Privacy Policy

What tuvalindë does not collect

We do not collect, store, or transmit:

• Your listening history or play counts
• Your taste profile or Listening Ledger data
• Your Apple Music library or playlists
• Your location, contacts, or personal files
• Any data that could be used to identify individual listening habits

Your Listening Ledger, temporal profiles, skip history, and all taste data are stored locally on your device using Apple's Core Data framework. This data never leaves your iPhone.

Apple MusicKit

tuvalindë uses Apple's MusicKit framework to access the Apple Music catalog and play songs. When you use tuvalindë, your interaction with Apple Music is governed by Apple's own privacy policy. We do not have access to your Apple Music account credentials.

MusicKit requires your authorization to access Apple Music. You can revoke this access at any time in your iPhone's Settings.

Third-party metadata services

To build rich musical fingerprints, tuvalindë queries external music metadata APIs. These requests are made to fetch information about songs and artists — not about you. No personal data or listening history is sent to these services.

Analytics

tuvalindë does not include any third-party analytics SDKs. No Firebase. No Mixpanel. No Amplitude. We don't track screen views, session duration, button taps, or feature usage.

If we ever introduce anonymous, aggregated analytics in the future, we will update this policy and make it opt-in.

Crash reporting

tuvalindë uses Apple's built-in crash reporting through Xcode and TestFlight. Crash reports may include device model, OS version, and a stack trace. These reports do not contain any personal data, listening history, or taste profile information. You can opt out of sharing crash data with developers in your iPhone's Privacy settings.

Data storage and security

All personal listening data is stored locally on your device. If you delete the app, this data is permanently erased. There is no cloud backup of your tuvalindë data, and no account system to log into.

API security and device verification

tuvalindë uses Apple App Attest to verify that API requests originate from the genuine app running on a real Apple device. This is a cryptographic security mechanism built into Apple silicon — not a tracking tool.

When you first launch the app, your device generates a unique cryptographic key pair inside the Secure Enclave. The key identifier and the corresponding public key are stored on our server solely for the purpose of verifying that subsequent API requests are authentic. This data:

• Is not a device ID, advertising identifier, or Apple ID
• Cannot be used to identify you as an individual
• Is not linked to any account, listening history, or personal information
• Is never shared with third parties

If you delete and reinstall the app, a new key is generated and the previous one is no longer used.

Children's privacy

tuvalindë does not knowingly collect any personal information from children under the age of 13. The app requires an Apple Music subscription, which is subject to Apple's own age requirements.

Changes to this policy

If we make changes to this privacy policy, we will update the effective date at the top of this page. For significant changes, we will provide notice within the app.

Contact

If you have questions about this privacy policy or how tuvalindë handles your data, you can reach us at support@tuvalinde.com.