At AppSpacer Inc., we believe that developer privacy and user trust are the cornerstones of a modern mobile ecosystem. This policy details how we treat data across our global delivery infrastructure.
1. Information We Collect
We collect data primarily to facilitate the over-the-air delivery of software updates. This is categorized into two types:
A. Developer Information
When you create an account, we collect your name, professional email, and billing details. This information is strictly used for account management and security notifications.
B. Machine & Infrastructure Telemetry
To ensure update success, our SDK and Edge Nodes collect non-identifiable technical data:
- OS Version and Device Model (e.g., iOS 17.4, iPhone 15 Pro).
- Application Identifier and Bundle Version.
- Update Success/Failure status codes.
- IP Address (used solely for geo-proximity routing and discarded after 24 hours).
2. Data We Do NOT Collect
Unlike analytics platforms, AppSpacer is a delivery pipe. We have zero interest in your end-users' personal data.
- No PII: We do not collect Names, Emails, or Phone numbers of your application's users.
- No Tracking: We do not utilize advertising IDs (IDFA/GAID) or cross-app tracking mechanisms.
- No Content Inspection: We deliver your JavaScript bundles as opaque, encrypted blobs. We do not inspect the logic within your code.
3. How We Use Telemetry
Telemetry gathered by the AppSpacer SDK is used exclusively for:
- Optimal Routing: Directing update requests to the lowest-latency edge node.
- Delta Calculation: Identifying which binary diff is required for a specific device.
- Rollback Triggers: Detecting spike in crash rates to initiate automatic safety rollbacks.
4. Data Sharing & Sub-processors
We do not sell, trade, or rent your data. We share only specific metadata with our audited infrastructure sub-processors:
| Provider | Purpose | Compliance |
|---|---|---|
| Amazon Web Services | Cloud Infrastructure | SOC2, ISO27001 |
| Cloudflare | Edge Routing & WAF | SOC2, PCI-DSS |
| Stripe | Billing Processing | PCI-DSS Level 1 |
5. Data Sovereignty
Your JavaScript bundles are distributed across 48 global edge nodes to ensure maximum speed. However, your primary account data and original master bundles are stored in the region you select during workspace creation (e.g., US-East, EU-Central, or AP-South).
6. Data Retention Policy
- Active Bundles: Stored as long as the deployment version is active.
- Archived Bundles: Deleted 90 days after being superseded by a newer version (customizable for Production teams).
- Audit Logs: Maintained for 12 months to satisfy compliance requirements.
- Transient Edge Logs: Discarded within 24–48 hours.
7. Your Privacy Rights
You have the right to access, rectify, or delete your developer account data. Please contact our Privacy Officer at privacy@appspacer.com to initiate a request.