Privacy Policy

Last updated: 21 May 2026

BackPark ("the app", "we", "us") is a privacy-first parking memory built by Mete Erdal Köroğlu. This policy explains what BackPark does — and, more importantly, what it does not do — with your data. It is written to satisfy the EU General Data Protection Regulation (GDPR), the Turkish Personal Data Protection Law (KVKK 6698), the California Consumer Privacy Act (CCPA), and Apple's App Store privacy requirements.

1. The short version

• Everything runs on your iPhone. Your parking location, photos, step counts, and AR maps never leave the device.
• No account. You don't sign up, log in, or give us an email address.
• No third-party advertising or analytics SDKs. No Google Analytics, no Facebook SDK, no AdMob, no profiling.
• We don't sell, share, or rent any data. There is nothing to sell.
• Purchases are processed by Apple and validated by RevenueCat (subscription receipt validation only).

2. What data BackPark uses (and where it lives)

2.1 Location

When you tap PARK, BackPark records your latitude, longitude, altitude, and compass heading. While you walk back, the app reads your current location to draw the arrow and distance. If you grant background location, the app monitors significant location changes so the "you're far from your car now" reminder can fire.

Where it goes: Stored locally in the app's private SwiftData database. Never transmitted anywhere.

Legal basis (GDPR Art. 6(1)(b)): Necessary for the performance of the service you requested.

2.2 Motion & step count

BackPark reads pedometer data (step count and stride) and magnetometer/compass data to enable underground dead-reckoning navigation when GPS is unavailable.

Where it goes: Used in memory during an active session; the baseline step count is stored locally with the session. Not transmitted.

2.3 Photos and OCR

If you choose to attach a photo of your spot (or scan a bay number with the camera), the image is read on-device using Apple's Vision framework. Recognised text is suggested back to you as a note.

Where it goes: Stored inside the app's private files alongside the parking session. Never uploaded.

2.4 Camera (for AR breadcrumbs — Pro)

The AR breadcrumb feature uses your camera and ARKit to anchor a virtual pin in the real world. The resulting ARWorldMap is saved locally so the pin persists across sessions.

Where it goes: Stored on-device only. The camera feed is never recorded or transmitted.

2.5 HealthKit height (optional)

If you choose "Calibrate from Health" in Settings, BackPark reads your height from Apple Health once and computes a personalised stride length (height × 0.413). Your height is not stored by BackPark; only the derived stride length in meters is kept.

2.6 Notifications

Local notifications (parking meter alarms, stale-session reminders) are scheduled with iOS. They never traverse a remote server.

2.7 Purchase data

When you buy BackPark Pro, Apple processes the payment. We use RevenueCat as our subscription infrastructure provider; RevenueCat receives an anonymous app-user identifier and the App Store receipt so it can tell BackPark whether your entitlement is active. RevenueCat does not receive your name, email, location, or any in-app activity.

2.8 Anonymous diagnostics (optional, off by default)

BackPark may ship with TelemetryDeck for aggregate, anonymous usage signals (e.g. "the paywall was shown") — TelemetryDeck does not collect IP addresses or device identifiers and hashes any identifier locally before transmission. In the current release this integration is inactive (no application key is configured); if it is enabled in a future release, this policy will be updated and you will be notified at launch.

3. Data we do not collect

• Email addresses or names
• Contacts, calendar, microphone
• Browsing or device advertising identifiers
• Crash reports tied to identity (Apple-collected crash logs are anonymous and opt-in via iOS Settings)

4. Children

BackPark is rated 4+ but is designed for users 13 and older (16+ in the EU, where local rules apply). We do not knowingly collect data from children.

5. Your rights

Because BackPark stores everything on your device, you exercise most rights directly:

• Access & portability: All your data is visible inside the app. iCloud Backup (if enabled in iOS Settings) will include the app's container.
• Erasure: Delete the app — every byte of your data goes with it.
• Withdraw permissions: Revoke location, camera, motion, photo, or Health access any time in iOS Settings → Privacy.

Under GDPR / KVKK you also have the right to lodge a complaint with your local data protection authority. In Türkiye that is the Kişisel Verileri Koruma Kurumu; in the EU, see your national supervisor.

6. International transfers

Because data stays on your device, no international transfer takes place during normal app use. RevenueCat may process your receipt in the United States; their privacy policy covers the relevant safeguards (Standard Contractual Clauses).

7. Data retention

Parking sessions are retained until you delete them or uninstall the app. There is no remote retention because there is no remote copy.

8. Security

BackPark relies on iOS sandboxing and the device's hardware encryption. We never operate a server that holds your data, so the most common breach vector (a leaky backend) does not exist.

9. Changes

If this policy changes materially, we will update the "Last updated" date and surface a notice inside the app on next launch.

10. Contact

Questions about privacy? Email maotunko@gmail.com.

Data controller (KVKK / GDPR): Mete Erdal Köroğlu — Türkiye.