Privacy Policy
Wherely is an app that helps you catalog the items at home and share them with your family and neighbours. This page explains what data we process, why, and the rights you have.
1. Who is responsible for your data
The publisher of Wherely is [TO COMPLETE — name, legal status], reachable at [TO COMPLETE — GDPR / privacy email].
2. The data we process
- Account: Apple identifier (Sign in with Apple), display name, email address relayed by Apple. No password.
- Content you create: photos of items and containers, names, tags, notes, places, container organisation, household and its members.
- Lendings: lent or borrowed items, verification photos, notes, dates, status.
- Notification: notification token from your device, to send you alerts (interest, borrow request, return).
- Location: only if you attach a geolocated place to an item. Optional — can be refused.
- Technical data: server logs (timestamp, request type) for security and proper operation.
We do not track your browsing for advertising purposes and do not use an advertising identifier.
3. Why we process them
| Purpose | Legal basis (GDPR) |
|---|---|
| Create and manage your account | Contract performance |
| Store and sync your catalog | Contract performance |
| Share content with your household and community | Contract performance |
| Cloud object recognition (optional) | Your consent (opt-in) |
| Push notifications | Contract performance |
| Security, abuse prevention | Legitimate interest |
4. Visual object recognition
By default, object recognition runs on your iPhone: the photo never leaves the device for that analysis.
If you enable the “Wherely-hosted” mode in settings, the photo is sent to our server then to our AI provider Anthropic (United States) to suggest a name and tags. This transfer outside the European Union is governed by the European Commission's standard contractual clauses. It is a choice you explicitly enable and can disable at any time.
Independently of recognition, the photo itself is stored on our servers to feed your shared catalog.
5. Who has access to your data
- Members of your household and users of your community, for the content you choose to share.
- Our technical subprocessors, strictly to operate the service: OVH (France, hosting); Apple (Sign in with Apple, notifications); Cloudflare (DNS, network protection); Anthropic (United States, only if you enable cloud recognition).
We do not sell or rent your data to third parties.
6. Where and for how long
Your data is hosted in France (OVH). It is kept as long as your account is active. On account deletion, it is erased; encrypted backups containing residual copies are purged within 30 days.
7. Your rights
Under GDPR, you have rights of access, rectification, erasure, restriction, objection and portability. You can delete your account directly from the app (Settings → Account). For any other request, write to [TO COMPLETE — GDPR / privacy email].
You can also lodge a complaint with the CNIL (the French data protection authority — www.cnil.fr) or your own national supervisory authority.
8. Security
Exchanges are encrypted (HTTPS). Server access is restricted. No system is infallible: in the event of a security incident affecting your data, we will inform you in accordance with regulations.
9. The wherely.org website
The marketing site does not use advertising cookies or trackers.
10. Changes
This policy may evolve. The date at the top of the page indicates the last update. In case of significant changes, we will inform you in the app.