Privacy Policy
Last updated: April 14, 2026
TinyBridge ("we", "us", "our") operates the TinyBridge Choice Boards application (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
Our Service is designed for non-verbal individuals, including children and people with disabilities, who use interactive choice boards to communicate. We recognize the sensitive nature of our users' needs and are committed to protecting their privacy with the highest standards.
1. Information We Collect
1.1 Account Information
When you sign in with Apple or Google, we receive and store:
- Email address — used to identify your account. If you sign in with Apple and choose "Hide My Email", we receive Apple's private relay address only.
- Display name — shown in the app interface. With Sign in with Apple, this is provided only on your very first sign-in.
- Profile photo URL — used for your avatar. Apple does not provide a profile photo; Apple users see an initial-based avatar instead.
- Stable user identifier issued by Apple or Google — used to recognize you on return visits. We never receive your Apple ID password or Google password.
We do not collect phone numbers, postal addresses, payment information, precise location, contacts, or advertising identifiers (IDFA / Google Advertising ID).
1.2 Photos and Images
The core function of TinyBridge is converting photos into choice boards. We collect:
- Photos you capture or upload — stored in full resolution for board creation and as thumbnails within board data
- AI-generated images — tile images generated from choice labels, cached to improve performance
1.3 Board Data
Choice boards you create, including:
- Board names and configuration
- Choice items (labels, descriptions, colors, images)
- Creation, modification, and last-used timestamps
1.4 Usage and Interaction Data
We collect interaction history to improve the Service, including:
- Board creation, opening, editing, and deletion events
- Choice selections (which tiles are tapped)
- Photo capture and upload events
- Sign-in and sign-out events
- Session identifiers and timestamps
1.5 Feedback and Support Data
When you submit feedback through the app, we collect:
- Your feedback message
- An app screenshot (for context)
- Recent application logs and errors
- Your browser/device user agent string
- Your email address (from your signed-in session)
Voice dictation: The feedback form supports voice dictation, processed entirely on-device by your operating system's Web Speech API. The audio is converted to text by your device and is never recorded, transmitted to us, or stored anywhere. We only receive the resulting text message after you tap Send.
1.6 Device and Technical Data
- Browser type and version (user agent)
- Device type and operating system
- Camera and microphone permission status
- Local storage identifiers
2. How We Use Your Information
We use the information we collect for the following purposes:
| Purpose | Data Used | Legal Basis (GDPR) |
|---|---|---|
| Provide the Service (create and manage boards) | Account info, photos, board data | Contract performance |
| Sync data across your devices | All board and interaction data | Contract performance |
| Generate choice board images | Choice labels, descriptions | Contract performance |
| Detect items in photos using AI | Photos you capture or upload | Contract performance |
| Respond to your feedback | Feedback content, technical context, email | Legitimate interest |
| Improve the Service | Usage and interaction data | Legitimate interest |
| Maintain security and prevent abuse | Technical data, session data | Legitimate interest |
3. Third-Party Services
We use the following third-party services to operate TinyBridge:
3.1 Google (Authentication)
We use Google OAuth for sign-in. Google receives your authentication request and provides us with your basic profile information. See Google's Privacy Policy.
3.2 Microsoft Azure (Infrastructure)
Our Service runs on Microsoft Azure. Your data is stored in Azure Cosmos DB (board and profile data) and Azure Blob Storage (photos and images). Azure Communication Services is used to deliver feedback emails. See Microsoft's Privacy Statement.
3.3 OpenAI (Photo Analysis)
Photos you submit are sent to OpenAI's Vision API to detect and identify items for your choice boards. Photos are processed in real-time and are subject to OpenAI's Privacy Policy. OpenAI's API data usage policy states that API inputs are not used to train their models.
3.4 Google Gemini (Image Generation)
Choice labels are sent to Google's Gemini API to generate tile images. These are text descriptions only (not photos). See Google's Privacy Policy.
4. Data Storage and Security
- Data is stored using Microsoft Azure infrastructure with encryption at rest and in transit
- All API endpoints enforce per-user data isolation — you can only access your own data
- The app uses an offline-first architecture with local IndexedDB storage, syncing to the cloud when online
- Session authentication uses secure, HTTP-only cookies
- Photos and boards are stored in per-user partitioned storage
5. Data Retention & Deletion
- Board data: Retained as long as your account is active. Deleted boards are soft-deleted and can be recovered. Permanently removed when you delete your account.
- Board photos: Stored as long as the associated board exists. Removed when you delete your account.
- Usage history: Retained for up to 24 months for service improvement, then anonymized or deleted. Removed when you delete your account.
- Feedback data: Retained for up to 36 months for support purposes.
- Session cookies: Expire after the session ends or upon sign-out.
- Shared AI-generated tile images (kept after deletion): Generated images such as a picture of "Apple" are produced by the app, cached in a shared cross-user store, and contain no personal information about you. They are derived from a generic item description (the canonical name and visual category), not from your identity. These images are retained even after you delete your account so that other users continue to benefit from the cached result. See Section 8 for details.
How to delete your account
You can delete your account and all personal data we hold for you directly from the app, at any time:
- Open the Choice Board app and sign in.
- From the home screen, tap the avatar/menu in the top-right corner.
- Tap your email address to open your Profile.
- Scroll to the Danger zone and tap Delete my data.
- Confirm. We will offer to sign you out instead — choose "Delete everything" to proceed.
This deletes your boards, board photos, usage history, profile, and feedback records, and signs you out. The deletion is immediate and cannot be undone. You can also email info@tinybridge.ai to request deletion if you can no longer sign in.
6. Tracking (App Tracking Transparency)
TinyBridge Choice Boards does not engage in "tracking" as defined by Apple's App Tracking Transparency (ATT) framework. Per Apple's definition, "tracking" means linking user or device data collected from this app with user or device data collected from other companies' apps, websites, or offline properties, for advertising or advertising-measurement purposes, or sharing user or device data with data brokers. We do none of those things.
- We do not display third-party advertising in the app.
- We do not embed analytics SDKs that link your activity to other apps you use (no Meta Pixel, no Google Analytics for Firebase ad-attribution, no AppsFlyer, no Branch, etc.).
- We do not share, sell, rent, or otherwise transfer user data to data brokers, advertising networks, or third-party companies for their own use.
- We do not collect the IDFA (iOS Identifier for Advertisers) or any equivalent advertising identifier. Our PrivacyInfo.xcprivacy manifest declares
NSPrivacyTracking = false.
Because we do not track, our iOS app does not present the App Tracking Transparency permission prompt.
The interaction data we collect (board events, choice selections — see Section 1.4) is used solely to improve the Service for you and for our own internal analytics. It stays within our infrastructure (Azure Cosmos DB, partitioned by your user ID) and is never linked with data from other companies.
7. Data Sharing
We do not sell, rent, or trade your personal information. We share data only as described below:
- Service providers: With the third-party services listed in Section 3, solely to operate the Service
- Legal requirements: When required by law, regulation, or legal process
- Safety: To protect the rights, safety, or property of our users or the public
- Business transfers: In connection with a merger, acquisition, or sale of assets (with prior notice)
We do not use your data for advertising or marketing purposes. We do not share data with data brokers.
8. AI-Generated Image Caching
To improve performance and reduce costs, AI-generated tile images are cached in a shared storage layer. This means:
- If two users create a tile with the same label (e.g., "Apple"), they share the same generated image
- Only the generated image is shared — not the board, user identity, or any personal information
- The shared cache contains only generic images derived from the canonical item description, not from your photos or identity
- The cache key is computed from the item's normalized type, canonical name, visual category, prepared state, brand, and style descriptors — none of which include your account information
- These images are retained when you delete your account, because they belong to the application's shared image library, not to your personal data. Removing them would degrade the experience for every other user without giving you any additional privacy protection (they contain no information about you in the first place).
If you object to the continued use of an image generated during your use of the app, contact info@tinybridge.ai. We will evaluate the request on a case-by-case basis.
Sign-in providers
You can sign in with either Google or Apple. Your sign-in identifier (a stable user ID issued by the provider) and email address are stored to authenticate you. When you delete your account, this identifier and the locally stored display name are deleted from our systems. The provider (Google or Apple) continues to know that you used "Sign in with Google" or "Sign in with Apple" with our app — you can revoke this grant from your provider's account settings at any time:
- Google: myaccount.google.com/permissions
- Apple: Settings → your name → Sign in with Apple → TinyBridge Choice Board → Stop Using
9. Your Rights
Depending on your location, you may have the following rights:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate data
- Deletion: Request deletion of your personal data
- Portability: Receive your data in a portable format
- Restriction: Request restriction of processing
- Objection: Object to processing based on legitimate interest
- Withdrawal of consent: Withdraw consent at any time
For EU/EEA residents, see our detailed GDPR Rights page. To exercise any right, contact us at info@tinybridge.ai.
10. Children's Privacy
TinyBridge Choice Boards is designed to be used by caregivers on behalf of non-verbal individuals, who may include children. We apply the following protections:
- The Service requires sign-in with Google or Apple, both of which are restricted to users who meet the provider's minimum age requirements
- We expect caregivers (parents, guardians, therapists, educators) to create and manage accounts
- We do not knowingly collect personal information directly from children under 13 (or the applicable age in your jurisdiction)
- If we learn that we have collected personal information from a child without appropriate consent, we will delete that information promptly
- Caregivers can request deletion of any data associated with their account at any time
If you believe a child has provided us with personal information without parental consent, please contact us at info@tinybridge.ai.
11. International Data Transfers
Your data may be processed in countries outside your own, including the United States, where our cloud infrastructure is hosted. We ensure appropriate safeguards are in place for international transfers, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Data processing agreements with all third-party service providers
- Encryption of data in transit and at rest
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. For significant changes, we may also notify you through the app or by email.
13. Contact Us
If you have questions or concerns about this Privacy Policy, or wish to exercise your data rights, contact us:
- Email: info@tinybridge.ai
For GDPR-related inquiries, see our GDPR Rights page for information about our data protection practices and how to file a complaint with a supervisory authority.