Legal

Privacy Policy

Last updated:

This Privacy Policy describes how TicketSaver collects, uses and protects your information when you use the app, including the optional Gmail integration.

This Privacy Policy describes our policies and procedures on the collection, use, and disclosure of your information when you use the Service and explains your privacy rights and how the law protects you.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

Words with an initial capital letter have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or plural.

Definitions

For this Privacy Policy:

  • Account means a unique account created for You to access our Service or parts of our Service.
  • Application refers to TicketSaver, the software program provided by the Company.
  • Company (referred to as “the Company”, “We”, “Us”, or “Our”) refers to TicketSaver.
  • Country refers to: The Netherlands.
  • Device means any device that can access the Service, such as a smartphone or tablet.
  • Personal Data is any information that relates to an identified or identifiable individual.
  • Service refers to the Application (TicketSaver).
  • Service Providers means third-party companies or individuals employed by the Company to facilitate the Service (e.g., hosting, crash reporting, analytics, email delivery).
  • Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.
  • You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service.
  • Subscription means a recurring in-app purchase managed by Apple’s App Store on your Apple ID. Subscription billing is controlled by Apple and not by the Company.
  • Data Controller means the natural or legal person which, alone or jointly with others, determines the purposes and means of the processing of Personal Data. For this Service, the Company is the Data Controller.
  • Google Account means the account you use with Google services, including Gmail.
  • Gmail Connect means the optional integration where you grant the Application access to certain Gmail and Google Account settings and profile information via Google’s OAuth and API services, in order to configure and manage automatic email forwarding from Gmail to TicketSaver.
  • Gmail Data means the settings and metadata we may access or manage from your Gmail account via the Gmail API (for example: forwarding settings, filters, send-as aliases, delegation status, IMAP/POP settings, and related configuration metadata), but not the content of your email messages themselves via the API.

Data Controller and Contact Details

The Data Controller is TicketSaver.

Contact email (also for privacy requests): maxbrouwermd@gmail.com. Registered Country: The Netherlands.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, we may ask you to provide certain personally identifiable information, including but not limited to:

  • Email address.
  • Authentication details (when using email/password, Apple, or Facebook login).
  • Purchase receipts (for premium validation).
  • Consent metadata (e.g., version/date of accepted Terms & Privacy Policy, app version at acceptance, device identifier used for consent sync).

Usage Data

Usage Data is collected automatically when using the Service. It may include:

  • IP address, Device identifiers, operating system, app version, language, and region.
  • Diagnostic information and crash logs (via Firebase Crashlytics).
  • Interactions within the app (e.g., screens opened, certain actions) when analytics is enabled with your consent.

Advertising IDs: TicketSaver does not use IDFA/AdTracking. We do not use Google Signals or Advertising Features.

Information from Third-Party Login Services

If you log in via Apple or Facebook, we may receive your name, email address, and identifiers associated with those accounts, as permitted by you.

Information from Device Access

With your permission, the Service may access:

  • Camera and photo library (to import tickets).
  • Files (to store tickets locally and export to the iOS Files app).

You can enable or disable access via your Device settings at any time.

Information from Google / Gmail Integrations (“Gmail Connect”)

You may optionally choose to connect your Google Account and enable Gmail Connect to configure automatic forwarding of (some of) your Gmail messages to your personal TicketSaver upload address (for example: upload+@upload.ticketsaver.nl).

When you explicitly grant permissions in the Google consent screen, the Google and Gmail APIs may allow the Application to:

  • View and manage certain sensitive email-related settings in Gmail, including:
    • Starting and stopping forwarding of your email to another address.
    • Creating, updating, and deleting forwarding addresses.
    • Viewing who else has delegated access to your Gmail account and revoking such access.
    • Viewing, creating, updating, and deleting send-as aliases (for “Send mail as”).
    • Viewing, creating, updating, and deleting filters that move, label, forward, or delete messages.
    • Viewing and updating IMAP or POP settings.
    • Viewing and updating certain Gmail settings, such as reply-to address, display name, signature, and automatic reply (vacation responder).
  • View basic Google Account profile information, including:
    • Your full name.
    • Your profile photo.
    • Your gender (where available).
    • Your preferred languages.
    • Other profile data you have made public in your Google Account.
    • The primary email address associated with your Google Account.

What we actually use this access for

Although the granted scopes technically allow broad actions, TicketSaver commits contractually and as a matter of internal policy to use Gmail and Google Account access only for the limited purposes described below:

  • Setting up and maintaining automatic forwarding from Gmail to TicketSaver, which may include:
    • Creating a forwarding address pointing to your TicketSaver upload address.
    • Confirming and enabling that forwarding address (where the Gmail API allows).
    • Creating or updating one or more filters in Gmail so that emails (for example, those matching certain criteria you configure) are forwarded to your TicketSaver upload address.
    • Checking whether forwarding is active and which address is used, so the app can display the status to you.
  • Displaying and maintaining connection status within the App, which may include:
    • Reading your primary Gmail address and basic profile information to show that your Gmail account is connected to TicketSaver.
    • Displaying, in a user-friendly way, the current forwarding configuration and related settings so you understand what is active.
  • Improving the Gmail integration and ensuring it functions correctly, which may include:
    • Reading certain Gmail settings, filters, and forwarding configurations to troubleshoot and prevent wrong or duplicate configurations.
    • Updating or removing forwarding or filter settings that TicketSaver previously created when you disable the integration or change your preferences.
  • Security, abuse prevention, and compliance, which may include:
    • Detecting and preventing abusive use of the Gmail integration (for example, obvious attempts to mass-forward unrelated mail or violate Gmail’s or your organization’s policies).
    • Complying with Google’s API Services User Data Policy, Gmail policies, and applicable law.

What we do NOT do with Gmail Data

  • We do not use Gmail API access to read the content of your email messages. Ticket content is processed from messages that are forwarded to your TicketSaver upload address (via Gmail’s forwarding features or manual forwarding), not by querying your mailbox contents via the API.
  • We do not use Gmail Data for advertising, profiling, or marketing.
  • We do not sell or rent Gmail Data to third parties.
  • We do not allow human access to Gmail Data except where strictly necessary for:
    • security (e.g., investigating abuse or fraud),
    • debugging and maintaining the Gmail integration, or
    • when required by law (e.g., pursuant to a lawful request).

Storage of Gmail Data

To provide Gmail Connect, we may store:

  • OAuth tokens and refresh tokens needed to call the Gmail and Google APIs on your behalf.
  • Your primary Gmail address and limited profile information (name, profile image URL, language) to show the connection status.
  • A representation of the forwarding configuration and filters that TicketSaver created or manages, so we can show you what is active and allow you to modify or disable it.

We do not store a full copy of all your Gmail settings. We generally retrieve settings on demand from the Gmail API and cache only what is strictly necessary for the integration to function.

You can revoke Gmail Connect at any time in the App (where provided) and also directly in your Google Account settings. When revoked, TicketSaver can no longer call the Gmail API on your behalf. We will then delete or invalidate stored tokens within a reasonable time period and will no longer update your Gmail settings.

Responsibility for Filters and Forwarding

You remain responsible for:

  • Which emails are forwarded from Gmail to TicketSaver (e.g., your filter rules).
  • Verifying that the forwarding and filters behave as you expect in your Gmail account.
  • Ensuring that your use of forwarding does not violate your employer’s policies, Gmail policies, or obligations of confidentiality to third parties.

TicketSaver is not responsible for unintended forwarding, misconfigured filters, or any consequences arising from your forwarding rules or Gmail account configuration. More details appear in the Terms of Service.

SDKs and Providers We Use

Firebase Analytics (Google)

  • We use Firebase Analytics to understand how the app is used and to improve functionality. When enabled:
    • It collects event data (e.g., successful login/sign-up, ticket categorized, premium purchase), app instance identifiers, device/OS info, and approximate location (country/region) derived from IP for aggregated reporting.
  • We disable analytics until you give consent. You can withdraw consent at any time in the app settings, where available (or by contacting us).
  • We do not enable Google Advertising Features or Google Signals in TicketSaver.
  • Retention: Firebase Analytics retains user and event data according to Google’s standard retention settings (typically 2 months by default and configurable up to 14 months, subject to Google’s policies).

Firebase Crashlytics

  • We use Firebase Crashlytics to monitor app stability and fix crashes. Crash reports may include:
    • Device model, OS version, app version, timestamp, non-sensitive logs around the crash.
  • No advertising identifiers, and no content of your tickets.
  • Retention: Crash data is typically retained by Google for around 90 days (subject to Google’s policies).

Mailgun (Email processing)

If you forward confirmation emails/attachments, Mailgun processes and delivers these emails for ingestion by TicketSaver. Attachments may be temporarily processed to extract relevant ticket data.

Apple App Store (In-App Purchases)

Apple processes Subscription billing, renewals, refunds, and related financial information through your Apple ID. We may receive non-financial purchase metadata (e.g., transaction identifiers or signed receipts) to validate entitlements; we do not receive your full payment details from Apple.

Google API Services and Gmail Connect

Our Gmail integration uses Google’s OAuth and API services, including the Gmail API, to configure and manage automatic forwarding and related Gmail settings as described above.

We use and transfer information received from Google APIs in accordance with:

  • the Google API Services User Data Policy, including the Limited Use requirements, and
  • Gmail and Google Workspace policies applicable to the relevant scopes.

In particular:

  • Gmail Data is used only to provide, maintain, and improve the Gmail Connect feature, for security (e.g., abuse/fraud detection), and to comply with legal obligations.
  • We do not use Gmail Data for advertising or to build profiles unrelated to the Gmail integration.
  • We do not sell Gmail Data or share it with third parties except as necessary to provide the Service (for example, hosting providers) under contractual safeguards.

For all providers above, processing takes place under the providers’ terms and data processing agreements. International transfers may occur and are protected by appropriate safeguards (see International Transfers).

How We Use Your Personal Data

The Company may use Personal Data for the following purposes:

  • To provide and maintain the Service – including account creation, authentication, and storage of your tickets.
  • To enforce account restrictions – e.g., free accounts may store up to 5 events; premium accounts may store unlimited events.
  • To validate purchases – using server-side receipt validation to detect fraud or abuse of free trials.
  • To manage device sessions – including device/session binding to prevent account sharing. Device IDs may be retained even after account deletion to prevent repeated abuse.
  • To send transactional emails – via Mailgun, for example, to forward ticket confirmation emails.
  • To provide push notifications and reminders – only if you enable notifications on your Device.
  • To collect feedback – via Google Forms, if you voluntarily provide input.
  • To monitor app stability and crashes – via Firebase Crashlytics.
  • To analyze usage – via Firebase Analytics, only with your consent to improve the app and user experience.
  • To provide Gmail Connect and automatic email forwarding – including:
    • connecting your Google Account,
    • configuring, reading, and updating Gmail forwarding, filters, send-as addresses, and related settings, limited to what is necessary for forwarding tickets to TicketSaver,
    • showing you the status of your Gmail integration, and
    • disabling or cleaning up forwarding settings created by TicketSaver when you turn the feature off.
  • To secure the Service – including detection, prevention, and response to security incidents and abuse (e.g., preventing abusive use of forwarding or mass ingestion of unrelated mail).
  • To comply with legal obligations – e.g., preventing fraud, abuse, or misuse of services, and responding to lawful requests.

Legal Bases for Processing (GDPR/AVG)

Where applicable law (e.g., EU/EEA, UK) requires a legal basis:

  • Contract/Performance: providing the core Service you request (account, ticket storage, email ingestion of tickets, including necessary configuration of forwarding where you enable Gmail Connect).
  • Consent:
    • Analytics and optional features that are not strictly necessary (we collect analytics only after you consent).
    • Connecting your Google Account and enabling Gmail Connect; you may withdraw this consent at any time by disconnecting in the app (where available) and/or revoking access in your Google Account.
  • Legitimate Interests: security, anti-fraud (e.g., device/session binding, receipt validation), app stability (Crashlytics), and basic product improvement in a way that respects your rights.
  • Legal Obligation: where we must comply with the law.

You may withdraw consent at any time (see Your Choices & Controls).

Your Choices & Controls

  • Analytics Consent: In-app analytics is off by default until you accept. You may later disable analytics in the app settings (where provided) or by contacting us; we will then stop sending future analytics events from that device/account.
  • Device Permissions: You can manage camera/photos/files access in iOS Settings.
  • Notifications: You can enable/disable push notifications in iOS Settings at any time. Disabling will stop future notifications.
  • Email Preferences: Transactional emails are necessary for the Service; we do not send marketing emails.
  • Gmail Connect:
    • You can disconnect your Gmail integration within the App (where supported).
    • You can always revoke TicketSaver’s access directly in your Google Account → Security → Third-party access (or similar section).
    • We recommend that you review your forwarding and filter settings in Gmail after connecting or disconnecting, to confirm they match your expectations.
  • Access/Deletion Requests: See Your Rights below.

Consent Management

Before you can use the Service, you must explicitly accept our Terms of Service and Privacy Policy. Your consent is stored locally on your Device and synchronized to your Account upon login. During synchronization, we record:

  • the version of the Terms/Privacy you accepted,
  • the original date/time of first acceptance (from your Device),
  • the most recent confirmation date/time (at login),
  • app version and a device identifier used for consent sync.

Using multiple Accounts on the same Device applies the same consent to each Account.

If you connect Gmail or other Google services, we also record the time and version of the integration consent so we can demonstrate compliance with Google’s requirements and applicable law.

Sharing Your Personal Data

We may share your personal data in the following cases:

  • With Service Providers – such as Firebase (authentication, database, crash reporting, analytics, cloud functions), Mailgun (email forwarding), and Google Forms (feedback collection).
  • With Google / Gmail – as necessary to call the Gmail and Google APIs on your behalf when you enable Gmail Connect. We do not share Gmail Data with third parties for advertising or unrelated purposes.
  • For fraud prevention and security – e.g., device/session binding, receipt validation.
  • For legal reasons – to comply with applicable law or protect rights, property, or safety.
  • Business transfers – in connection with any merger, sale of Company assets, financing, or acquisition of all or a portion of our business, subject to appropriate safeguards.

We do not sell your data to third parties.

International Transfers

Our Service Providers may process data in the EU/EEA, the United States, and other jurisdictions. Where required, transfers are protected by recognized safeguards (e.g., Standard Contractual Clauses and provider-implemented measures). You can contact us for more details.

Data Retention

  • Account and ticket data are retained while your account is active.
  • If you delete your account, we will remove your personal data from our active systems.
  • Certain identifiers (e.g., device ID) may be temporarily retained to enforce fraud-prevention rules (e.g., repeat trial abuse).
  • Gmail Connect:
    • OAuth tokens and related metadata are retained only while your Gmail integration is active and for a limited grace period after disconnection, to support safe cleanup and logging.
    • Configuration data related to forwarding and filters created or managed by TicketSaver is retained as long as needed to provide the feature and keep an audit trail of changes for security and compliance, then deleted or anonymized.
  • Crash data (Crashlytics) is typically retained for about 90 days.
  • Analytics data retention follows Firebase Analytics’ settings/policies (commonly 2–14 months).
  • We may retain limited data where required by law or to resolve disputes.
  • Backups and logs: routine system backups and server logs may persist for limited periods and are purged on rolling schedules.

Your Rights

Subject to applicable law, you have the right to:

  • Request access to the data we hold about you.
  • Request correction or deletion of your data (except where retention is required by law or necessary to enforce anti-abuse measures).
  • Withdraw consent for optional processing (e.g., analytics, Gmail Connect).
  • Object to or request restriction of certain processing.
  • Data portability, where applicable.
  • Lodge a complaint with a supervisory authority. In the Netherlands, this is the Autoriteit Persoonsgegevens.

Requests can be submitted to maxbrouwermd@gmail.com. We may take reasonable steps to verify your identity before responding.

Automated Decision-Making

We do not engage in profiling that produces legal or similarly significant effects, nor do we make decisions based solely on automated processing that significantly affect you.

Security of Data

We take commercially reasonable steps to protect your information (including encryption in transit and the security controls of our cloud providers). However, no system is completely secure, and we cannot guarantee absolute security.

Children’s Privacy

The Service is not directed to children under 13. We do not knowingly collect Personal Data from children under 13. If you are aware that a child has provided Personal Data, please contact us.

External Services and Links

Our Service may contain links to third-party websites or use integrations with external services (e.g., Apple, Facebook, Google, Gmail). We are not responsible for their privacy practices. Your use of those services is governed by their own terms and policies (including, for Gmail/Google services, the Google Privacy Policy and the Google API Services User Data Policy).

Account Deletion and Apple Subscriptions

Deleting your Account within the App removes your personal data from our active systems, subject to the retention rules set out above. Deleting your Account does not cancel your Apple Subscription. Subscriptions are managed through your Apple ID, and only you can cancel or modify them in your Apple settings (App Store → Account → Subscriptions). We cannot cancel a Subscription on your behalf.

Important Disclaimers

  • TicketSaver stores tickets locally on your Device and optionally in Firebase for backup purposes.
  • The Company is not responsible for lost, deleted, or corrupted tickets, including cases of device loss or app removal.
  • The Company is not responsible if event organizers refuse to accept or recognize tickets stored in the Application.
  • Users remain fully responsible for verifying ticket validity with event organizers.
  • Premium access is subscription-based; if canceled, you will lose access to tickets beyond the free account limit, though they remain stored.
  • When you use Gmail Connect or any email forwarding feature, you remain responsible for which messages are forwarded, who can view them, and for complying with any applicable confidentiality obligations and workplace or organizational policies.

Data Breach Notification

If we become aware of a personal data breach likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by law.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Updates will be posted here with the “Last updated” date.

Contact Us

If you have questions about this Privacy Policy, contact us:
Email: maxbrouwermd@gmail.com