (IDFV/RevenueCat anon ID) instead of personally identifiable info

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we work continuously to strengthen our protections.

12. International Transfers

Your data may be processed by service providers located outside the EEA (e.g., Google in the United States). When this occurs, we ensure adequate safeguards are in place under GDPR Article 46, including Standard Contractual Clauses approved by the European Commission.

13. Changes to This Privacy Policy

We may update this Privacy Policy when we add new features or change our practices. When we make material changes:

• We will update the "Last Updated" date above
• We will notify you via an in-app message or App Store update notes
• The updated policy will be posted at https://topoxyapp.com/privacy.html

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy:

Email: iosallapps@icloud.com
Website: https://topoxyapp.com

We will respond to your inquiry within 30 days (GDPR Article 12).

Your Privacy Matters.
TopoXY is built with privacy and GDPR compliance at its core.