Privacy Policy
The privacy policy for TelemetryDeck
TelemetryDeck was designed from the ground up with privacy in mind. An important principle of TelemetryDeck is to only save the least amount of data it absolutely needs, and to not save any data that can be used to identify specific users' identities.
That is why the TelemetryDeck Client code is completely open source, so that users and developers can see for themselves the data that TelemetryDeck saves.
Data Transmitted
Any data that is transmitted to the analytics server consists of the following:
- An anonymized user identifier. The identifier is constant for each app install but cannot be traced back to any personally identifiable information.
- An action taken, such as āApp Launchedā or āSettings Openedā. The developer defines these actions.
- A time stamp when the action was taken.
- Device metadata, namely platform, system version, app version, build number, if the build was downloaded via App Store or TestFlight, and the device model type (i.e., iPhone X, iPad Air, or iPhone 12).
- Additional metadata as defined by the developer, such as āNumber of Items in the Databaseā or āSetting X is enabledā. Developers should note this metadata in their own privacy policy.
IP addresses are never stored on the TelemetryDeck Server, neither in the database nor in any log files, nor at any other place.
Terms Used
A developer is a person who creates or maintains an app which includes the TelemetryDeck Client code. They are responsible for making sure they only hand anonymized data to the TelemetryDeck Client.
The TelemetryDeck Client is the code that transmits data to the TelemetryDeck Server. It can be viewed on GitHub in its entirety.
A user is a person who uses any app created by a developer. It is our job to make sure their data stays safe.
A signal is one instance of data sent from the app to the TelemetryDeck Server using the TelemetryDeck Client.
TelemetryDeck Viewer is the app that developers use to see signal data, both raw and in aggregated form, as Insights.
User Identifiers
Developers have three choices on how to identify users. They should note which they are using in their app's privacy policy:
- Using no user identifier at all. This will give them the greatest piece of mind, while still allowing TelemetryDeck to help them out with statistical analysis.
- Using Apple's āIdentifierForVendorā API. This is the default behaviour for TelemetryDeck. The identifier generated out with this method has no relation to any of the user's identifiable information or private data. Deleting and reinstalling the app will generate a new identifier and sever any connection to the old one.
- Using a custom string identifier, such as the user's username or email address. This string will never be transferred directly to the server. Instead, the TelemetryDeck Client will create a hash out of that string and only ever transmit that hash. This allows TelemetryDeck to detect the same user on multiple devices, but it is impossible for both the developer and any person having access to TelemetryDeck's database to retrieve the original custom string identifier.
Metadata
Developers can include any metadata they wish with signals they send using TelemetryDeck Client. They are urged to not send any data that might identify their users. They must include the types of data they send in their own apps' privacy policies.
Using TelemetryDeck Viewer
Developers using the TelemetryDeck Viewer app are sending signals to the TelemetryDeck Server as well. These do not contain any user data. The types of data are:
- App was launched
- Which part of the app was navigated to?
- Standard metadata: platform, system version, app version, build number, if the build was downloaded via App Store or TestFlight, and the device model type (i.e. iPhone X, iPad Air, or iPhone 12).
Our Customers and Prospects
We use Hubspot to manage the address and contact data of our customers and prospects. We document appointments and agreements in Hubspot and use the tool to evaluate our activities in the sales area. We store the data for the time TelemetryDeck is operational. The legal basis for this is Art. 6 para. 1 lit. b GDPR. The company Hubspot has its headquarters in the USA and is subject to the data protection laws there. The data of TelemetryDeck GmbH is stored on European data centers of Hubspot. An order processing agreement has been concluded with Hubspot for the transfer of the data. Personal data will not be transferred to the USA. Please refer to Hubspot's website for information on the company's privacy policy: Hubspot Privacy Policy.