Note: This document is a template. Legal review before publication is strongly recommended.
Last updated: 2026-05-22
The data controller under GDPR is:
Marcel Soendenaa-Defourny
Muldentalstrasse 100
04288 Leipzig (Liebertwolkwitz)
Germany
Email: support@vorinoapp.de
The iOS app "Vorino" (the "App") is a pantry-management and recipe-discovery tool. It lets users track their food inventory, find recipes, save favourites, and plan their week.
This policy describes what personal data we process when you use the App, why we process it, and on what legal basis. It applies both to the App itself and to the marketing pages hosted at vorinoapp.de.
Version 1.0 of the App does not collect directly identifying information such as name, address, or date of birth. No user account is required.
| Aspect | Detail |
|---|---|
| What | Food items, recipe favourites, weekly meal plans, and app settings you create |
| Storage | Local only — kept in SwiftData / Core Data on your Apple device |
| Transmission to us | None. This data never leaves your device and is invisible to us |
| Retention | Until you delete the data manually or uninstall the App |
| Legal basis | Art. 6(1)(b) GDPR — performance of the core service |
/v1/scan)| Aspect | Detail |
|---|---|
| What | Photos of groceries or receipts that you actively upload |
| Purpose | Product detection via our image-recognition pipeline (CLIP / YOLO / OCR) |
| Server location | Germany (Hetzner data centre, Frankfurt) |
| Retention | Zero. Image data is held only in RAM during processing and discarded immediately afterwards. No image is ever written to disk |
| Legal basis | Art. 6(1)(b) GDPR (service performance) and Art. 6(1)(a) (consent through your active upload) |
/v1/barcode/{code})| Aspect | Detail |
|---|---|
| What | A barcode string (e.g. EAN-13) that you scan or type in |
| Personal data | None — a product identifier, no personal information |
| Retention | Not stored beyond short-term technical access logs (see 3.6) |
| Legal basis | Art. 6(1)(b) GDPR |
| Aspect | Detail |
|---|---|
| What | Pro-version purchases and subscriptions, processed exclusively by Apple |
| Who | Apple Distribution International Ltd. is the sole contracting party for in-app purchases. We receive only aggregated, anonymised sales reports via App Store Connect |
| Direct access by us | We do not see your Apple ID or your payment details |
| Retention | Governed by Apple under its own privacy policy |
| Legal basis | Art. 6(1)(b) GDPR (contract performance via Apple) |
Apple's privacy policy: https://www.apple.com/legal/privacy/
| Aspect | Detail |
|---|---|
| When | Only in the free version, never for Pro subscribers |
| ATT permission denied / not requested | Only non-personalised ads are shown. AdMob does not use the advertising identifier (IDFA) for profiling |
| ATT permission granted | Personalised ads may be served. Google processes your device's advertising identifier (IDFA) to choose them |
| Retention | Governed by Google under its own privacy policy |
| Legal basis | Personalised ads: Art. 6(1)(a) GDPR (explicit consent via the ATT prompt). Non-personalised ads: Art. 6(1)(f) GDPR (legitimate interest in funding the free version) |
Google AdMob privacy policy: https://policies.google.com/privacy
| Aspect | Detail |
|---|---|
| What | IP address (SHA-256 hashed before logging), timestamp, requested endpoint, HTTP status code |
| Purpose | Security, abuse prevention (rate-limiting), error diagnostics |
| Retention | Raw IP: kept in RAM only for up to 60 seconds for rate-limiting. Hashed form: up to 14 days |
| Legal basis | Art. 6(1)(f) GDPR (legitimate interest in server security) |
| Aspect | Detail |
|---|---|
| What | Crash and performance data via Apple's built-in mechanism |
| Provider | Apple — you can disable this in iOS Settings under "Privacy & Security → Analytics & Improvements" |
| What we receive | Only aggregated, non-personal crash reports via App Store Connect |
| Third parties | None. We do not use Firebase Crashlytics, Sentry, or any comparable service |
| Legal basis | Art. 6(1)(f) GDPR |
As a data subject under GDPR, you have the following rights:
Please send any request to: support@vorinoapp.de
Because the App works locally and uses no account, we may not be able to associate a request with a specific person. You can erase all locally stored data at any time through the App's settings or by uninstalling the App.
The following transfers to third countries may occur:
| Recipient | Country | Safeguard |
|---|---|---|
| Apple Inc. (StoreKit, App Store, crash reports) | USA / EEA | EU-US Data Privacy Framework, Apple is certified. Apple Distribution International Ltd. is the European contracting entity |
| Google LLC (AdMob, free tier only) | USA | EU-US Data Privacy Framework, Google is certified. Standard Contractual Clauses under Art. 46 GDPR additionally apply |
Our own product-recognition server is operated in Germany (Hetzner Online GmbH, Frankfurt) — no third-country transfer occurs for this part of the service.
The App itself uses no web cookies. Tracking occurs only via the AdMob advertising network, and only when:
The marketing website at vorinoapp.de does not set tracking or analytics cookies. Strictly necessary cookies (for instance, to remember your language preference) may be used.
Version 1.0 of the App uses no external data processors within the meaning of Art. 28 GDPR. The server runs in Germany and is administered by the controller directly. Hetzner Online GmbH supplies the underlying infrastructure (rented server) under an Art. 28 data-processing agreement.
Apple and Google act as independent (or joint) controllers under their own platform functions, not as classic processors.
We use appropriate technical and organisational measures to protect your data, including:
Despite these measures, absolute security of data transmission over the Internet cannot be guaranteed.
Last updated: 2026-05-22
We may update this Privacy Policy to reflect changes in the law or our services. Material changes will be announced in the App and at vorinoapp.de/privacy with reasonable notice. The current version is always available at that URL.