Privacy Policy

This Privacy Policy describes how Mapons ("App", "we", "us") handles your information. We designed Mapons to be privacy-first: your map data lives on your device by default and is never sold.

1. Data You Provide

Mapons processes data you actively provide or import, including:

• Map workspaces, layers, and pins you create inside the app
• CSV, GeoJSON, KML, or other files you import
• Addresses and coordinates you enter manually
• Map metadata such as names, colors, and notes
• AI Analyst prompts you submit
• WhatsApp messaging content you compose and send via the app

2. On-Device Storage

By default, all map data, layers, and app settings are stored locally on your device using iOS on-device storage. No data leaves your device unless you explicitly enable a cloud feature.

3. Optional Cloud Backup (Supabase)

Mapons offers an optional cloud backup feature. If you enable it:

• You sign in with your email or a social provider (Google, Apple)
• Your map backups are uploaded to a Supabase-hosted database
• You can restore or delete backups at any time from within the app
• Your account email is stored to associate backups with your account

Cloud backup is entirely optional. You can sign out and delete your backups at any time. Supabase's own privacy policy governs their infrastructure. We do not share your backup data with any third parties.

4. Location Data

Mapons may request your device location (when-in-use only) for:

• Centering the map on your current position
• Dropping a pin at your current location
• Route building starting from your current location

Your location is used only in the moment you request it. It is not stored, tracked over time, or sent to any Mapons server.

5. AI Analyst Feature

The Analyst feature lets you query your map data using AI. If you use it:

• Your prompts and relevant map context are sent to the AI provider you configure (e.g. OpenAI, Anthropic, Google)
• You supply your own API key — Mapons never stores or transmits your API keys to our servers
• Data handling by the AI provider is governed by that provider's own privacy policy

You control whether to enable this feature and what content you submit.

6. WhatsApp Cloud API Messaging

If you configure WhatsApp Cloud API credentials for bulk messaging:

• Your credentials (phone number ID, access token) are stored locally on your device only
• Messages are sent directly from your device to the Meta WhatsApp Cloud API
• Mapons does not store, log, or forward message content
• Meta's privacy policy governs their handling of message data

7. Routing (Apple Maps)

Route building uses Apple's MapKit and MKDirections APIs. Waypoint coordinates are sent to Apple's servers to calculate routes. Apple's privacy policy governs this data. No personal account information is included in routing requests.

8. Photos Permission

Mapons may request add-only photo library access to save exported map images to your Photos app. We never read your existing photos.

9. Analytics and Crash Reporting

Mapons does not use third-party analytics SDKs. Crash reports may be collected by Apple through the standard App Store crash reporting system, subject to your device privacy settings.

10. Data Sharing

We do not sell, rent, or trade your personal data. Data is shared only as strictly necessary to deliver features you have enabled:

• Supabase — for cloud backup (if enabled)
• AI providers — for Analyst queries (if enabled, using your own API key)
• Meta WhatsApp Cloud API — for bulk messaging (if configured)
• Apple MapKit / MKDirections — for route calculation

11. Data Retention and Deletion

• Local data stays on your device until you delete it in the app or uninstall Mapons
• Cloud backups remain in your account until you delete them from within the app
• Signing out removes your session; your backups remain until you delete them manually
• To delete your account and all associated cloud data, contact us at contact@mapons.com

12. Security

We follow industry-standard practices to protect your data. Cloud authentication uses secure token-based sessions. API keys are stored only on your device and never transmitted to Mapons servers. No method of storage or transmission is 100% secure.

13. Children's Privacy

Mapons is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us at contact@mapons.com.

14. International Use

Mapons is operated from Spain. If you use cloud or AI features, data may be processed in other countries depending on your configured providers. By using these features you consent to such transfers.

15. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top reflects the most recent revision. Continued use of the app after changes constitutes acceptance of the updated policy.

16. Contact

For questions or requests regarding your data:

• Email: contact@mapons.com
• Website: mapons.com