Privacy Policy

This is the privacy policy for Posthaste, an iOS application. It describes what data the app accesses, how it's used, and the choices you have. We have written this short and clear because Posthaste's privacy story genuinely is short and clear: nothing leaves your device.

1. The short version

Posthaste stores everything you create — your saved senders, recipients, custom layouts, and printer calibrations — on your iPhone, in the encrypted local database iOS provides to all apps (SwiftData / Core Data, backed by SQLite, encrypted at rest with the device passcode).

Posthaste does not transmit your data to our servers, to any analytics provider, to any advertising network, or to any third party. Posthaste has no servers that store user data.

The only data that ever leaves your device is:

• Your in-app purchase receipt, transmitted directly between Apple and your iPhone as part of the App Store's payment flow. We never see the receipt; we only learn whether your one-time purchase is active.
• Crash diagnostics, only if you have opted in to "Share with App Developers" under iOS Settings → Privacy & Security → Analytics & Improvements. Apple aggregates and anonymises these before we see them — and Posthaste has no extra analytics on top.

That's it.

2. Photos and screenshots (Bulk Import)

The Bulk Import feature lets you import a screenshot of an order page and have Posthaste extract every recipient address from it. This works entirely on your iPhone using Apple's Vision framework (VNRecognizeTextRequest).

When you tap "Screenshot or photo" in Bulk Import:

• iOS shows you the system Photos picker.
• You select an image. The image data stays in Posthaste's memory.
• Vision performs OCR on the image, on-device, with no network call.
• Posthaste extracts the addresses from the recognised text and shows them to you for review.

The image is never uploaded. The OCR is never sent to a cloud service. The image data is released from memory as soon as the addresses have been extracted and the screen is dismissed.

The Photos picker uses iOS's "limited photo library" experience by default — Posthaste only sees the single image you pick, not your photo library.

3. CSV files (Bulk Import)

When you import a CSV file (such as a TCGplayer or eBay order export), Posthaste reads the file from the location you select via the iOS Document Picker. The file is parsed entirely on your device. Posthaste does not upload the CSV. After import the CSV reference is released — Posthaste keeps only the recipient addresses you choose to save.

4. Sender logo

If you upload an image as a sender logo, that image is downsampled to a maximum 400-pixel edge and stored as a JPEG inside Posthaste's local SwiftData store. It never leaves your device.

5. In-App Purchase data

Posthaste uses Apple's StoreKit 2 framework for the one-time Pro unlock. When you purchase, the transaction is processed entirely by Apple. We do not see your name, your billing address, your payment method, or your Apple ID. We can confirm only one thing: whether your purchase is currently active. That confirmation comes from Apple, on your device.

6. What Posthaste does NOT collect

To remove any ambiguity:

• Your name, email address, phone number, or any contact data
• Your location
• Your photos (other than the single image you choose for OCR or for a logo, which never leaves the device)
• Your microphone, camera, or live video
• Your contacts, calendars, reminders, or HealthKit
• Any device identifiers (IDFA, IDFV, or advertising ID)
• Any analytics events, screen views, or tap patterns
• Any of your saved addresses beyond what's stored locally on your iPhone

There is no Posthaste account, no Posthaste login, no Posthaste backend.

7. iCloud

If you have iCloud Backup enabled in iOS Settings, Apple will include Posthaste's local database in your encrypted iCloud Backup. This backup is end-to-end encrypted by Apple if you have Advanced Data Protection enabled. We never have access to your iCloud backup.

A future Posthaste version (1.1) may offer optional iCloud Sync of your senders and recipients across your own devices using Apple's CloudKit. This would also be end-to-end encrypted via Apple's infrastructure. We would never see the data.

8. Children

Posthaste is rated 4+. We do not knowingly collect data from anyone, including children. We hold none.

9. Your rights

Because Posthaste stores your data only on your device, you can exercise every data right yourself:

• Access: open Settings tab → Export (CSV)
• Delete: uninstall Posthaste, or use Settings → Reset on device
• Portability: the CSV export is open-format

If you have questions, email support@getposthaste.com.

10. Changes to this policy

If Posthaste ever changes to collect or transmit user data — for example because we add a server-backed feature — we will:

• Update this policy with the change clearly described
• Notify you in-app before that change takes effect
• Make any new data sharing strictly opt-in

We will never silently begin collecting data.

11. Contact

Email: support@getposthaste.com