Privacy Policy

Last updated: March 2026

1. Overview

TSTE ("the App") is operated by Alexander Alber. We take your privacy seriously. This policy explains what data we collect, why, and how we handle it.

2. Data We Collect

Account Data (optional): If you sign in with Apple, we receive your Apple ID and, if you choose, your name and email. We use this solely for account management and progress sync.

Usage Data: Mission completions, points, badges, and progress are stored locally on your device. If you sign in, this data is synced to our servers (Supabase) so you can access it across devices.

Location Data: The App uses your location to verify proximity to mission locations and provide navigation. Location data is processed on-device and is not stored on our servers.

Analytics: Our website (tste.app) collects anonymous page views (page path, referrer) without cookies or personal identifiers. This is GDPR-compliant.

Restaurant Ratings (community): When you rate a mission, your 4-axis score (Food, Service, Ambience, Value) is submitted to our Supabase database under your anonymous user ID. Once a restaurant has at least 10 ratings, we display an aggregated "TSTE score" to other users — individual ratings are never shown publicly.

Mission Photos (community): If you choose to upload photos with your rating, they are stored in a private Supabase Storage bucket and shown on the corresponding restaurant page to other TSTE users. Photos are published anonymously (no name attached). Before upload, EXIF metadata — including any GPS coordinates embedded by your camera — is stripped on-device by re-encoding the image. You can delete your own photos any time, or report photos uploaded by other users via the in-app Report button; we review reports within 24 hours and remove inappropriate content.

3. Data We Do NOT Collect

• We do not sell your data to third parties
• We do not use advertising trackers
• We do not store your precise GPS coordinates on our servers
• We do not use cookies on our website

4. Data Storage

App data is stored locally on your device using Apple's SwiftData framework. If you sign in, synced data is stored on Supabase (hosted in the EU). Purchases are handled entirely by Apple's App Store — we do not process or store payment information.

5. Your Rights (GDPR)

You have the right to:

• Access your data
• Request deletion of your account and all associated data
• Export your data
• Withdraw consent at any time

To exercise these rights, contact us at info@inzpyre.me.

6. Data Retention

Guest data stays on your device only. Signed-in user data is retained until you delete your account. Anonymous analytics data is retained for 12 months.

7. Children's Privacy

The App is not directed at children under 13. We do not knowingly collect data from children.

8. Changes

We may update this policy. Material changes will be communicated via the App or website.

9. Contact

Alexander Alber
Toemlingerstr. 21
81375 München
Germany
info@inzpyre.me