Privacy Policy

Last updated: March 29, 2026

This privacy policy covers all Gosenville applications: Data Leak Scanner, Scam Detector, and Link Safety. Each app is designed with your privacy as a priority.

1. Who We Are

Gosenville develops mobile security applications designed to protect users from data breaches, scams, and malicious links. Our apps are published on the Apple App Store under the Gosenville brand.

2. Data We Collect

We collect as little data as possible. Here is what each app handles:

Data Leak Scanner

• Email addresses you submit for scanning are sent to Have I Been Pwned (HIBP) API to check for breaches. We do not store your email on our servers.
• Scan history is stored locally on your device only.
• AI-powered breach analysis uses Claude AI. Queries are anonymized and no personally identifiable information (PII) is sent.

Scam Detector

• Text and images you submit for analysis are processed by Claude AI. No message content is stored on our servers.
• Screenshot scanning uses on-device processing for OCR where possible. When AI analysis is needed, image content is processed anonymously.
• Analysis history is stored locally on your device only.

Link Safety

• URLs you check are analyzed through our backend and third-party safety databases. We do not associate URLs with your identity.
• QR code scanning is processed on-device. Only the resulting URL is sent for safety analysis.
• Scan history is stored locally on your device only.

3. Third-Party Services

• Have I Been Pwned (HIBP) — Used by Data Leak Scanner to check email addresses against known data breaches.
• Claude AI (Anthropic) — Used for AI-powered analysis across all apps. Queries are anonymized.
• Firebase Analytics — Collects anonymous usage data (app opens, feature usage, crash reports) to help us improve the apps. No PII is collected.
• RevenueCat — Manages subscriptions. RevenueCat processes purchase data according to their own privacy policy.

4. Data Retention

All scan history and results are stored locally on your device. You control deletion by clearing app data or deleting the app. We do not maintain server-side copies of your personal data.

5. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Delete your data (right to erasure)
• Port your data to another service
• Object to processing of your data
• Restrict processing of your data

Since all data is stored locally on your device, you exercise most of these rights directly by managing or deleting app data. For any requests, contact us at privacy@gosenville.com.

6. Children's Privacy

Our apps are not directed at children under 13. We do not knowingly collect personal information from children.

7. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes through our apps or by updating the date at the top of this page.

8. Contact Us

If you have questions about this privacy policy or our data practices, contact us at:

privacy@gosenville.com