Legal Compliance

Privacy Policy

At Crafted, your privacy is our foundation. We are committed to protecting your data with enterprise-grade standards.

This Privacy Policy applies to all AI Agents and applications developed by Crafted.

1. Information We Collect

  • • Personal Information (Name, Email)
  • • Usage Data & Interaction Logs
  • • Device & Browser Fingerprinting
  • • Cookies & Tracking ID

2. How We Use It

  • • Service Provision & Optimization
  • • Security Monitoring & Prevention
  • • Product Analytics & Insights
  • • Compliance with Legal Mandates

3. Third-Party Services

We may use trusted third-party services (e.g., analytics providers, payment processors) that process data on our behalf under strict confidentiality agreements. These services are used solely to enhance our functionality and user experience.

4. Data Retention

We retain your information only as long as necessary to provide our services or as required by applicable laws. When no longer needed, data is securely deleted or anonymized.

5. Platform-Specific Privacy

5.1 Mobile Application Privacy

Our mobile applications handle data with platform-specific privacy considerations for iOS and Android devices.

  • App Permissions: Camera, microphone, location, and contacts only accessed with explicit user consent.
  • Local Storage: Encrypted local storage for offline data and user preferences.
  • Biometric Data: Face ID/Touch ID and fingerprint data processed locally, never transmitted.
  • Background Location: Only when actively using location-based features, with user notification.
  • Push Notifications: Token-based system, no personal data in notification payloads.
  • iCloud/Google Backup: Optional encrypted backup of app data to user's cloud storage.
  • Device Analytics: Anonymous crash reports and performance metrics only.

5.2 macOS Desktop Privacy

Our macOS desktop application implements Apple's privacy frameworks and security best practices.

  • App Sandbox: Strict sandbox limits prevent unauthorized file system or network access.
  • Keychain Access: Secure storage for API keys and authentication tokens.
  • File System: User-selected directory access only, no system-wide file scanning.
  • Network Monitoring: All network requests logged for security auditing.
  • Screen Recording: Never enabled unless explicitly started by user for specific features.
  • System Integration: Minimal system API usage, no unnecessary telemetry.
  • Code Signing: All binaries signed and notarized by Apple for authenticity.

5.3 Web Application Privacy

Our web application implements browser privacy standards and secure data handling practices.

  • First-Party Cookies: Essential cookies only for session management and authentication.
  • Local Storage: Encrypted browser storage for preferences and cached data.
  • Session Storage: Temporary data cleared when browser tab is closed.
  • WebAssembly: Secure sandboxed execution environment for AI processing.
  • CORS Policy: Restricted API access to prevent cross-origin data leakage.
  • Content Security Policy: Prevents injection attacks and unauthorized scripts.
  • HTTPS Only: All communications encrypted with TLS 1.3 or higher.

6. Your Rights

You have the right to request access to your data, corrections, or total deletion. We respond to all data-related requests within 30 days.

App Store Distribution & Support

For mobile and desktop apps hosted on Apple App Store or Google Play Store, please note that Apple and Google serve as official distributors and are responsible for handling refunds, subscription management, and payment processing.

Crafted's Role: We provide technical support, versioning updates, and continuous quality improvements based on user feedback and usage patterns. For all refund requests, subscription changes, or billing inquiries, please contact Apple App Store Support or Google Play Store Support directly through their respective platforms.

What We Can Help With: Technical issues, bug reports, feature requests, app functionality questions, and quality improvements based on your feedback and usage analytics.

7. User Rights Protection

At Crafted, we are strongly committed to protecting your fundamental privacy rights and giving you control over your personal information.

  • Data Control: Full control over your personal data with easy access, correction, and deletion tools.
  • Consent Management: Granular consent options for data collection and processing activities.
  • Transparency Access: Clear information about what data we collect and how it's used.
  • Privacy Settings: Comprehensive privacy controls accessible in all our applications.
  • Data Portability: Ability to export your data in standard formats.
  • Opt-out Rights: Easy options to opt out of marketing and non-essential data processing.

8. Transparency Commitment

We believe privacy transparency is essential for building trust. Crafted is committed to complete openness about our data practices and privacy protections.

  • Privacy Policy Clarity: Plain language explanations of our data practices.
  • Data Collection Disclosure: Detailed information about what data we collect and why.
  • Third-party Sharing: Clear disclosure of any data shared with service providers.
  • Retention Periods: Transparent information about how long we keep different types of data.
  • Security Measures: Open information about our security protections and safeguards.
  • Privacy Updates: Prompt notification of any changes to our privacy practices.

Questions about your data?

Contact Our Team