1. Who We Are
StatusVault is published by KKB Tech ("we", "us"), an independent software publisher. The StatusVault iOS app and the website at www.statusvault.org are operated by KKB Tech. We are not affiliated with USCIS, the US Department of State, or any government agency.
Contact: [email protected]
2. Scope of This Policy
This policy covers both the StatusVault iOS app (distributed via the Apple App Store) and the web app at www.statusvault.org. Where behaviour differs between platforms, we call it out below.
3. Information We Collect
3.1 Information you enter
You may enter document types and expiry dates, names of yourself and family members, document numbers (optional), notes, and travel history. By default, all of this is stored only on your device โ in iOS using AsyncStorage, in the web app using your browser's localStorage. It is not transmitted to our servers unless you explicitly enable encrypted cloud backup as a Premium subscriber.
3.2 Account & authentication data
When you create an account we use Supabase as our authentication provider. We collect your email address and a salted password hash (never your plaintext password). You can also sign in with Google or Apple โ see Section 4 below for the specific data those flows return.
3.3 Premium cloud backup
Premium subscribers may enable encrypted cloud backup. When enabled, we encrypt your documents on your device with AES-256 before upload. The encryption key is derived from credentials only you control. Ciphertext is all our backend ever sees โ we cannot read your immigration documents, and neither can our hosting provider.
3.4 Subscription & billing data
If you subscribe to StatusVault Premium, your purchase is processed by Apple (in-app purchase) and managed by RevenueCat. We receive only the entitlement status (active / inactive) and an opaque user ID โ no card numbers, no Apple ID details.
3.5 Device & diagnostic data
We do not embed Google Analytics, Facebook Pixel, or any advertising trackers. We do not maintain server-side request logs that retain personal data beyond 30 days. iOS may send anonymized crash reports to Apple by default โ you can opt out in iOS Settings โ Privacy & Security โ Analytics.
4. Google & Apple Sign-In
4.1 Google Sign-In
If you choose "Continue with Google", you are taken to Google's standard OAuth consent screen. With your consent, Google returns the following profile fields to StatusVault via the email, profile, and openid scopes:
| Field | Used for |
|---|---|
Email address (email) | Identifying your account, account recovery, optional notification emails (you choose). |
Email verification status (email_verified) | Confirming the email is real before account creation. |
Google account ID (sub) | A stable, opaque identifier so we can recognize you on subsequent sign-ins without storing your password. |
Display name (name) | Personalizing the in-app greeting. Optional โ never required. |
Profile picture URL (picture) | Displaying your avatar in the app's account header. Optional โ never stored on our servers. |
We do not request access to Gmail, Google Drive, Google Contacts, Calendar, or any other Google service. We do not read, write, or scan any Google data beyond the basic profile fields above.
Specifically, we do not (a) use Google user data to serve advertising; (b) transfer Google user data to third parties except as necessary to provide or improve StatusVault, or as required by law; (c) allow humans to read Google user data, except (i) with your explicit consent for specific messages, (ii) for security investigations, or (iii) to comply with applicable law.
4.2 Apple Sign-In
If you choose "Continue with Apple", iOS shows Apple's system Sign In with Apple sheet. With your consent, Apple returns:
- A stable, opaque user identifier โ used to recognize you on subsequent sign-ins.
- Your name (only on first sign-in, only if you choose to share it).
- Your email address โ either your real address or Apple's private relay address, whichever you select. Both are treated identically by us.
Apple does not give us access to anything else on your device. We honour Apple's Sign in with Apple guidelines.
5. How We Use Your Information
- To provide document expiry tracking and reminders within the app.
- To authenticate your account via email + password, Google Sign-In, or Apple Sign-In.
- To sync your encrypted data across your devices (Premium subscribers, only with your opt-in).
- To send notifications about expiring documents (you can disable these at any time).
- To process Premium subscriptions through Apple and RevenueCat.
We do not use your information to build advertising profiles, sell to data brokers, or train machine learning models.
6. Data Retention
| Data | Retention |
|---|---|
| Documents on device | Until you delete them or uninstall the app. |
| Encrypted cloud backup (Premium) | Until you disable cloud backup or delete your account, then deleted within 30 days. |
| Account email + auth records | Until you delete your account, then deleted within 30 days. |
| Server request logs | 30 days, then automatically purged. |
| Subscription / billing records | Retained for 7 years to comply with tax law. |
7. Data Sharing
We do not sell, rent, or share your personal information with third parties for marketing. We do not show advertisements. Your immigration data is never shared with government agencies, employers, or any other third party.
The third-party processors we rely on:
- Supabase โ authentication and encrypted Premium backup storage. SOC 2 Type II compliant, hosted on AWS.
- Google โ only when you choose Google Sign-In (see Section 4.1).
- Apple โ only when you choose Apple Sign-In or subscribe to Premium via in-app purchase (see Section 4.2).
- RevenueCat โ subscription entitlement state for Premium.
- Resend โ transactional email delivery for password reset and (optional) deadline alerts.
We may disclose information if required by law (subpoena, court order) โ but we cannot disclose what we cannot read, and your encrypted documents fall in that category.
8. Your Rights
- Access โ Export all your data as JSON via Settings โ Export Data.
- Delete โ Wipe all local data via Settings โ Reset All Data.
- Account deletion โ Permanently delete your account and all cloud data via Settings โ Delete Account. We complete deletion within 30 days.
- Portability โ The JSON export imports cleanly on any device.
- Revoke OAuth access โ You can revoke Google's permission grant at myaccount.google.com/permissions and Apple's at iOS Settings โ Apple ID โ Sign in with Apple.
9. Children's Privacy
StatusVault is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us data, contact us and we will delete it.
10. International Users
StatusVault is operated from the United States. If you use the app from outside the US, your data is processed on US servers. By using the app you consent to this transfer.
11. Changes to This Policy
We may update this policy from time to time. Material changes will be reflected in the "Last updated" date at the top of this page. For significant changes affecting Google or Apple OAuth handling, we will notify signed-in users by email.
12. Contact
Questions about this Privacy Policy? Email [email protected] or write to KKB Tech via the contact form on www.statusvault.org.