Privacy Policy

1. Introduction

Appship ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered App Store Optimization service.

2. Information We Collect

2.1 Account Information

When you register for an account, we collect:

• Email address
• Account creation and update timestamps
• Subscription and payment status (via Lemonsqueezy)

2.2 Apple App Store Connect Credentials

To enable direct App Store submission, we securely store:

• Apple API Key ID
• Apple Issuer ID
• Apple Private Key (encrypted)

2.3 App and Metadata Information

When you use our services, we process:

• App names, bundle IDs, and SKUs
• App descriptions and metadata you provide for generation
• Generated metadata (titles, subtitles, keywords, descriptions)
• Version information and submission history

2.4 Usage Data

We automatically collect:

• API request logs and timestamps
• Credit usage and transaction history
• Feature usage patterns
• Error logs for debugging purposes

2.5 API Keys

We generate and store API keys (format: as_live_*) for authentication purposes. These keys are hashed and cannot be retrieved after initial generation.

3. How We Use Your Information

We use the collected information for:

• Service Delivery: Generating AI-powered metadata, submitting to App Store Connect, and managing your projects
• Authentication: Verifying your identity and API access
• Billing: Processing payments and managing subscriptions through Lemonsqueezy
• Communication: Sending service updates, credit alerts, and important notifications
• Improvement: Analyzing usage patterns to enhance our AI models and features
• Support: Responding to inquiries and resolving issues
• Security: Detecting and preventing fraud, abuse, and unauthorized access

4. AI and Data Processing

Our service uses Google Gemini AI for metadata generation:

• App information you provide is sent to Google's AI services for processing
• Generated content is returned to our servers and delivered to you
• We do not use your app data to train AI models
• AI processing is subject to Google's AI terms and privacy policies

5. Data Sharing and Disclosure

We may share your information with:

• Apple Inc.: When you submit metadata to App Store Connect using your credentials
• Google (Gemini AI): For AI-powered content generation
• Lemonsqueezy: For payment processing and subscription management
• Infrastructure Providers: MongoDB Atlas for database hosting, Railway for application hosting
• Legal Authorities: When required by law or to protect our rights

We do not sell your personal information to third parties.

6. Data Security

We implement security measures including:

• Encryption of sensitive data at rest and in transit
• Secure storage of Apple credentials with encryption
• API key hashing and secure authentication
• Regular security audits and updates
• Access controls and employee training

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.

7. Data Retention

We retain your data as follows:

• Account data: Retained while your account is active and for 30 days after deletion
• Apple credentials: Deleted immediately upon your request or account deletion
• Usage logs: Retained for 90 days for debugging and analytics
• Transaction records: Retained for 7 years for legal and tax compliance

8. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Object to or restrict certain processing
• Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@appship.ai

9. International Data Transfers

Your data may be transferred to and processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. MCP and Claude Integration

When using Appship through Model Context Protocol (MCP) with Claude:

• Your API key is stored locally on your machine in ~/.appship/credentials.json
• Requests made through Claude are processed the same as direct API calls
• We log MCP requests for debugging but do not store conversation content
• Your prompts to Claude are subject to Anthropic's privacy policy

11. Children's Privacy

Appship is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe a child has provided us with personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes by:

• Posting the updated policy on our website
• Sending an email to registered users
• Displaying a notice in the Service

The "Last updated" date at the top of this page indicates when the policy was last revised.

13. Contact Us

For questions or concerns about this Privacy Policy or our data practices, contact us at: