Privacy Policy

Last updated: May 2026

1. Data Controller

The data controller within the meaning of the General Data Protection Regulation (GDPR) is:

2. Legal Framework & GDPR Compliance

AP Vault is operated by mttecc, a company based in Germany and therefore fully subject to the General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679 — as well as the German Federal Data Protection Act (BDSG).

As a user, this means:

• Your rights under the GDPR (access, rectification, erasure, objection, and others) apply in full, regardless of which EU or EEA country you are located in.
• We process personal data only on the basis of a lawful legal ground pursuant to Art. 6 GDPR. Since AP Vault does not collect or store data on its own servers, no active processing of personal data by us takes place.
• We are committed to full compliance with the GDPR across the European Union and the European Economic Area.
• The competent supervisory authority is the State Commissioner for Data Protection of Lower Saxony (LfD Niedersachsen), Prinzenstraße 5, 30159 Hannover, Germany — www.lfd.niedersachsen.de. You have the right to lodge a complaint with this authority at any time.

3. What Data Is Processed?

AP Vault processes only data that you enter yourself — such as photos, text, and information about documents and valuables. This data does not leave your device through the app.

Local Storage

All data you enter is stored locally on your iPhone. AP Vault does not operate its own servers and does not transmit vault content to the internet.

iCloud Backup (Optional)

If you have enabled iCloud backup on your iPhone, the operating system may automatically back up app data to your personal iCloud. This is handled entirely by Apple and is subject to Apple's Privacy Policy. AP Vault has no access to your iCloud data.

Face ID / Touch ID

Access to the app can be secured with Face ID or Touch ID. Biometric data is processed exclusively by iOS and never leaves your device. AP Vault only receives the authentication result (success / failure).

4. Subscription and Payment Data

AP Vault offers a paid subscription (€4.99 / month, including a 7-day free trial). All payment processing is handled exclusively through the Apple App Store.

• AP Vault receives no credit card details or banking information
• AP Vault receives no full names or billing addresses
• Apple only informs AP Vault whether an active subscription exists (yes/no)
• Your payment data is subject to Apple's Privacy Policy

Cancelling Your Subscription

You can cancel your subscription at any time via iPhone Settings: Settings → Apple ID → Subscriptions → AP Vault. Cancellation takes effect at the end of the current billing period.

5. No Analytics or Tracking

AP Vault does not use any third-party analytics or tracking services (e.g. Google Analytics, Firebase, Crashlytics). No usage profiles are created and no behavioral data is collected.

6. No Third-Party Sharing

AP Vault does not share any personal data with third parties, as no such data is collected in the first place.

7. Your Rights

Under the GDPR, you have the following rights:

• Right of Access (Art. 15 GDPR): You have the right to know whether and what data is stored about you.
• Right to Rectification (Art. 16 GDPR): You may request correction of inaccurate data.
• Right to Erasure (Art. 17 GDPR): You may request deletion of your data. Within the app, you can delete all data at any time, or simply uninstall the app.
• Right to Restriction of Processing (Art. 18 GDPR)
• Right to Object (Art. 21 GDPR)
• Right to Lodge a Complaint with a supervisory data protection authority.

8. Data Security

Your vault data on the device is protected by iOS device encryption and app protection (Face ID / Touch ID / passcode). AP Vault relies fully on the security mechanisms provided by the iOS ecosystem.

9. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy as needed. The current version is always available on this page. Users will be notified within the app of any significant changes.

10. Contact