Privacy Policy
This Privacy Policy explains what personal data the FloorLens app, the FloorLens website (floorlens.app) and the FloorLens web viewer collect, why, and the choices and rights you have. FloorLens is designed to work without an account for almost everything — you only need to sign in to upload a scan to the web.
1. Who is responsible (Controller)
FloorLens is operated by Beren Kaul, an individual developer based in Switzerland (the “we”, “us”, “Controller”). You can reach us about privacy at support@floorlens.app.
2. Summary
- You can scan, edit, measure, export and create floor plans without an account and without sharing your scans with us.
- We do not collect GPS or geographic location. Real-world alignment uses your device’s compass (magnetometer) and date/time locally; this is not stored or sent to us.
- If you sign in (optional) we use Firebase Authentication with Sign in with Apple or Google.
- We use Firebase Analytics & Crashlytics for diagnostics and to improve the app, and push notifications for service updates as well as occasional marketing (e.g. about Premium). You can turn notifications off in your device settings.
- When you upload a scan to the web (a Premium feature), it is stored on our private server and shared via an unlisted link/QR that expires after 90 days.
- We do not sell your personal data or share it with any other company or person for their own purposes — only the developer and the service providers that run FloorLens have access. There are no ads in the app.
3. Data we collect
3.1 Data you provide
- Account data (only if you sign in): your name and email address as provided by Sign in with Apple or Sign in with Google, and a user identifier (UID). If you use Apple’s “Hide My Email”, we receive a private relay address instead of your real one.
- Scan content you create: 3D models/meshes, baked textures, photos you take during a scan, floor plans, measurements, room labels and notes, and property details you enter (e.g. address, price, listing info) and personalization (e.g. agency name, logo, description). This stays on your device unless you choose to export, sync (iCloud) or upload it.
- Support communications: the content of emails you send us.
3.2 Data collected automatically
- Usage & analytics (Firebase Analytics): app interactions, feature usage, session and device information, and app-instance identifiers, used to understand and improve the app.
- Diagnostics & crash reports (Firebase Crashlytics): crash logs, error data, device model, OS version and similar technical information.
- Push token (Apple Push Notification service / Firebase Cloud Messaging): a device token used to deliver notifications.
3.3 Data we do not collect
- No GPS / location. Compass-based, real-world orientation and the artificial-sun feature use the magnetometer and your device’s local date/time only. We do not collect, store or transmit your geographic location.
4. How we use your data
- To provide and operate the app, website and web viewer.
- To authenticate you and keep you signed in (if you choose to sign in).
- To sync your data across your devices via iCloud (if you enable it) and to store account/subscription status.
- To host and share scans you upload, and to generate the share link and QR code.
- To diagnose crashes, fix bugs, measure usage and improve FloorLens.
- To send notifications — service and account updates and, occasionally, marketing messages about FloorLens (for example, introducing Premium features or encouraging you to use the app). You can turn notifications off at any time in your device settings.
- To keep the service secure and prevent abuse (e.g. verifying that uploads come from an entitled account).
- To comply with legal obligations and respond to lawful requests.
5. Legal bases (GDPR / Swiss FADP)
- Performance of a contract — providing the app, account, subscriptions, and the web-sharing feature you request.
- Legitimate interests — security, abuse prevention, and improving the product (balanced against your rights).
- Consent — where required for analytics/diagnostics and marketing notifications; you can withdraw it in your device settings at any time.
- Legal obligation — where we must process data to comply with the law.
6. Service providers & sharing
We do not sell your personal data, and we do not share it with any other company or person for their own purposes. The only parties with access are the developer (Beren Kaul) and the service providers listed below, who process data solely on our instructions to operate FloorLens. There are no ads in the app.
- Apple — Sign in with Apple, iCloud sync, push notifications (APNs) and App Store purchases. Apple processes payments; we receive your subscription status, not your payment details.
- Google (Firebase) — Authentication, Realtime Database (account and app data such as your profile and subscription status), Crashlytics, Analytics and Cloud Messaging.
- Our hosting server — a private server operated by us (the “Hosting Server”) that stores scans you upload to the web, the associated share tokens, and a per-account access list. Only the developer has administrative access.
7. Sharing a scan on the web
Uploading a scan is optional and limited to Premium. When you upload:
- The scan bundle (3D model, photos taken during the scan, floor plan, labels/notes and any property details you added) is stored on the Hosting Server.
- You get an unlisted link and QR code. Anyone who has the link or QR can view that scan — treat it like any shareable link and only share it with people you intend to.
- Shared scans automatically expire and are deleted after 90 days. You can also delete a scan on demand from the app.
- So the uploader can see engagement, we keep an aggregate count of how many unique visitors have opened each shared scan and when it was last opened. To count unique visitors without cookies, we compute a non-reversible hash from the visitor’s IP address and browser type together with a secret key; we do not store IP addresses.
- You are responsible for ensuring you have the right to scan and share the space and its contents (see our Terms of Use).
8. International transfers
Our Hosting Server is operated by the developer in Switzerland or the European Union. Apple and Google may process some data outside your country, including in the United States. Where data is transferred internationally, it is protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses and the providers’ own adequacy/transfer frameworks.
9. Retention
- Account data — kept while your account exists; deleted on request.
- Uploaded scans — automatically deleted 90 days after upload, or sooner if you delete them.
- Analytics & crash data — retained according to Firebase’s default retention periods.
- On-device data — your scans stay on your device (and your iCloud, if enabled) until you delete them.
10. Security
We use industry-standard measures including encryption in transit (HTTPS), authenticated and signed uploads, single-use upload tokens, and access controls on the Hosting Server. The signing key used to authorize uploads is generated on your device and never leaves it — only its public part is registered with us. No method of transmission or storage is 100% secure, but we work to protect your data.
11. Your rights
Subject to applicable law (EU GDPR, Swiss FADP and others), you may have the right to access, correct, delete, restrict or object to the processing of your personal data, to data portability, and to withdraw consent. To exercise any of these, email support@floorlens.app. You can delete uploaded scans in the app and request deletion of your account at the same address.
You also have the right to lodge a complaint with a supervisory authority — in Switzerland, the Federal Data Protection and Information Commissioner (FDPIC); in the EU/EEA, your local data protection authority.
12. Children
FloorLens is intended for a general audience and is not directed to children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact us and we will delete it.
13. The FloorLens website
- The website uses Google Fonts, which loads font files from Google servers; Google may receive your IP address as part of that request.
- The website stores your language preference in your browser’s local storage. This is not used for tracking and is not shared.
- The web viewer loads the specific scan referenced by a share link from the Hosting Server. It does not require an account or login.
- We use Matomo, a privacy-friendly analytics tool, to measure website usage such as page views. It is configured to minimize personal data, is not shared with third parties for their own purposes, and is used only to improve the site. The website shows no ads.
14. Changes to this policy
We may update this policy from time to time. We will revise the “Last updated” date above and, for material changes, provide a more prominent notice. Continued use of FloorLens after an update means you accept the revised policy.
15. Contact
Questions about this policy or your data? Email support@floorlens.app.