Effective from: 15 May 2026.
Renoery (on English-language stores) and Remontownia (on the Polish store) are the same mobile application — only the displayed name and default interface language differ. This privacy policy covers both variants.
1. Data controller
The controller of your personal data under the EU General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”) is:
Pawel Sikora, sole proprietor based in Poland.
Privacy contact: hello@renoery.com
No Data Protection Officer has been appointed — given the single-person scale and absence of processing of special categories of data, this is not required (Art. 37 GDPR).
2. What we collect and what we do NOT collect
The app works offline. All calculations (room dimensions, material parameters, prices, projects, shopping list) run locally on your device. We do not transmit any measurement data, calculations, projects or notes to our servers — because we do not operate any servers that would receive such data.
We do NOT use: behavioural analytics (PostHog, Mixpanel, Amplitude, Firebase Analytics — none of these are integrated), crash reporting (Sentry, Crashlytics — neither is integrated), user accounts, sign-in, profiling, biometric data, GPS location, contacts, calendar access, photos, or file access outside the app’s own storage.
The data that is actually collected falls into three categories described below.
2.1 Local data (stays on your device)
The app stores on your device:
- Your projects and calculations (
projects.jsonin the app’s storage): project names, emoji, notes, calculation parameters (dimensions, prices, material types). - Settings (UserDefaults on iOS / SharedPreferences on Android): selected language, theme, reminder mode, onboarding flag, the last-used mode of each calculator.
This data is not sent to any server we control. It stays within the application sandbox and is removed when you uninstall the app.
Auto Backup (Android): by default Android Auto Backup copies these files to the private area of your Google Drive (up to 25 MB per app, accessible only to Google and you). You can disable it under Settings → Google → Backup. The controller has no access to these backups.
iCloud Backup (iOS): by default, files in the app’s Documents/ directory are included in your system iCloud backup if you have enabled iCloud Backup for the iPhone. The controller has no access to these backups.
2.2 Banner ads (Google AdMob)
In the free version of the app a static banner by Google AdMob is shown at the bottom of the screen. We do not use full-screen interstitial ads, rewarded videos, or native ads — only the banner. The one-time Remove ads purchase removes the banner for life.
Displaying the banner involves data processing by Google Ireland Limited / Google LLC as a separate data controller. AdMob collects, in particular:
- Advertising identifier (IDFA on iOS / AAID on Android) — unless you have limited it in system settings. On iOS our app does not present the App Tracking Transparency prompt, so AdMob operates in non-personalized ads mode and does not access IDFA. On Android the AAID is available until you reset it under Settings → Google → Ads → Delete advertising ID.
- IP address, device model, OS version, language, screen resolution, network type.
- Ad interactions (impressions, clicks).
- Data for SKAdNetwork (Apple) — privacy-preserving conversion attribution that does not identify an individual user.
Google’s privacy policy: https://policies.google.com/privacy. AdMob policy and opt-out options: https://support.google.com/admob/answer/6128543.
Legal basis: Art. 6(1)(f) GDPR — legitimate interest of the controller (sustaining the free, ad-supported variant of the app). You can limit this by: purchasing Remove ads, restricting the advertising identifier at the system level, or having the system block tracking via iOS App Tracking Transparency (or the Android equivalent).
2.3 In-app purchases (Apple App Store / Google Play)
The one-time Remove ads purchase (price ~$3.99 / ~14 PLN) is handled by Apple In-App Purchase (StoreKit 2) or Google Play Billing. We have no access to your payment data (card number, bank account — these are handled exclusively by Apple / Google).
The app receives from Apple / Google:
- transactionID and originalTransactionID (Apple) or purchaseToken and orderId (Google) — transaction identifiers.
- productID (
remove_ads_lifetime) — what was purchased. - Purchase date — to verify entitlement.
The app does not persist these identifiers locally and does not transmit them to any server. Entitlement is re-derived at each app launch directly from Apple / Google (StoreKit currentEntitlements / Play Billing queryPurchasesAsync).
Apple privacy policy: https://www.apple.com/legal/privacy/. Google Play privacy: https://policies.google.com/privacy.
Legal basis: Art. 6(1)(b) GDPR — performance of the purchase contract.
2.4 Website analytics (Cloudflare Web Analytics)
The remontownia.app and renoery.com websites use Cloudflare Web Analytics — a cookieless analytics tool that does not collect user identifiers or profiling data. Only aggregates are collected: visit counts, country, device type, traffic source.
Cloudflare processes this data as a data processor (Cloudflare DPA: https://www.cloudflare.com/cloudflare-customer-dpa/).
Legal basis: Art. 6(1)(f) GDPR — legitimate interest (analysing site traffic without profiling).
3. Purposes and retention periods
| Purpose | Basis | Retention |
|---|---|---|
| Showing banner ads | Art. 6(1)(f) | While you use the free version; immediately stopped after Remove ads purchase |
| Processing the IAP transaction | Art. 6(1)(b) | Indefinitely (lifetime purchase) — entitlement is held by Apple/Google |
| Website analytics | Art. 6(1)(f) | 6 months (Cloudflare Web Analytics default) |
| App functionality (local data) | Art. 6(1)(b) | As long as the app is installed; uninstallation removes the data |
4. Recipients of data
Your data may be processed by the following parties:
- Google Ireland Limited / Google LLC — AdMob ad serving (separate controller).
- Apple Distribution International Ltd. / Apple Inc. — IAP processing, app distribution via App Store.
- Google Commerce Limited / Google LLC — IAP processing, distribution via Google Play.
- Cloudflare, Inc. — website hosting and Web Analytics.
We do not share your data with data brokers, affiliate networks or marketing partners beyond AdMob banner serving.
5. International transfers
Google, Apple and Cloudflare are headquartered in the USA. Transfers take place on the basis of:
- Standard Contractual Clauses (Commission Implementing Decision (EU) 2021/914) — for all three parties.
- EU-US Data Privacy Framework — Google and Apple are certified (https://www.dataprivacyframework.gov/).
6. Your rights
Under the GDPR you have the following rights:
- Right of access (Art. 15) — to know what data is processed.
- Right to rectification (Art. 16).
- Right to erasure (“right to be forgotten”, Art. 17) — for local data: uninstall the app.
- Right to restriction of processing (Art. 18).
- Right to data portability (Art. 20) — you can export your projects to PDF from inside the app.
- Right to object (Art. 21) — in particular against ad-related processing: the Remove ads in-app purchase fulfils this objection immediately.
- Right to withdraw consent (where processing relied on consent) — without affecting earlier lawful processing.
- Right to lodge a complaint with a supervisory authority. The competent authority for the controller is the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, Poland, https://uodo.gov.pl/en. Users in other EU/EEA countries may lodge a complaint with their local DPA.
To exercise any of these rights, email hello@renoery.com. I respond within 30 days (Art. 12(3) GDPR).
7. Profiling and automated decisions
We do not take decisions based solely on automated processing, including profiling (Art. 22 GDPR). Google AdMob may profile only for the purpose of displaying personalised ads — and only if you have allowed this via your system-level advertising identifier settings.
8. Security
- Local data is stored in the application sandbox — accessible only to the app and the operating system (iOS sandbox / Android internal storage).
- Communication with Cloudflare Pages, AdMob, App Store and Play Store uses HTTPS (TLS 1.2+) with certificate verification.
- The
renoery.comandremontownia.appdomains use HTTPS exclusively;.appis on Google’s HSTS preload list, enforcing HTTPS at the browser level. - The app does not load remote code at runtime, does not expose any WebView outside the Privacy/Terms viewer, and cannot read files outside its own sandbox.
9. Children
The app is not directed at children under 13. We do not knowingly collect data of children in that age group.
10. Changes to this policy
Material changes will be noted in the Effective from field above. The archived version is available in the project’s source repository history.
11. Contact
For any privacy matter: hello@renoery.com.
A postal address for formal correspondence (Art. 12 GDPR) is available on request via the email above.