Privacy Policy — OurHand

      Our commitment: OurHand is built with privacy at its core. We never sell your data, never display advertisements, and collect only what is necessary for the app to function.
    

1. Who We Are

OurHand ("we", "our", "us") is a watch collection management app operated from the Netherlands. This Privacy Policy explains how we collect, use, and protect your personal data when you use our iOS app and related services.

2. Data We Collect

2.1 Account Data

When you create an account, we collect your email address and a securely hashed password. This is required for authentication.

2.2 Collection Data

Data you enter about your watches, including brand, model, reference number, photos, wear logs, service records, and documents. This is stored on our servers to enable app functionality across devices.

2.3 Sensitive Collection Data

Certain fields receive additional protection with application-layer encryption:

Serial numbers
Purchase prices and sale prices
Seller information
Personal notes

2.4 Subscription Data

Subscription status is managed by RevenueCat and Apple's App Store. We do not store or process credit card information directly. Payment processing is handled entirely by Apple.

2.5 Device Data

We store a Firebase Cloud Messaging token on your account to enable push notifications. We do not collect device identifiers, IP addresses, or location data beyond what is necessary for the service to function.

3. How We Use Your Data

App functionality: Storing and displaying your watch collection, calculating valuations, sending alerts and reminders.
Valuation services: We send watch brand, model, and reference data (never serial numbers or prices) to TheWatchAPI to retrieve market pricing.
AI identification: When you use the AI watch recognition feature, a cropped photo of the watch dial is sent to OpenAI's GPT-4o-mini model with store: false set. No personal data, serial numbers, or prices are included in AI requests.
Currency conversion: We fetch exchange rates from the Frankfurter API (European Central Bank data). No personal data is sent.
Notifications: Price alerts, maintenance reminders, and optional daily wear reminders via Firebase Cloud Messaging.
Weekly digest: If opted in, a summary email containing only aggregated data (total value, percentage changes) — never serial numbers, photos, or sensitive details.

4. Third-Party Services

We use the following third-party services:

Xano (backend hosting) — stores your account and collection data on AWS infrastructure.
RevenueCat — manages subscription status. Receives your anonymous user ID and subscription events.
TheWatchAPI — receives watch brand, model, and reference for pricing data. No personal information sent.
OpenAI — receives cropped watch dial photos only (with store: false). No personal data sent.
Frankfurter API — receives no personal data. Used for exchange rate lookups only.
Firebase Cloud Messaging — delivers push notifications to your device.

5. What We Do NOT Do

      We never sell your data to third parties.
We never display advertisements to any user, free or paid.
We never share your collection data for marketing purposes.
We do not use analytics or tracking SDKs beyond what is necessary for app functionality.
We do not monetize your data in any way. Our sole revenue source is premium subscriptions.

    

6. Data Protection

We use industry-standard security practices:

Encryption in transit: All API communication uses TLS 1.3.
Encryption at rest: All data is encrypted at the database provider level. Sensitive fields (serial numbers, prices) have an additional application-layer encryption.
Authentication: JWT-based authentication with token expiry.
Biometric lock: Optional Face ID / Touch ID protection within the app.

We are transparent that this is not an end-to-end encrypted system. The server can access operational metadata (brands, models) for app functionality. For full details, see our PRD Security section.

7. Data Retention

Your data is retained for as long as your account is active. If your subscription lapses, we keep all data intact — we never delete your collection because a payment lapsed. If you delete your account, all associated data is permanently removed.

8. Your Rights

Under the GDPR (as you and we are based in the EU), you have the right to:

Access your data — export your full collection at any time via CSV or PDF.
Rectify your data — edit any information in the app.
Delete your data — delete your account and all associated data.
Portability — export your collection in standard formats.
Withdraw consent — disable notifications or digest emails at any time.

9. Children

OurHand is not intended for use by children under the age of 16. We do not knowingly collect data from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. The "last updated" date at the top reflects the most recent revision.

11. Contact

For privacy-related questions or to exercise your rights, contact us at:
privacy@ourhand.app