Privacy Policy

App Preview Kit is a developer tool that generates compliant App Store and Google Play screenshot sets from a product URL. It is currently operated by an individual founder; the legal entity will be incorporated and named here before general availability.

References to "we," "us," or "our" mean the operator of App Preview Kit. References to "you" mean the person or company using the service.

When you request caption generation, your product URL is forwarded to an AI language model via Vercel AI Gateway. The gateway is configured with zero-data-retention (ZDR) — every provider we route through has contractually agreed not to store, log, or use your content for any purpose after the inference call returns.

We do not use your uploaded screenshots, pasted URLs, or generated captions to fine-tune or pre-train any machine-learning model — in-house or via a third party — without your explicit written consent.

Under the EU AI Act (effective August 2026 for high-risk systems), App Preview Kit’s caption-generation use case falls below the high-risk threshold. AI-generated outputs are suggestions that you review and approve before submission. You are responsible for ensuring all copy complies with Apple App Store Review Guidelines and Google Play policies.

We set one category of cookie: essential session cookies managed by Supabase Auth. These are required for authentication and cannot be disabled while you are signed in. They contain an encrypted session token — no personal data in plain text.

We do not set analytics cookies, advertising cookies, or any third-party tracking cookies. If we add analytics in the future, we will update this policy and present a consent mechanism before setting any non-essential cookies.

Some sub-processors operate outside the European Economic Area (EEA). Where data is transferred to a third country without an adequacy decision, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or equivalent safeguards, as the transfer mechanism.

You can request details of the specific safeguards in place for any transfer by emailing privacy@apppreviewkit.com.

If you are a California resident, the California Consumer Privacy Act as amended by CPRA (effective January 1, 2026) grants you additional rights.

We do not sell or share your personal information for cross-context behavioral advertising. We do not use sensitive personal information beyond what is necessary to provide the service.

Categories of personal information we collect: Identifiers (email address); Commercial information (subscription tier, billing status); Internet or electronic network activity (API request logs); Geolocation data (country-level, derived from IP at authentication only — not stored separately).

To exercise your CCPA rights (know, delete, correct, opt-out, non-discrimination), email privacy@apppreviewkit.com with the subject line "CCPA Request."

We use industry-standard safeguards: TLS 1.2+ encryption for all network traffic, encryption at rest for database storage, row-level access controls so each workspace can only access its own data, and short-lived signed URLs for file delivery — no guessable asset paths.

Secrets are never embedded in client-side JavaScript. We maintain an audit log of administrative actions. In the event of a personal data breach that is likely to result in a risk to individuals, we will notify affected users and the relevant supervisory authority within 72 hours of becoming aware.

To report a security vulnerability, please email security@apppreviewkit.com.

We may update this policy from time to time. For material changes — those that expand what data we collect, introduce new processing purposes, or reduce your rights — we will give you at least 30 days’ advance notice via an in-product banner and email.

The effective date at the top of this page is updated with each revision. Continued use of the service after the effective date of a revised policy constitutes acceptance of the changes.