PRIVACY
POLICY
1. DATA MINIMIZATION & CORE PHILOSOPHY
Loyalli operates on the fundamental principle of Privacy by Design. We believe that your loyalty cards are your personal assets. To use the core functions of our digital wallet, we absolutely do not require you to create an account, provide an email address, link a phone number, or connect social media profiles.
This Privacy Policy strictly governs how technical data is handled, stored, and processed within the Loyalli ecosystem. It clearly separates data that stays forever on your device from data you actively choose to share with the Loyalli community.
Local Vault & P2P Sharing
By default, all cards you scan or generate are stored locally on your device. You can share them privately via a static compressed link.
- ✔ Never sent to our servers
- ✔ Secure P2P sharing via URLs
- ✔ Deleted if you uninstall the app
Community Publishing
If you explicitly toggle a card to be shared with the public, that specific payload is uploaded to our community database.
- ✔ Voluntary opt-in process
- ✔ Card randomization by locale
- ✔ Removable at any time
2. PUBLIC DATA TRANSPARENCY
When you share a card with the community, we only store the technical parameters necessary to render the card for other users. We do not attach this to a real-world identity. Below is the exact schema we store:
{
"_id": { "$oid": "12345d42f58cb848441309572" },
"bar_type": "qr",
"store_name": "MyStore",
"store_value": "mystore",
"value": "0123456789", // HASHED IN DATABASE
"category": "groceries",
"locale": "en_US",
"is_published": true,
"is_published_by_user": true,
"publisher_details": {
"published_at": { "$date": "1999-01-01T12:00:00.000Z" },
"publisher_email": "user_provided@email.com" // HASHED IN DATABASE
},
"card_metadata": { "views": X }
}3. TELEMETRY & SUB-PROCESSORS
To keep Loyalli bug-free and operational, we use industry-standard technical tools. Mobile App tracking is mandatory, while Web tracking relies on cookies.
| Service | Purpose | Data Collected |
|---|---|---|
| Sentry | Crash reporting & Bug tracking | Device OS, App Version, Stack traces, Anonymous crashes. |
| RevenueCat | Subscription handling | Anonymous User ID, App Store Receipts, Active sub status. |
| Rybbit | Traffic & Event analytics | Clicks, Pageviews, Outbound links, IP Addresses (for security). |
SESSION REPLAY & TRACKING: In the Web App, Session Replay to fix UI bugs only activates if you explicitly accept cookies. In the Mobile App, basic operational tracking is mandatory upon use to ensure stability.
4. IP ADDRESSES & SECURITY
When you interact with our APIs or web infrastructure, your IP address is temporarily processed. This is a standard technical requirement of the internet. We utilize this data strictly for:
- Preventing automated bot attacks and scraping.
- Rate-limiting excessive API requests to protect server health.
- Identifying malicious traffic patterns (DDoS mitigation).
We do not use IP addresses to build marketing profiles or to geolocate you for targeted advertising.
5. YOUR RIGHTS & DELETION
Taking down your data
If you have published a card and wish to remove it from the public sphere, you can instantly do so within the Loyalli app by unchecking the public toggle. The card is instantly purged from our public-facing endpoints.
Manual GDPR Requests
For complete data erasure related to your device or any provided email addresses, please contact our data compliance officer directly. We process all verified deletion requests within 30 days pursuant to the General Data Protection Regulation (GDPR).