Privacy Policy
Effective Date: 25 April 2026
1. Data Controller
Aryber (“we”, “us”, “our”) is the data controller for the Histora Lens mobile application.
Privacy Contact: gdpr@historalens.com
2. Scope
This Privacy Policy explains how we collect, use, store, and protect personal data when you use Histora Lens, including artifact scanning, location discovery, notifications, analytics, wallet, purchases, and premium features.
3. Data We Collect
Account and Device Data:
We may collect a device UUID, display name, email address, avatar, language, timezone, device information, app version, and account or device identifiers needed to operate the service.
Social Login Data:
If social login is enabled and you choose to use it, we may receive authentication data from Apple or Google, such as an identity token, email address, and name, depending on the provider and your permissions.
Scanning Data:
When you scan an artifact, landmark, monument, or upload an image from your gallery, we process the selected photo and related scan result data to provide historical analysis and app functionality.
Location Data:
With your permission, we may process your latitude and longitude to center the map, show nearby historical locations, and improve location-based discovery.
Notifications:
If you enable notifications, we may collect and store a push notification token, such as an FCM token, to send scan updates, reminders, and service-related notifications.
Wallet, Credits, and Purchases:
We process wallet, credit, premium entitlement, subscription, and purchase status data to provide paid features, restore purchases, and manage premium access. Payments are processed through Apple In-App Purchase and/or subscription infrastructure providers. We do not collect or store your payment card details.
Analytics and Product Interaction:
With applicable consent and permissions, we may collect limited product interaction data, such as app opens, screen views, feature usage, paywall events, purchase flow events, and diagnostic interaction signals.
Advertising and Rewarded Ads:
If you use rewarded ads, advertising partners may process ad interaction data to deliver ads, prevent fraud, measure ad performance, and grant rewards.
Diagnostics:
We may collect crash logs, error reports, device state, app version, and technical diagnostics through error monitoring tools.
AI and Audio Processing:
Artifact scans and related content may be processed by AI, LLM, or text-to-speech providers to generate historical analysis, descriptions, and audio narration.
4. Purposes and Legal Basis
We process personal data for the following purposes and legal bases under GDPR Article 6:
Contract Performance:
To provide the core app service, including scans, results, map features, wallet, credits, premium access, restore purchases, and account/device functionality.
Legitimate Interests:
To maintain security, prevent abuse and fraud, improve app reliability, debug errors, monitor crashes, understand aggregated product performance, and improve user experience.
Consent:
To access camera, photo library, location, notifications, and tracking where required by the operating system or applicable law.
Legal Obligations:
To comply with tax, accounting, platform, consumer protection, and legal recordkeeping obligations.
5. Third-Party Processors and Partners
We use third-party service providers to operate Histora Lens:
Category | Providers | Purpose |
|---|---|---|
Authentication | Apple, Google | Social login, if enabled and used |
Push Notifications | Firebase Cloud Messaging | Push notification delivery |
Subscriptions and Purchases | Apple In-App Purchase, Adapty | Subscription status, premium entitlements, paywalls, purchase restoration |
Advertising | Google AdMob | Rewarded ads, ad delivery, fraud prevention, ad measurement |
Analytics | PostHog | Product analytics and product interaction measurement |
Error Monitoring | Sentry | Crash reporting, diagnostics, app stability |
AI / LLM Processing | OpenAI, Gemini, or similar providers | Artifact analysis and historical content generation |
Text-to-Speech | Google Text-to-Speech, ElevenLabs, or similar providers | Audio narration |
Infrastructure | Hosting, database, storage, backend providers | Secure operation of the service |
6. Tracking and App Privacy
Histora Lens may use tracking technologies only where permitted and disclosed. On iOS, tracking is requested through Apple’s App Tracking Transparency prompt when applicable.
If you do not grant tracking permission, we restrict tracking-based analytics and advertising measurement where required. Some non-tracking data may still be processed for app functionality, security, diagnostics, purchase handling, and legal compliance.
7. International Transfers
Your data may be processed outside your country or the European Economic Area, including in the United States. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses, data processing agreements, technical protections, and vendor security controls.
8. Data Retention
We retain personal data only as long as necessary for the purposes described in this Privacy Policy.
Account and device data is generally retained while your account or device profile is active. After an account deletion request, active personal data is deleted or anonymized within 30 days, unless longer retention is required by law, fraud prevention, dispute resolution, or financial recordkeeping obligations.
Backups may be retained for up to 90 days before being overwritten or deleted. Financial, purchase, and legal records may be retained for the period required by applicable law.
9. Account Deletion
You can delete your account directly in the app from the account or settings section. After deletion, we remove or anonymize personal data associated with your account or device within 30 days, subject to legal, security, fraud prevention, and financial record retention requirements.
You may also contact us at gdpr@historalens.com for deletion or privacy requests.
10. Your GDPR Rights
Depending on your location, you may have the right to:
Access your personal data
Correct inaccurate or incomplete data
Request deletion of your data
Restrict or object to processing
Request data portability
Withdraw consent at any time
Object to processing based on legitimate interests
File a complaint with your local supervisory authority
To exercise your rights, contact us at:
We aim to respond within one month, unless an extension is permitted by applicable law.
11. Children
Histora Lens is not intended for children under the applicable digital consent age in their country or region. We do not knowingly collect personal data from children without appropriate consent.
If you believe a child has provided us personal data, contact us and we will take appropriate action.
12. AI-Generated Content
Histora Lens may use AI systems to generate artifact descriptions, historical summaries, and audio narration. AI-generated content is provided for informational and educational purposes only. It may be incomplete or inaccurate and should not be treated as professional, legal, medical, financial, or safety advice.
13. Security
We use reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. However, no system is completely secure, and we cannot guarantee absolute security.
14. Privacy Policy Updates
We may update this Privacy Policy from time to time. Material updates may be notified in-app or through other appropriate channels.
The effective date at the top of this policy shows when it was last updated.
15. Contact
For privacy questions, data protection requests, or complaints, contact:
Aryber – Histora Lens
Email: gdpr@historalens.com