Privacy Policy for ImageImporter

Last Updated: November 11, 2025

Introduction

ImageImporter ("we", "our", or "the app") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our iOS application.

Information We Collect

Photos and Videos

ImageImporter accesses and processes:

Photos and videos imported from your camera via USB
Photos and videos from your iOS Photos library
Metadata associated with your media files (e.g., filenames, creation dates, file sizes)

Device Information

Available storage capacity (to prevent device storage issues)
Camera connection status

Optional User-Provided Information

If you configure S3/R2 upload functionality:

S3-compatible storage endpoint URL
Access credentials (stored securely in iOS Keychain)
Custom bucket names and paths

How We Use Your Information

Local Processing Only

All photo importing, staging, and library management happens locally on your device
We do not collect, store, or transmit your photos/videos to any third-party servers operated by us

User-Controlled Cloud Upload (Optional)

If you choose to configure and use the S3/R2 upload feature:

Photos and videos are uploaded only to your own S3-compatible storage (e.g., Cloudflare R2, AWS S3, or compatible services)
You control the destination, access credentials, and what gets uploaded
Images are resized to 2048px max dimension and converted to JPEG format
Videos are converted to H.264/AAC/MP4 format at 1080p resolution
EXIF metadata is stripped during processing for privacy
Uploads occur only when you explicitly trigger them

Data Storage and Security

On Your Device

Imported photos are temporarily stored in the app's Caches directory during staging
The Caches directory is automatically cleaned up by iOS when storage is needed
Files in staging are removed when you delete the app
S3 credentials are stored securely in iOS Keychain (encrypted by iOS)

Cloud Storage (User-Configured)

If you configure S3/R2 uploads, files are sent directly to your own storage account
We do not have access to your uploaded files or credentials
Data retention and deletion policies are determined by your storage provider and your configuration

Security Measures

We implement security through iOS platform features:

All processing occurs locally using iOS security sandbox
S3 credentials encrypted in iOS Keychain
HTTPS/TLS encryption for S3 uploads
No data transmitted to servers we control

In the unlikely event of a security issue affecting S3 credentials stored in the app, we will notify users through an app update and in-app notification.

Data Retention

Staging Area Photos: Retained until you manually delete them or delete the app. The iOS system may also clear cached files if storage is needed.
Photos Library: Photos you add to your library are retained indefinitely unless you delete them through the iOS Photos app.
S3 Uploads: Retention is controlled by your storage provider's settings. We do not retain any data.
S3 Credentials: Stored in iOS Keychain until you delete them in app settings or delete the app.

Third-Party Services

Apple iOS Services

Photos Library: We request permission to add photos and manage your library
Camera Access: We request permission to detect and import from USB-connected cameras
iCloud: If you have iCloud Photos enabled, imported photos may sync via iCloud (controlled by iOS settings)

S3-Compatible Storage (Optional)

If you configure S3/R2 uploads:

You are responsible for selecting and configuring your storage provider
Data transmission is encrypted via HTTPS
Your storage provider's privacy policy and terms apply to uploaded content
Common providers: Cloudflare R2, Amazon S3, DigitalOcean Spaces, Backblaze B2, Wasabi, etc.

We do not:

Share your photos, videos, or data with any third parties
Use your photos for advertising or analytics
Track your usage or behavior
Sell or rent your information

The only data transmission occurs when you explicitly:

Configure and trigger uploads to your own S3-compatible storage
Use your storage provider's callback/webhook feature (if configured)

Your Rights and Controls

You have complete control over:

Which photos/videos to import from your camera
Which photos to push from staging to your Photos library
Which photos to upload to S3 (if configured)
S3 credentials and configuration (can be changed or deleted anytime)
Deleting staged photos before they're saved to Photos library
Clearing the entire staging area

Permissions

You can manage app permissions in iOS Settings > ImageImporter:

Photos access (required for core functionality)
Camera access (required for USB import functionality)

Data Deletion

To delete all app data:

Clear staging area using the "Clear Stage" button in the app
Delete the app from your device
If you uploaded to S3/R2, delete files from your storage account

Children's Privacy

ImageImporter does not knowingly collect information from children under 13. The app is intended for photographers and requires manual configuration.

Jurisdiction and Applicable Law

This app is operated from the United States. By using ImageImporter, you consent to the processing of your data in accordance with this Privacy Policy and applicable laws.

For users in the European Union (GDPR): We do not collect "personal data" as defined by GDPR. All photo processing occurs locally on your device. Your photos are not transmitted to us. S3 uploads (if used) go directly to your chosen provider.

For users in California (CCPA): We do not sell personal information as defined by CCPA. We do not collect personal data for sale or sharing with third parties.

International Users

ImageImporter is available worldwide. All data processing occurs on your device regardless of your location. If you choose to use S3 uploads, data transmission is between your device and your chosen storage provider.

Changes to This Policy

We may update this Privacy Policy periodically. Changes will be reflected in the "Last Updated" date above. Continued use of the app after changes indicates acceptance. We will notify users of material changes through an app update notification.

Contact Information

For questions about this Privacy Policy, please contact:

Email: See support page Website: evanpaschke.com

We aim to respond to privacy inquiries within 7 business days.

Technical Details for Advanced Users

Encryption

S3/R2 uploads use HTTPS (TLS 1.2+ encryption in transit)
Credentials stored using iOS Keychain (AES-256 encrypted at rest)
Standard iOS security for Photos library access

Data Processing

Image resizing: max 2048px dimension, JPEG format, 85% quality
Video conversion: H.264/AAC codec, MP4 container, 1080p max resolution
Metadata stripping: EXIF data removed during S3 upload processing
Temporary files: stored in Caches directory, cleaned up after processing

Open Source

ImageImporter uses standard Apple frameworks:

ImageCaptureCore (camera import via PTP protocol)
Photos/PhotosUI (library access)
AVFoundation (video processing)
CryptoKit (AWS Signature V4 for S3 authentication)

App Store Privacy Nutrition Label

Required disclosures for App Store Connect:

Data Linked to You: NONE

We do not link any data to your identity.

Data Not Linked to You: NONE

We do not collect data even in anonymized form.

Data Used to Track You: NONE

We do not track you across apps or websites.

Data Used for Third-Party Advertising: NONE

We do not share data with advertisers or ad networks.

Compliance Summary

COPPA (Children's Online Privacy Protection Act): We do not knowingly collect information from children under 13.

GDPR (General Data Protection Regulation): We do not process personal data. All processing is local to your device.

CCPA (California Consumer Privacy Act): We do not sell personal information. We do not collect personal data for commercial purposes.

Apple App Store Guidelines: This privacy policy complies with Apple's App Privacy Details requirements.

This privacy policy was last reviewed and updated on November 11, 2025.