Welcome to PackShip! Your privacy is critically important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application, PackShip (the "App").
Please read this Privacy Policy carefully. By creating an account or using
PackShip, you agree to the collection and use of information in accordance
with this policy. If you do not agree with our policies and practices, please
do not use the App.
1. Information We Collect
We collect several types of information to provide and improve our service:
ℹ️
Account Information: When you create an account, we collect your email address, username, and name. Passwords are securely hashed and never stored in plain text.
ℹ️
Social Sign-In (Apple, Google): If you choose to sign in with Apple or Google, the provider shares your name and email address with PackShip. For Apple Sign-In, you may elect to use a private relay email (e.g. an address ending in @privaterelay.appleid.com) instead of your real email. We do not receive any other information from the provider and store this data the same way we store email-based account data.
ℹ️
User-Created Content: We store your saved items, packages, dimensions, and shipping information in our secure database to sync across your devices and provide app functionality.
ℹ️
API Usage Data: We track your usage of third-party services (AI item search, shipping estimates) to enforce rate limits (10 calls per month per service) and manage costs.
ℹ️
Device Information: Information about your device, such as model, operating system, platform (iOS/Android), and app version, for diagnostic and performance purposes.
ℹ️
Authentication Tokens: We use JWT (JSON Web Tokens) stored securely on your device to maintain your login session.
ℹ️
Subscription & Purchase Information: When you subscribe to Pro or Casual plans, we collect transaction data through RevenueCat, including purchase receipts, subscription status, and entitlements. No credit card information is stored by us; all payment processing is handled securely by Apple or Google.
ℹ️
Location Data (ZIP Codes Only): We collect ZIP codes you enter for shipping estimates and autofill preferences. These are validated using the Zippopotam.us API to ensure accuracy. We do not collect precise geolocation data or access your device's location services.
ℹ️
App Usage Analytics: We collect anonymous usage statistics to improve app performance, including feature usage frequency, error logs, and crash reports. This data is not linked to your personal identity. Analytics collection is off by default and can be toggled on or off at any time from your Profile → Settings screen.
ℹ️
AR / LiDAR Measurement (On-Device Only): On iOS devices with a LiDAR sensor, you may use the AR measurement tool to capture item dimensions. AR camera frames and LiDAR point-cloud data are processed entirely on your device — they are never transmitted to our servers or any third party. Only the final measured dimensions (length, width, height) are saved when you choose to save them as an item.
2. How We Use Your Information
We use the information we collect for the following purposes:
✓
Account Management: To create and manage your account, authenticate your identity, and provide secure access to the app.
✓
Data Synchronization: To sync your saved items and packages across all your devices where you're logged in.
✓
Service Delivery: To provide AI-powered item search and shipping rate estimates through third-party APIs.
✓
Rate Limiting: To track and enforce API usage limits to manage costs and ensure fair access for all users.
✓
Communication: To send password reset emails and respond to your feedback submissions.
✓
Improvement: To improve app performance, diagnose technical issues, and enhance features based on usage patterns.
3. Sharing Your Information
We share your information with third-party service providers only as necessary to operate the app. We do not sell your personal information to third parties.
ℹ️
OpenAI: Item names and dimensions are sent to OpenAI's API for AI-powered item search functionality (limited to 10 requests per month per user).
ℹ️
OpenAI (Photo Item Identification): When you use the photo-based item lookup feature, the photo you select or capture is uploaded to our servers and forwarded to OpenAI's image-identification API. We process the photo in memory only and do not retain the image file after identification completes. Per OpenAI's API terms, image inputs submitted via the API are not used to train OpenAI's models.
ℹ️
Shipping Carriers: Package dimensions, weight, and ZIP codes are sent to UPS, FedEx, and USPS APIs to calculate shipping rates (limited to 10 requests per month per carrier per user).
ℹ️
Email Service (Resend): Your email address is used to send password reset emails when requested.
ℹ️
Feedback Service (Formspree): Your email and feedback messages are sent to Formspree when you submit feedback through the app.
ℹ️
Database Provider (Railway): All user data is stored on Railway's PostgreSQL database with SSL encryption.
ℹ️
RevenueCat: Subscription management and purchase verification. RevenueCat processes your App Store or Google Play purchase receipts to manage your subscription status and entitlements.
ℹ️
Zippopotam.us: Free ZIP code validation API used to verify US ZIP codes for shipping estimates. Only ZIP codes are sent; no personal information is transmitted.
ℹ️
Sentry (Crash Reporting): When the app encounters an unrecoverable error, a crash report is sent to Sentry for diagnostics. Reports include the error message, a stack trace, the app version, and anonymized device information (model, OS version). We do not include your saved items, packages, email, or subscription data in these reports.
We do not sell, rent, or share your personal information with third parties for their marketing purposes. All third-party services are carefully selected and bound by strict data protection agreements.
4. Data Security
We implement industry-standard security measures to protect your information:
✓
Password Security: All passwords are hashed using bcrypt before storage. We never store passwords in plain text.
✓
Encrypted Connections: All data transmitted between your device and our servers uses SSL/HTTPS encryption.
✓
Secure Database: Your data is stored in a PostgreSQL database with SSL encryption and access controls.
✓
Authentication Tokens: JWT tokens are used for secure session management and are stored securely on your device.
✓
Rate Limiting: We implement rate limiting to prevent abuse and protect against unauthorized access attempts.
While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.
5. Your Privacy Rights
You have the following rights regarding your personal information:
✓
Access Your Data: You can view all your saved items and packages within the app at any time.
✓
Update Your Information: You can edit your account information, saved items, and packages directly in the app.
✓
Export Your Data: You can export your packages and saved items as CSV files for backup or transfer purposes.
✓
Delete Your Account: You can permanently delete your account and all associated data from the User Profile page. This action cannot be undone.
✓
Data Portability: Your data is stored in standard formats and can be exported for use in other applications.
6. Third-Party Links
PackShip may contain links to other websites or services that are
not operated by us. If you click on a third-party link, you will be
directed to that third party's site. We strongly advise you to
review the Privacy Policy of every site you visit, as we have no
control over and assume no responsibility for their content, privacy
policies, or practices.
7. Children's Privacy
PackShip is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@neuragul.com, and we will delete such information from our systems.
8. Data Retention
We retain your information for as long as your account is active or as needed to provide you services:
ℹ️
Account Data: Retained while your account is active. Permanently deleted when you delete your account.
ℹ️
User Content: Your saved items and packages are retained until you delete them or delete your account.
ℹ️
API Usage Data: Usage tracking data is retained for 12 months for rate limiting and analytics purposes, then automatically deleted.
9. California Privacy Rights
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):
✓
Right to Know: You have the right to know what personal information we collect, use, and disclose about you.
✓
Right to Delete: You have the right to request deletion of your personal information.
✓
Right to Opt-Out: We do not sell your personal information, so there is no need to opt-out of sales.
✓
Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
To exercise these rights, please contact us at support@neuragul.com or use the in-app account deletion feature.
9a. European Privacy Rights (GDPR)
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have specific rights under the General Data Protection Regulation (GDPR):
✓
Right of Access: You may request a copy of the personal data we hold about you.
✓
Right to Rectification: You may ask us to correct inaccurate or incomplete information. Most fields are editable directly in the app.
✓
Right to Erasure ("Right to be Forgotten"): You may request deletion of your personal data. The in-app account deletion feature permanently removes your account and all associated data from our database.
✓
Right to Restriction: You may ask us to limit how we process your data. You can also disable analytics collection at any time from your Profile → Settings.
✓
Right to Data Portability: You may export your saved items and packages as CSV files from within the app for transfer to another service.
✓
Right to Object: You may object to processing that relies on our legitimate interests (such as analytics). You can opt out of analytics via Profile → Settings.
✓
Right to Lodge a Complaint: You may lodge a complaint with your local supervisory authority (data protection regulator) if you believe we have violated your rights.
Legal Basis for Processing: We process your account data to perform the service you've requested (Art. 6(1)(b) contract). Analytics (when enabled) relies on your consent (Art. 6(1)(a)). Diagnostic data, rate limiting, and security measures rely on our legitimate interest in keeping the service operational and secure (Art. 6(1)(f)).
To exercise any of these rights, contact us at support@neuragul.com.
10. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from your country. By using PackShip, you consent to the transfer of your information to the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.
11. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. Any changes will
be posted on this page with an updated "Last Updated" date. You are
advised to review this Privacy Policy periodically for any changes.
12. Contact Us
If you have any questions or concerns about this Privacy Policy,
please contact us at:
Email: support@neuragul.com
You can also submit feedback directly through the app using the "Send Feedback" feature in the Help section.