Privacy Policy

The controller responsible for processing personal data in connection with LoveAudit is Steiner Online Services. Full provider and contact details are available in the imprint.

LoveAudit is available at loveaudit.io. For privacy and product questions, contact us at hello@loveaudit.io.

The privacy contact person is David Steiner.

LoveAudit analyzes exported chat histories to help users understand communication patterns. The core analysis runs locally in your browser. Chat contents are not transmitted to our servers and are not stored by us in a cloud database.

Our servers process technical requests, payment and unlock information, security data for abuse prevention and, after consent, data related to Google Tag Manager and Google Analytics.

Because chat histories may contain intimate or sensitive information about you and other people, you should only upload chats in which you participated or for which you have sufficient permission to analyze them.

As a provider based in Switzerland, we comply with the Swiss Federal Act on Data Protection (FADP). Where LoveAudit concerns people in the EU or EEA, we also take the General Data Protection Regulation (GDPR) into account. Where people in the United Kingdom are concerned, we take the UK GDPR and supplementary UK privacy rules into account.

This Privacy Policy is intended for an international audience. Individual rights and obligations may vary depending on your location, residence, applicable consumer protection law and local privacy law.

When you use LoveAudit, the following data may be processed: chat contents from uploaded export files, names or labels of chat participants, timestamps, message contents, deleted-message markers, links and domains from chats, analysis results, local user settings such as working hours or time zones, local session IDs and local payment or unlock tokens.

On the server side, we process in particular technical request data, IP addresses or rate-limit data derived from them, checkout session IDs, payment status, transaction ID, Paddle customer ID, amount, currency, payment time and information about whether a premium unlock can be restored.

We do not require user accounts, public profiles or community profiles.

Uploaded chat files are read, parsed, analyzed and stored locally in your browser. LoveAudit uses browser IndexedDB for this. Certain local identifiers, such as a session ID or payment/restore token, may also be stored in localStorage.

Chat contents are not sent to our servers. The analysis algorithms also run client-side in the browser. If you delete local data, clear browser storage, use another device, or upload a new chat and overwrite the old one, local data may be lost.

LoveAudit generally does not automatically delete local analysis data. You can delete local data in the app; browser or device functions may also remove local data.

Chat histories can contain very personal information, such as statements about relationships, sex life, health, mental stress, religion, political opinions or other sensitive topics. LoveAudit is designed so that these contents remain local on your device.

You are responsible for analyzing only chats where processing is lawful. If a chat contains information about other people, you should respect their rights and reasonable expectations. Do not publish analysis results or chat excerpts without sufficient permission.

Payments for premium features are processed through Paddle. Paddle processes payment data, tax information, billing data and fraud-prevention data under its own terms and privacy notices.

We do not receive or store full credit card details. We store only the information required to verify payment, unlock premium features, provide support, prevent abuse and comply with statutory record-keeping and evidence obligations.

This may include payment status, transaction ID, Paddle customer ID, amount, currency, payment time and entitlement information.

At checkout, you can decide whether the premium unlock for the exact same chat export can be restored later. If you enable restore, your browser creates a non-reversible technical fingerprint from the specific chat export. Chat contents do not leave your device.

On the server side, we do not store the plain chat fingerprint. Instead, we store an unlock key protected with a server secret. This is used to recognize the payment status when the same chat export is uploaded again.

If you disable restore, no server-restorable unlock is stored for the chat. The unlock then remains tied to local browser storage. If that storage is deleted, overwritten or lost, the premium unlock cannot be restored.

LoveAudit uses local storage technologies such as IndexedDB and localStorage so that analysis can work locally, a session can be found again and premium unlocks can be technically verified. These storage operations are required for the core features.

We use non-essential cookies or similar technologies for analytics or marketing purposes only where the applicable legal requirements are met. For users in Switzerland, the EU/EEA and the UK, this particularly means that a consent banner or equivalent consent solution is used where required. More details are available in our Cookie Policy.

We use Google Tag Manager and Google Analytics to measure reach, usage and conversion events and to improve LoveAudit. In regions where consent is required, these services are activated only after your prior consent through our consent banner. You can withdraw consent at any time with effect for the future.

This may involve processing page views, device and browser information, approximate location information, interactions, technical identifiers and coarse funnel and purchase events. For purchase events, ecommerce-related data such as value, currency, product category and transaction ID may be processed.

We configure tracking so that no chat contents, participant names, local session IDs, payment tokens, chat fingerprints, email addresses or Paddle customer IDs are sent to Google Analytics.

We operate LoveAudit on server infrastructure controlled by us or through hosting and infrastructure providers. These providers may process technical access data, security data and payment-related unlock and status data as processors. Chat contents are not stored server-side or transmitted to this infrastructure.

Other recipients of personal data may include payment providers such as Paddle, consent-management providers such as CookieYes and, after consent, analytics providers such as Google. We currently do not use any external AI API to analyze your chat contents.

Where service providers process personal data on our behalf, we conclude appropriate contractual arrangements. Where service providers act as independent controllers, their own privacy information also applies.

Because LoveAudit is offered internationally and individual service providers may operate globally, personal data may be transferred to countries outside Switzerland, the EU/EEA or the United Kingdom.

For such transfers, we use appropriate safeguards, such as adequacy decisions, standard contractual clauses, contractual guarantees, technical safeguards or other legally provided bases. This particularly concerns payment providers such as Paddle, consent-management providers such as CookieYes and, after consent, analytics providers such as Google.

We process personal data to provide LoveAudit, enable local analyses, unlock premium features, verify payments, prevent abuse, ensure security, process support requests, comply with legal obligations and improve our product.

Where the GDPR or UK GDPR applies, we rely on contract performance, legitimate interests, legal obligations or consent depending on the context. Consent is particularly relevant for non-essential analytics or marketing technologies.

Under Swiss data protection law, we process personal data lawfully, fairly, proportionately and for specific purposes.

Chat contents and analysis results are generally stored locally in your browser and remain there until you delete them, overwrite them or your browser or device removes them.

We generally store checkout session data only briefly, currently up to 24 hours. Rate-limit and blocking data are generally processed only for a short period, typically seconds to a few minutes. Where technical server or security logs are created, we generally delete or anonymize them within 30 days unless longer retention is required due to security incidents, abuse, legal claims or statutory obligations.

We may store payment, transaction and entitlement data for up to 10 years where required for accounting, taxes, evidence, support, fraud prevention, legal claims or restoration of a premium unlock.

We use technical and organizational measures to protect personal data appropriately. These include local processing of chat contents, access restrictions, server-side secrets for unlock keys, payment verification through webhooks, rate limiting and separation between chat contents and server-side payment data.

No system is completely risk-free. You should handle chat exports carefully, protect your device and delete local data when you no longer need it.

Depending on applicable law, you may request access, correction, deletion, restriction of processing, data portability, objection to certain processing and withdrawal of consent. Users in the EU/EEA and the United Kingdom have rights under the GDPR or UK GDPR. Users in Switzerland have rights under the FADP.

Because chat contents are processed locally on your device, we do not receive these contents and do not store them server-side. We therefore cannot delete, export or correct chat contents server-side for you. You can delete local data directly in the app or through your browser.

For privacy requests, contact us at hello@loveaudit.io or by post using the details in the imprint. You also have the right to complain to a competent data protection authority where applicable law provides this.

LoveAudit is intended for adult users. Use is permitted only for persons aged 18 or older. Please do not use LoveAudit if you are a minor.

We may update this Privacy Policy if LoveAudit, service providers, technical processes or legal requirements change. The current version is available at loveaudit.io.