Skip to content
Get in Touch
Back to Project

LootFinder AI Privacy Policy


Effective Date: April 27, 2026

1. Information Collection and Use


We adhere to the principle of data minimization, collecting only what is necessary for AI-powered analysis, inventory management ("Vault"), and the energy-based usage system.

1.1. Personal Information (Account Data)


To synchronize your "Loot Passports" and progress across devices, we use authentication services:
  • Email and Social Login: We receive your email address and unique identifier when you register via Google or Apple ID.
  • Anonymous Accounts: You may use the Service anonymously; in this case, your data is linked to a unique identifier for your specific device.

1.2. Visual Data (Images) and Metadata


This is the core functionality of the Service.
  • Processing: When you perform a "Scan," the image is uploaded to secure cloud storage and transmitted via encrypted protocols to AI models (such as Google Gemini) for identification.
  • Hosting: All visual data and scan metadata (descriptions, prices) are hosted on Supabase infrastructure (PostgreSQL database and Object Storage).
  • Retention Logic:

* Free Users: Images and scan history are automatically deleted after 30 days of storage.
* Premium Users: Data is stored indefinitely as long as the subscription remains active or until the user manually deletes it.

1.3. Analytics and Diagnostics


We use specialized tools to monitor Service stability:
  • PostHog & Firebase: We record anonymous data on feature usage and technical performance.
  • Data Nature: This data is diagnostic and does not include your personal photos or identified items.

2. Data Transfer to Third Parties


To provide AI-driven features, we partner with the following providers:
  • Google Gemini (AI): Photos are transmitted for visual analysis but are not used to train general models without consent.
  • Tavily (Search): Used to find market prices based on item descriptions.
  • Adapty: Manages subscription states and energy balances.
  • Google AdMob: Displays ads for free users to refill "Energy."

3. Data Security


  • Encryption: Data transmission between the Application, our servers, and AI models is encrypted using HTTPS/TLS protocols.
  • Private Storage: All photos in cloud storage are kept in private buckets, accessible only via temporary, time-limited Signed URLs.

4. Data Deletion and User Rights


You have full control over your information and can exercise your right to be forgotten through the following methods:

4.1. In-App Deletion (Primary Method)


  • Manual Scan Deletion: You can delete individual items or clear your entire history within the "Vault" or "History" screen at any time.
  • Full Account Deletion: You can initiate permanent account deletion via Settings > Profile > Delete Account. This action triggers an immediate and irreversible removal of all your data from our database and cloud storage, including your email, energy balance, and all saved "Loot Passports."

4.2. Web-Based/Email Request (Alternative Method)


In compliance with global App Store requirements, users who have uninstalled the application or cannot access it may request data deletion remotely:
  • Email Request: Send an email from your registered address to illia.cherednychenko@sinigma.net with the subject "Data Deletion Request."
  • Process: Upon verification of ownership, all associated data will be purged from our servers within 7 business days.

4.3. Automated Deletion


For users on the Free Tier, our system performs an automated cleanup of scan data (images and results) that has reached the 30-day age limit.

5. Contact Information


For any questions regarding the location of your data or to exercise your privacy rights, please contact us at:
Email: illia.cherednychenko@sinigma.net

© 2026 Sinigma Creality Labs. All rights reserved.