Privacy Policy
Last Updated: April 4, 2026
1. Introduction
This Privacy Policy explains how APPCODIX LTD ("Company", "we", "us"), a company registered in Cyprus, located at Spyrou Kyprianou & Agias Fylaxeos, 182 KOFTEROS BUSINESS CENTRE, 3083 Limassol, Cyprus, collects, uses, shares, and protects your information when you use the Homind application ("App").
By using the App, you agree to the collection and use of your information as described in this Privacy Policy. If you do not agree, please do not use the App.
This Privacy Policy should be read together with our Terms of Use.
2. Information We Collect
2.1 Information You Provide
- Photos and Images: When you use the App's design features, you upload photos of rooms or spaces ("Input Content"). The App processes these photos through AI providers to generate design visualizations ("Output Content").
- Support Communications: If you contact us for support, we may collect your email address and the content of your communication.
2.2 Information Collected Automatically
When you use the App, certain information is collected automatically:
- Device Information: Device type, model, operating system and version, screen resolution, device language, and time zone.
- Device Identifiers: Identifier for Advertisers (IDFA), Identifier for Vendors (IDFV), and other unique device identifiers.
- Usage Data: App interaction data including features used, screens viewed, session duration, generation types selected, and in-app events.
- Network Information: IP address, network type (Wi-Fi, cellular), and carrier information.
- Location Data: Approximate location derived from your IP address (country, region, city). We do not collect precise GPS location.
- Purchase Data: Subscription status, purchase history, and transaction identifiers (processed by Apple and RevenueCat).
- Crash Reports and Diagnostics: Error logs, crash data, and performance metrics.
2.3 Information We Do NOT Collect
- We do not require account registration. The App uses anonymous, device-based identification.
- We do not collect your name, email address, phone number, or other personal contact information unless you contact our support team.
- We do not access your photo library. You select and upload specific photos individually.
3. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Data Used |
|---|---|
| Provide AI design generation | Input Content (photos) |
| Deliver and maintain the App | Device info, usage data |
| Process subscriptions and payments | Purchase data, device identifiers |
| Analyze and improve App performance | Usage data, crash reports, analytics |
| Evaluate and improve AI output quality | Input Content, Output Content |
| Send push notifications (with your consent) | Device tokens |
| Measure marketing effectiveness | Device identifiers, attribution data |
| Prevent fraud and enforce Terms | Device info, usage patterns |
| Respond to support requests | Email, communication content |
4. How We Handle Your Photos
Your photos are critical to the App's functionality. Here is exactly what happens to them:
4.1 Processing
When you upload a photo, it is:
- Uploaded to our servers hosted on Hetzner (Germany/Finland).
- Stored on Cloudflare R2 cloud storage.
- Sent to one of our AI providers (Google Gemini, OpenAI, xAI, or Runware/Flux) for processing.
- Generated results (Output Content) are stored on Cloudflare R2 and delivered to you through the App.
4.2 Retention
- Active subscribers: Your Input Content and Output Content are retained on our servers for the duration of your subscription and are deleted upon subscription cancellation.
- Inactive subscribers: If your subscription lapses, your data is retained for up to 6 months and then permanently deleted.
- AI provider processing: Photos sent to AI providers are processed in real-time. We do not control the retention policies of third-party AI providers. Please refer to their respective privacy policies (see Section 6).
4.3 Quality Improvement
We may use Input Content and Output Content to evaluate, analyze, and improve the quality of the App's AI-generated results. This includes reviewing outputs for accuracy, visual quality, and relevance to improve our prompt engineering and service quality.
4.4 What We Do NOT Do With Your Photos
- We do not use your photos to identify you or any individuals in the photos.
- We do not use your photos for advertising or targeted marketing.
- We do not sell your photos to third parties.
- We do not publicly share your photos with your identity attached without your consent.
5. Third-Party Services
We use the following third-party services to operate the App. Each service may collect and process data according to its own privacy policy:
5.1 AI Processing Providers
| Provider | Purpose | Privacy Policy |
|---|---|---|
| Google (Gemini) | AI image generation | privacy.google.com |
| OpenAI | AI image generation | openai.com/privacy |
| xAI | AI image generation | x.ai/legal/privacy-policy |
| Runware (Flux) | AI image generation | runware.ai/privacy-policy |
Your Input Content (photos) is transmitted to these providers for processing. We recommend reviewing their privacy policies for details on how they handle data, including whether they use submitted content for model training.
5.2 Analytics and Attribution
| Provider | Purpose | Privacy Policy |
|---|---|---|
| Firebase Analytics (Google) | App analytics and crash reporting | firebase.google.com/support/privacy |
| Amplitude | Product analytics | amplitude.com/privacy |
| Adjust | Mobile attribution and analytics | adjust.com/terms/privacy-policy |
5.3 Subscription Management
| Provider | Purpose | Privacy Policy |
|---|---|---|
| RevenueCat | Subscription and purchase management | revenuecat.com/privacy |
5.4 Messaging
| Provider | Purpose | Privacy Policy |
|---|---|---|
| OneSignal | Push notifications | onesignal.com/privacy_policy |
5.5 Infrastructure
| Provider | Purpose | Location |
|---|---|---|
| Hetzner | Server hosting | Germany / Finland |
| Cloudflare | File storage (R2) and CDN | Global |
6. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data based on the following legal grounds:
- Performance of a contract: Processing necessary to provide the App's services, including AI generation and subscription management (Art. 6(1)(b) GDPR).
- Legitimate interests: Analytics, quality improvement, fraud prevention, and marketing measurement, where our interests do not override your rights (Art. 6(1)(f) GDPR).
- Consent: Push notifications and optional data collection where you have given explicit consent (Art. 6(1)(a) GDPR). You may withdraw consent at any time.
- Legal obligation: Processing required to comply with applicable laws (Art. 6(1)(c) GDPR).
7. Data Sharing
We do not sell your personal data. We share your information only in the following circumstances:
- Third-party service providers: As described in Section 5, to operate and improve the App.
- Legal requirements: When required by law, regulation, legal process, or governmental request.
- Protection of rights: To enforce our Terms of Use, protect our rights, safety, or property, or the rights, safety, or property of others.
- Business transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your data may be transferred to the acquiring entity.
- Aggregated or anonymized data: We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you.
8. International Data Transfers
Your data may be transferred to and processed in countries outside your country of residence, including the United States and countries within the European Union. These transfers are necessary to provide the App's services through our third-party providers.
Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission;
- Adequacy decisions by the European Commission;
- Other legally recognized transfer mechanisms.
9. Data Retention
| Data Type | Retention Period |
|---|---|
| Input Content (photos) | Duration of active subscription; up to 6 months after subscription ends |
| Output Content (generated images) | Duration of active subscription; up to 6 months after subscription ends |
| Device identifiers and usage data | Up to 24 months from last App use |
| Analytics data | As determined by each analytics provider |
| Support communications | Up to 12 months after resolution |
| Crash reports | Up to 12 months |
After the retention period expires, data is permanently deleted or anonymized.
10. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal data:
- Right of Access: Request a copy of the personal data we hold about you.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure: Request deletion of your personal data ("right to be forgotten").
- Right to Restriction: Request that we restrict the processing of your data.
- Right to Data Portability: Request a copy of your data in a structured, machine-readable format.
- Right to Object: Object to processing based on legitimate interests.
- Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time.
- Right to Lodge a Complaint: File a complaint with the Office of the Commissioner for Personal Data Protection in Cyprus or your local supervisory authority.
To exercise any of these rights, please contact us at support@appcodix.com. We will respond to your request within 30 days.
11. Opting Out
11.1 Push Notifications
You can disable push notifications at any time through your device settings: Settings > Notifications > Homind > toggle off
11.2 Tracking and Advertising Identifier
You can limit tracking on iOS: Settings > Privacy & Security > Tracking — disable "Allow Apps to Request to Track"
You can reset or limit your advertising identifier: Settings > Privacy & Security > Apple Advertising — toggle off "Personalized Ads"
11.3 Analytics
Some analytics data collection is essential for App functionality. If you wish to fully opt out, you may stop using the App and request deletion of your data.
12. Data Security
We implement reasonable technical and organizational measures to protect your data, including:
- Encryption of data in transit (TLS/SSL);
- Secure cloud infrastructure with access controls;
- Regular security reviews and updates;
- Limiting access to personal data to authorized personnel only.
However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.
13. Children's Privacy
The App is not intended for anyone under the age of 18. We do not knowingly collect personal data from children under 18. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly.
If you believe a child under 18 has provided us with personal data, please contact us at support@appcodix.com.
14. U.S. State Privacy Rights
If you are a resident of California, Virginia, Colorado, Connecticut, Utah, or other U.S. states with applicable privacy laws, you may have additional rights:
- Right to Know: What personal information we collect, use, and share.
- Right to Delete: Request deletion of your personal information.
- Right to Opt-Out of Sale: We do not sell your personal information.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
California residents (CCPA/CPRA): In the preceding 12 months, we have collected the categories of information described in Section 2. We do not sell personal information as defined by the CCPA. We do not use or disclose sensitive personal information for purposes other than those permitted by the CCPA.
To exercise your rights, contact us at support@appcodix.com.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this document. We encourage you to review this Privacy Policy periodically.
Material changes may be communicated through the App or other appropriate means.
16. Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, please contact us:
APPCODIX LTD Spyrou Kyprianou & Agias Fylaxeos, 182 KOFTEROS BUSINESS CENTRE 3083 Limassol, Cyprus
Email: support@appcodix.com
For GDPR-related inquiries, you may also contact the Office of the Commissioner for Personal Data Protection in Cyprus at www.dataprotection.gov.cy.