Privacy Policy

Last updated: May 15, 2026

1. Data Controller

The data controller within the meaning of GDPR and other national data protection laws is:

No data protection officer has been appointed, as the statutory thresholds under § 38 BDSG (at least 20 persons continuously engaged in automated processing) are not met.

2. Scope

This privacy policy applies to the iOS app "THC Monitor" (bundle ID de.thcmonitor.app) and to the website thcmonitor.de.

One-sentence summary: Your consumption data stays exclusively on your device. We do not run a server that processes your consumption data, no account system, no tracking, no ads, and no analytics tools such as AdMob, Firebase Analytics, Google Analytics or RevenueCat.

3. App: local data processing

The app stores all consumption data exclusively on your iPhone using Apple's SwiftData database (persisted internally as an SQLite container). No transfer to our or any other server takes place.

Processed locally:

• Consumption logs (timestamp, route, estimated dose, product notes, free-text notes)
• Multi-compartment model results (estimated plasma trajectories and forecasts)
• Settings (notification preferences, theme, language, custom thresholds)
• Backups: only when you actively export them as a JSON file via the iOS share sheet
• Pro status (cache of local StoreKit verification)

Sensitive cache values (e.g. Pro status) are stored in the iOS Keychain. The app contains no code to upload data to our servers because there are no servers of ours that receive consumption data.

4. Apple StoreKit / In-App Purchases

In-app purchases (monthly/yearly Pro subscriptions, trials) are processed exclusively via Apple's StoreKit 2. Your payment contract is with Apple Distribution International Ltd., Hollyhill Industrial Estate, Hollyhill, Cork, Ireland.

From Apple, we only receive anonymous transaction identifiers and product IDs, which we use locally to unlock Pro features. Payment data, Apple ID, addresses or payment methods are not visible to us.

Legal basis: Art. 6(1)(b) GDPR (contract performance). Apple's own privacy policy also applies: apple.com/legal/privacy.

5. Additional Apple services

Apple Push Notification Service (APNs) — local only

THC Monitor sends no remote push notifications. When you enable notifications, only local notifications are produced on your device (e.g. threshold reminders). No device token is transmitted to our servers — we do not operate a push server.

Siri / App Intents

When you use the Siri Shortcut "Log cannabis consumption", Apple processes your speech input according to its own privacy policy. The app only receives the final intent result and writes it locally to SwiftData.

Spotlight index, Widgets, Live Activity

Content for Spotlight search, the home-screen widget and the Live Activity in the Dynamic Island is rendered exclusively from data already stored locally and does not leave the device.

6. Website hosting (Vercel)

The website thcmonitor.de is hosted by Vercel Inc. (440 N Barranca Ave #4133, Covina, CA 91723, USA) — primarily out of the Frankfurt (fra1) region. Only static pages are served; there is no database, no cookies, no tracking and no client-side analytics.

When you access the site, Vercel processes technically necessary connection data in server log files, in particular:

• IP address (truncated / briefly stored)
• Time of the request
• Requested path
• Referrer, user agent
• HTTP status code

These log files serve security, abuse prevention and technical availability. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a stable, secure website). Storage is short-term; Vercel acts as a processor under Art. 28 GDPR. Provider's privacy notice: vercel.com/legal/privacy-policy.

Fonts ("Inter" and "Exo 2") are self-hosted and served directly from the Vercel edge node. No connection to Google Fonts or other external font providers takes place.

7. Legal basis

• Art. 6(1)(a) GDPR — consent (in-app notifications, optional local backup)
• Art. 6(1)(b) GDPR — contract performance (StoreKit subscriptions, Pro unlock)
• Art. 6(1)(f) GDPR — legitimate interest (web hosting, IT security)

8. Retention

App data: remains stored until you remove it via "Delete all data" in the app settings, or uninstall the app. On uninstall, iOS deletes all SwiftData containers of the app sandbox.

Backup exports: JSON files you export yourself live only where you saved them via the iOS share sheet. We have no access.

Server log files: Vercel logs are typically deleted automatically within a few days (commonly 24h for edge logs, max. 30 days).

Pro subscription status: StoreKit transaction data is retained by Apple according to their retention periods.

9. Third-country transfer

Vercel Inc. and Apple Inc. are US companies. Vercel is certified under the EU-US Data Privacy Framework; the website is primarily served from Frankfurt (fra1). For Apple, their certification and Standard Contractual Clauses under Art. 46(2)(c) GDPR apply.

10. Your rights

Under GDPR you always have the right to:

• Access (Art. 15)
• Rectification (Art. 16)
• Erasure (Art. 17)
• Restriction of processing (Art. 18)
• Data portability (Art. 20)
• Object to processing (Art. 21)
• Withdraw consent (Art. 7(3))

Note: since your consumption data lives exclusively on your device and we have no server-side access, you can fully exercise the rights to access, rectify and erase by editing your entries in the app under "Settings → Data" or by tapping "Delete all data". For questions about the website or subscription, please contact support@thcmonitor.de.

No automated decision-making / no profiling: No solely automated decision-making — including profiling — within the meaning of Art. 22 GDPR takes place.

11. Right to lodge a complaint

Under Art. 77 GDPR you have the right to lodge a complaint with a supervisory authority. Competent for us:

12. Children & minors

THC Monitor is intended exclusively for adults aged 18 and over. We do not knowingly process any data of persons under 18. The app is classified with Apple's 18+ age rating. For cannabis-related topics, we follow Germany's Konsumcannabisgesetz (KCanG).

13. Changes to this privacy policy

We reserve the right to adapt this privacy policy if legal or technical changes require it. The version in force at the time of your use applies. See "last updated" above.