Home

Privacy Policy

Last updated: May 14, 2026

DocuVault operates in a highly sensitive category — document management. Privacy is not bolted on; it is at the core of the product.

Data We Collect

  • Email address (for registration and authentication).
  • Uploaded documents and files (yours alone — we have no plaintext access).
  • Anonymous app usage statistics (session duration, screen views).
  • Device information (iOS version, device model, app version) — for troubleshooting.

How We Use Data

  • Account creation and Sign in with Apple / email authentication.
  • Storing and syncing your documents in your encrypted vault.
  • Making content searchable via OCR (optical character recognition).
  • Providing AI Executive Summary and natural-language search.
  • Improving app performance and providing technical support.

AI Services

  • For AI Executive Summary and natural-language search, a small portion of document content is sent to the AI service during processing.
  • Data is transmitted via an encrypted channel.
  • No persistent record is kept on the AI service after processing.
  • DocuVault does not use, sell, or permit the sale of your document content for model training or any other data product.

Data Storage & Residency

  • Backed-up documents are stored encrypted on industry-leading cloud infrastructure (Supabase).
  • Data residency is maintained at EU-based endpoints.
  • All data traffic is performed over TLS 1.2+.
  • Documents in the local archive are stored on your device with AES-256 symmetric encryption.

Data Security

  • End-to-end encrypted transport and encrypted storage.
  • Face ID / Touch ID biometric protection and backup PIN.
  • Automatic lock when the app moves to the background.
  • The DocuVault team has no plaintext access to your document content.

Advertising & Tracking

  • We do not build an ad network or use third-party advertising SDKs.
  • Under Apple's App Tracking Transparency framework, we request no identifiers (IDFA).
  • We do not share content-level data with third-party marketing companies.
  • Our analytics tools collect only anonymous, aggregate metrics.

Your GDPR & KVKK Rights

  • Request information about how your data is processed.
  • Request correction or update of your data.
  • Request deletion of your data.
  • Object to processing or restrict processing activities.
  • To exercise these rights, contact us at destek@appdocuvault.com.

Data Deletion

  • You can delete your account anytime from Profile → Delete Account in the app.
  • When your account is deleted, documents are removed from both your device and the cloud simultaneously.
  • Completion of deletion across all backup layers may take up to 30 days.
  • We confirm completion via email.

Cookies & Local Storage

  • The mobile app does not use cookies.
  • Only local device storage is used for session state.
  • Our website may use basic analytics cookies for service quality.

Policy Changes

  • This policy may be updated from time to time.
  • Significant changes will be announced via in-app notification and/or email.
  • Continuing to use the service after an update constitutes acceptance of the new policy.

Questions?

destek@appdocuvault.com