Privacy Notice for Loki

Last updated: June 21, 2025

1. Controller & Contact

Controller: VitaApps S.R.L., Bucharest, Romania
Email: loki.app@vitaapps.dev
Data Protection Contact / DPO: loki.app@vitaapps.dev

2. Supervisory Authority

EU users may lodge complaints with their national Data Protection Authority (e.g., Romania’s ANSPDCP).

3. Scope & Updates

This notice applies to personal data processed via the Loki app and its website. Material changes will be communicated via app or email; continued use indicates acceptance.

4. What Data We Collect

4.1 Information You Provide

  • Registration data (email, password)
  • Pet photos/videos for transformation
  • AI‑generated content
  • Subscription & payment metadata via third‑party processors
  • Support inquiries and survey feedback

4.2 Automatically Collected

  • Device metadata (IP, identifiers, OS, app version, logs, analytics)
  • Camera/location data, only if granted by you

4.3 Third-Party Data

  • Profile info from social login or app stores
  • Anonymized data from analytics or ad SDKs

5. Legal Bases & Purposes

  • Service provision: performance of contract
  • Security & admin: legitimate interests
  • Marketing: subject to consent
  • Legal compliance: legal obligation

6. Data Sharing

  • With processors (hosting, payments, analytics, support) under GDPR‑compliant contracts
  • For legal obligations, court orders, or protection of rights
  • In case of business transfers (e.g., merger, acquisition)

7. International Transfers

Your data may be processed outside the EU (e.g., cloud servers). Transfers are protected via EU‑approved safeguards (Standard Contractual Clauses).

8. Cookies & Tracking

We use cookies and SDKs for analytics, performance, and crash reporting. Non‑essential tracking is subject to your explicit consent. Essential cookies (login/security) are exempt.

9. Data Retention

  • Account & subscription: until account closure + legal period
  • Pet media & AI content: up to 30 days, or until you delete it
  • Logs & analytics: up to 180 days (longer for legal reasons)
  • Support communications: until resolution or deletion request

10. Your Rights

You may, under GDPR, CCPA/CPRA, etc., access, correct, delete, object to processing, request data portability, or withdraw consent. Contact us at loki.app@vitaapps.dev.

11. Children's Privacy

Loki is not directed at children under 13. We do not knowingly collect data from minors; if discovered, it will be promptly deleted.

12. Security

We implement encryption, access controls, and secure infrastructure. While no system is 100% secure, we follow best practices.

13. Automated Decision Making

We currently do not use automated decision‑making with legal or similarly significant effects on you.

14. Third‑Party Links & APIs

Our services may integrate with third‑party APIs—each third party has its own privacy policy. Please review before sharing personal data.

15. Updates & Contact

This notice was last updated on June 21, 2025. You’ll be informed via app or email of significant updates. If you have questions, concerns, or wish to exercise your rights, contact us at loki.app@vitaapps.dev.