← Back

Privacy Policy

Last updated: May 2026

1. Data Controller

Beavom is an application published and operated by an independent developer based in France. For any questions regarding this policy, you can contact us at support@beavom.app.

2. Data We Collect

When you use Beavom, we may collect the following data:
  • Account information: email address, display name, avatar (provided via Google OAuth, Apple Sign-In, or OTP code login).
  • User content: scanned room photos, generated AI renders, floor plans created in the 2D editor.
  • Analytics data (with your consent): usage events, screen views, device information collected via PostHog and Firebase Analytics only if you have enabled analytics in your privacy settings.
  • Crash reports (with your consent): error traces and crash reports sent via Sentry only if you have enabled analytics.
  • Advertising identifiers (with your consent): SKAdNetwork 4.0 conversion values sent to Apple only if you have enabled advertising.
  • Usage data: credit balance, subscription status.
  • Push notification tokens: device identifier for sending notifications, along with your notification preferences by type.
  • Consent records: history of your privacy choices (date, categories enabled, source of change).
  • Shared data from other apps: URLs and images shared from Pinterest, Instagram, IKEA, TikTok and other compatible apps, along with the detected source platform.
  • Preferences: choices made during onboarding (stored locally on your device only).

3. Consent Management

When you first use Beavom, a consent screen lets you choose your data collection preferences. Four categories are available:
  • Necessary (always on): data essential for the service to function (authentication, content storage, credits).
  • Analytics: usage events and crash reports via PostHog, Firebase Analytics, and Sentry.
  • Advertising: install attribution via Apple SKAdNetwork 4.0.
  • Marketing: retargeting and marketing communications.

Privacy by default: by default, all optional categories are disabled. Only data necessary for the service to function is collected.

You can change your choices at any time in Settings > Privacy. Your preferences are securely stored in our database (consent_records table) and locally on your device.

4. What We Don't Collect

Beavom does not use cookies (native mobile app). Analytics and advertising data is collected only with your explicit consent. By default, no analytics data, no advertising identifiers, and no marketing data are collected. If you do not enable these categories, we collect no data beyond what is necessary for the service to function.

5. Third-Party Services

We use the following technical providers to operate the application:
  • Supabase (Netherlands) — authentication, database, file storage. Data encrypted in transit (HTTPS) and at rest. Row Level Security (RLS) policies enabled on all tables.
  • Google Gemini API — room photo analysis and AI render generation. Photos are sent in base64 for processing. Images are processed temporarily and not stored by Google.
  • Google OAuth & Apple Sign-In — secure authentication via your Google or Apple account.
  • RevenueCat — in-app purchase and subscription management.
  • Expo Push Notifications — push notification delivery (completed renders, credit reminders, weekly inspiration, purchase confirmations, subscription events).
  • PostHog (European Union) — usage and event analytics. Enabled only with your analytics consent. Data hosted in the EU.
  • Firebase Analytics (Google, United States) — usage and event analytics. Enabled only with your analytics consent.
  • Sentry (United States) — crash reports and error monitoring. Enabled only with your analytics consent.
  • Apple SKAdNetwork 4.0 — install attribution and conversion values. Enabled only with your advertising consent. Data sent to Apple.

These providers process your data in accordance with their own privacy policies and GDPR requirements.

6. Data Usage

Your data is used exclusively to:
  • Provide application features (scan, editor, AI renders)
  • Manage your account and subscriptions
  • Improve the app and understand usage (analytics, only with your consent)
  • Detect and fix bugs via crash reports (only with your consent)
  • Send push notifications if you have authorized them (completed renders, credit reminders, weekly inspiration, purchase confirmations, subscription events)
  • Respond to your support requests

7. Website (beavom.app)

The beavom.app website is a static site that collects no analytics data, uses no cookies, and embeds no tracking scripts. The only external resource loaded is Google Fonts (fonts.googleapis.com) for typography. No cookie consent banner is needed on the website.

8. Data Sharing

We do not sell or rent your personal data to anyone. Your data is only shared with the technical providers listed above, strictly as needed to operate the service. Analytics data is sent to PostHog, Firebase Analytics, and Sentry only if you have explicitly enabled analytics consent.

9. Storage & Security

Your data is stored on Supabase's secure servers (Netherlands), encrypted in transit (TLS) and at rest. Data access is protected by Row Level Security policies. Your consent choices are securely stored in the consent_records table (Supabase database) and locally on your device via AsyncStorage. We implement all reasonable technical and organizational measures to protect your data.

10. Your Rights (GDPR)

Under the General Data Protection Regulation, you have the following rights:
  • Right of access — obtain a copy of your personal data
  • Right to rectification — correct inaccurate data
  • Right to erasure — request deletion of your data
  • Right to portability — receive your data in a structured format
  • Right to object — object to the processing of your data
  • Right to withdraw consent — disable analytics or advertising at any time in Settings > Privacy. Data collection stops immediately.

Withdrawing your analytics consent immediately stops data collection via PostHog, Firebase Analytics, and Sentry. Previously collected data is subject to each provider's retention policies.

To exercise these rights, contact us at support@beavom.app. We will respond within 30 days.

11. Data Retention

Your data is retained as long as your account is active. Upon account deletion, your personal data will be deleted within 30 days, subject to legal retention obligations. AI-generated renders are stored in your space as long as your account is active. You can delete them individually at any time from your profile. Photos sent to Google Gemini API are processed temporarily and not stored by Google.

12. Changes

We may update this privacy policy. In the event of significant changes, we will notify you via the app or by email. The last update date is indicated at the top of this page.