Privacy Policy

Last updated: April 3, 2026

GifLoop ("we", "us", "our") operates the GifLoop mobile application (the "App") for iOS. This Privacy Policy explains what data we collect, how we use it, the legal bases for processing, and your rights regarding that data. GifLoop is the data controller for the purposes of the EU General Data Protection Regulation ("GDPR"), the UK GDPR, the California Consumer Privacy Act ("CCPA"), the California Privacy Rights Act ("CPRA"), and other applicable data protection laws.

1. Data Controller & Contact

The data controller responsible for your personal data is:

Entity: GifLoop (operated by Ariel Agor)
Privacy inquiries: privacy@gifloop.app

For privacy-related requests, we will acknowledge receipt within 5 business days and provide a substantive response within 30 days. If we require additional time (up to 60 additional days for complex requests), we will notify you of the extension and the reason within the initial 30-day period.

2. Our Privacy Commitment

GifLoop is designed with privacy as an architectural constraint, not just a policy promise. The App operates entirely on your device:

All GIF creation, editing, and encoding happens locally on your iPhone or iPad.
Your photos, videos, camera captures, and created GIFs never leave your device unless you explicitly share or export them.
Audio recordings and imported audio files are processed and stored locally.
We have no servers that receive, store, or process your creative content.

We are committed to the principles of data minimization and purpose limitation. We collect only the minimum personal data necessary to provide the App's functionality, and we process that data solely for the purposes described in this Privacy Policy. We do not sell your data, use it for advertising, or share it with data brokers.

3. Information We Collect

3.1 Information You Provide

GifLoop does not require account creation. No email, name, or login credentials are collected. If you contact us via email for support, we will receive your email address and the content of your message.

3.2 Purchase Data

If you purchase GifLoop Pro ($4.99 one-time in-app purchase), the transaction is processed entirely by Apple through the App Store. We receive:

A purchase receipt confirming your Pro entitlement
Transaction identifiers for purchase validation

We do not receive your payment card details, billing address, or Apple ID. Apple processes all payment information under its own privacy policy.

3.3 Trial Counter

GifLoop provides 3 free Pro-quality exports before requiring the Pro upgrade. This trial counter is stored in your device's Keychain (Apple's encrypted credential store). The counter value is a single integer stored locally — it is never transmitted to any server.

3.4 Device & Technical Data

The App does not collect device identifiers, IP addresses, or analytics data. We do not use any analytics SDKs, crash reporting services, or tracking technologies within the App.

3.5 Content Data (Stays on Device)

The following data is created and stored exclusively on your device and is never transmitted to us or any third party:

Photos and videos imported into projects
Camera captures taken within the App
Audio recordings made within the App
Audio files imported from the Files app or Music library
Created GIF animations and video exports
Project data (frame ordering, timing, effects, filters, overlays)
Drawing overlays and text annotations
SwiftData persistence files (project metadata)

4. What We Do NOT Collect

We are explicit about what GifLoop never collects, transmits, or stores on any server:

Your photos, videos, GIFs, or any visual content
Audio recordings or imported audio files
Contact lists, calendar data, or browsing history
Location data (GPS, Wi-Fi, or IP-based)
Device advertising identifiers (IDFA)
Device fingerprints or hardware identifiers
Usage analytics, session data, or behavioral telemetry
Crash reports (we do not integrate any crash reporting SDK)
Names, email addresses, or any personally identifying information (unless you contact support)

5. How We Use Your Information

The minimal data we process is used solely for:

Purchase validation: Verifying your GifLoop Pro entitlement via Apple StoreKit.
Trial tracking: Counting free Pro exports via the on-device Keychain counter.
Support: Responding to your inquiries if you contact us by email.

We do not use your data for profiling, advertising, marketing, automated decision-making, or any purpose beyond providing the App's functionality.

6. Legal Basis for Processing (GDPR Article 6)

For users in the EU/EEA and UK, we process personal data under the following legal bases:

Performance of a contract (Article 6(1)(b)): Processing purchase receipts is necessary to provide you with GifLoop Pro features as part of the purchase agreement.
Legitimate interests (Article 6(1)(f)): The on-device trial counter serves our legitimate interest in offering a try-before-you-buy experience. This processing is minimal (one integer on your device) and does not override your fundamental rights.
Consent (Article 6(1)(a)): When you contact us for support, you consent to our processing of your email and message content. You may withdraw consent at any time.
Legal obligation (Article 6(1)(c)): We may retain purchase records as required by applicable tax and financial reporting laws.

7. Device Permissions

GifLoop requests the following iOS permissions, each directly relevant to core app functionality:

Photo Library (read/write): Required to import photos and videos into projects, and to save created GIFs and videos to your photo library. You can grant read-only access or full access.
Camera: Required for the in-app camera capture feature. Optional — you can use the App without granting camera access by importing existing media.
Microphone: Required for recording audio soundtracks within the App. Optional — you can use the App without audio features.
Music Library (Media & Apple Music): Required to import music tracks as GIF soundtracks. Optional — only requested when you choose to import from your music library.

All permissions are requested at the point of use with clear purpose strings explaining why the permission is needed. You can modify or revoke any permission at any time via iOS Settings → GifLoop. The App provides alternative functionality when permissions are declined (e.g., manual import via Files app instead of direct photo library access).

8. Third-Party Services

GifLoop uses the following Apple platform services:

Apple StoreKit (Apple Inc.): Processes in-app purchases. Apple handles all payment data under its own privacy policy. Apple Privacy Policy
Apple Keychain Services: Stores the trial export counter securely on your device. Data remains on-device and is managed by iOS.

GifLoop does not integrate any third-party analytics, advertising, crash reporting, or social media SDKs. There are no third-party trackers or data processors beyond Apple's platform services.

Third-Party Data Protection

Any third party with whom the App shares user data (currently limited to Apple for purchase processing) provides the same or equal protection of user data as stated in this Privacy Policy and as required by the Apple App Store Review Guidelines.

9. Cookies & Tracking Technologies

GifLoop does not use cookies, tracking pixels, web beacons, device fingerprinting, or any cross-app/cross-site tracking technologies. The App does not participate in Apple's App Tracking Transparency framework because no tracking occurs. We do not collect advertising identifiers (IDFA) or build user profiles of any kind.

10. Data Storage & Security

All user content (photos, videos, GIFs, audio, projects) is stored locally on your device in the App's sandboxed container, protected by iOS data protection. Purchase validation data is handled by Apple's StoreKit framework. The trial counter is stored in Apple Keychain, which provides hardware-level encryption.

Since GifLoop does not transmit your content to any server, there is no risk of server-side data breaches affecting your creative content. We do not operate backend servers, databases, or cloud storage for user data.

International Data Transfers

GifLoop does not transfer personal data internationally. All data remains on your device. The only international transfer that may occur is between your device and Apple's servers during in-app purchase processing, which is governed by Apple's privacy policy and data protection agreements.

11. Data Retention

Content data: Stored on your device until you delete it within the App or uninstall the App. We have no access to or control over this data.
Trial counter: Stored in Keychain indefinitely (persists across app reinstalls). Resetting the counter requires manual Keychain management.
Purchase records: Apple retains purchase records per its own policies. We do not independently store purchase data beyond runtime StoreKit verification.
Support emails: If you contact us, we retain your email for up to 12 months after resolving your inquiry, then permanently delete it.

12. Your Rights

Data Access & Portability (GDPR Articles 15, 20)

Since GifLoop stores all content on your device, you already have direct access to all your data. You can export your GIFs and videos at any time via the App's export and Share Sheet features. Project files are stored in the App's container within your device's file system.

Data Deletion (GDPR Article 17)

You can delete your data at any time:

Individual projects: Delete within the App.
All App data: Uninstall GifLoop from your device. This removes all projects, exports, cached data, and the App's sandboxed container.
Trial counter: Uninstalling the App does not clear Keychain data. Contact privacy@gifloop.app if you need assistance.
Support correspondence: Request deletion by emailing privacy@gifloop.app.

Additional Rights Under GDPR

If you are located in the EU/EEA or UK, you also have the right to:

Access (Article 15): Request confirmation of what personal data we hold about you.
Rectification (Article 16): Request correction of inaccurate personal data.
Restriction of processing (Article 18): Request that we limit how we use your data while a complaint is being resolved.
Object to processing (Article 21): Object to processing based on legitimate interests.
Withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
Lodge a complaint: You have the right to lodge a complaint with your local data protection supervisory authority.

To exercise any of these rights, contact privacy@gifloop.app. We will respond within 30 days.

13. California Privacy Rights (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

Right to know: You may request disclosure of the categories and specific pieces of personal information we have collected. Given GifLoop's minimal data collection, this is limited to purchase receipts (processed by Apple) and any support correspondence.
Right to delete: You may request deletion of your personal information.
Right to correct: You may request correction of inaccurate personal information.
Right to opt out of sale/sharing: We do not sell or share (as defined by CCPA/CPRA) your personal information. No opt-out is necessary.
Right to non-discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise your rights, contact privacy@gifloop.app. We will verify your identity and respond within 45 days.

14. Data Breach Notification

Since GifLoop does not store user data on servers, the risk of a data breach affecting your content is effectively zero. In the unlikely event that any personal data we do hold (e.g., support email correspondence) is compromised, we will:

Notify the relevant supervisory authority within 72 hours of becoming aware of the breach (GDPR Article 33).
Notify affected individuals without undue delay when the breach is likely to result in a high risk to their rights and freedoms (GDPR Article 34).
Provide details of the nature of the breach, the likely consequences, and the measures taken to address it.

15. Children's Privacy

GifLoop is rated 4+ on the App Store and is suitable for all ages. The App does not collect personal information from any user, including children. Since the App operates entirely on-device without account creation, server-side data collection, or tracking, it complies with the Children's Online Privacy Protection Act (COPPA), GDPR provisions regarding children's data (Article 8), and equivalent regulations in other jurisdictions.

If you believe a child has provided us with personal information (e.g., via a support email), contact us at privacy@gifloop.app and we will delete it promptly.

16. Automated Decision-Making

GifLoop does not engage in automated decision-making or profiling as defined by GDPR Article 22. The App's image processing, GIF encoding, and effects are local computational operations applied to content you create and control. These operations produce no profiles, scores, or evaluations of you as a person.

17. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page. For significant changes that reduce your rights, we will provide notice through the App Store update description. Continued use of the App after changes constitutes acceptance of the revised policy.

18. Severability

If any provision of this Privacy Policy is held to be invalid, illegal, or unenforceable by a court of competent jurisdiction, the remaining provisions shall continue in full force and effect.

19. Contact

For privacy questions, data requests, or concerns:

Email: privacy@gifloop.app
General support: support@gifloop.app