← Back to Home

LavaChat Privacy Policy

Effective: 2025-08-12

If you have questions about this policy, contact: alwayskeepcoding@outlook.com

1. Introduction & Scope

LavaChat is a local iOS application for iOS 16 and later. We minimize data collection and transmission. We operate no servers and do not conduct behavioral tracking or profiling. This policy explains how LavaChat handles and protects data during your use.

2. What We Do/Do Not Collect

  • Not collected: Third-party analytics/crash services (e.g., Firebase, Sentry, TelemetryDeck), advertising identifiers (IDFA/ATT).
  • Subscriptions & payments: Fully handled by Apple StoreKit. LavaChat does not access your card information.
  • CloudKit usage: Used only when you explicitly share via iCloud to generate a share link; no automatic cloud sync.
  • LLM calls: Only via user-provided API keys to third-party model providers; your chat content and attachments are transmitted for processing when you instruct the app to do so.
  • Logging: Production builds do not print or record request bodies/chat content. Any error logging is minimized and stored locally only; nothing is sent to any server.

3. Data We Process & Sources

  • Data you provide: Chat text, images/files you select, model and session configurations.
  • Device permissions:
    • Camera (scanning/capture): Accessed only when you authorize and use related features.
    • Photo Library (selection): Accessed only when you authorize and select images.
  • Subscriptions: Status and transactions are supplied by Apple via StoreKit; we do not hold payment-identifiable information.

4. How We Process & Where Stored

  • Local storage: App data is stored on your device (e.g., Core Data, local documents/temp directories), preferences in UserDefaults, and API keys in Keychain.
  • Third-party LLM providers: When you initiate requests, relevant content is sent over encrypted connections (HTTPS) to your configured providers. Each provider’s handling and storage are governed by its own privacy policy and terms.
  • iCloud sharing (CloudKit): Only when you explicitly share, we serialize ShareableData to your iCloud record(s) to create a share link. You can accept/stop sharing at any time.

5. Third Parties & Cross-border Transfers

You may configure third-party model providers of your choice to process requests. For model inference and storage, your data may be transferred to servers outside your jurisdiction. Review and accept your chosen provider’s terms and privacy policy before use, and avoid submitting sensitive personal information.

6. Your Rights & Controls

  • View/export/delete local data; revoke or stop iCloud sharing.
  • Replace or delete API keys at any time.
  • Revoke system permissions (camera/photo) at any time, noting this may affect functionality.

7. Data Retention & Deletion

We run no servers and keep no copies of your chats/files. Data remains on your device until you delete it or uninstall the app. For iCloud sharing, you can stop sharing or remove related records at any time.

8. Security Measures

  • API keys are stored in the system Keychain.
  • The app operates within iOS sandboxing; network communications use HTTPS.
  • Streaming prioritizes URLSession .ephemeral configuration to reduce persistent caching.
  • Production builds do not record request bodies/chat content.

9. Children

This app is not intended for children under 13. If you believe we have inadvertently processed data from a child under 13, please contact us so we can guide deletion of local data and cessation of use.

10. Changes to this Policy

We may update this policy for functionality or compliance reasons. Material changes will be announced in-app or on this page with an updated effective date. If remote push notifications are introduced in the future, we will add details about purposes and data handling.

11. Contact Us

Email: alwayskeepcoding@outlook.com

查看简体中文 Terms of Use Apple EULA