Privacy Policy
TipShark
Last updated: 2026-05-04
Developer: Istvan Szoke, Austria
Contact:
support@tipshark.app
Website: tipshark.app
Authoritative language. The original and legally binding version of this Privacy Policy is written in English. Any translation (whether provided by us, by your browser, by your device, by an automated translator, or by a third party) is offered solely for your convenience. In case of any discrepancy, ambiguity, or conflict between the English version and any translated version, the English version prevails.
1. Overview
TipShark is a shift and tip tracking app.
Your shift and tip data stays on your device. The technical information that leaves your device is limited to what is needed to deliver subscriptions, paywalls, and product analytics — described in detail in Section 3. We do not require an account, login, email, or any personal identifier.
This policy explains what is processed, by whom, and why.
2. Data on your device
Your shift records, tip records, and app preferences are stored locally on your device. This information is not transmitted to us or any third party. Uninstalling the app permanently removes all locally stored data.
When a shift is active, the app may display a Live Activity or Dynamic Island widget showing elapsed time and tip total, sourced entirely from your local data.
The app may send you a local notification if a shift appears to have been left open for an extended period. This notification is generated on your device — no server is involved.
3. Third-party services
TipShark integrates four third-party services. The legal basis for each processing activity is identified below in line with Article 6 GDPR.
3.1 TelemetryDeck — anonymous analytics
Purpose: Understanding app usage in aggregate (feature usage, onboarding completion, app version adoption).
What is collected: Anonymous signals such as feature interactions, device type, app version, locale, and selected job category (e.g. "Taxi", "Delivery"). No shift content, no tip amounts, no precise location, no identifiers.
Privacy model: Identifying inputs are salted and hashed on your device before transmission in a one-way process. The original input is never stored — not on your device, not by TelemetryDeck, and not by us. Because the resulting data is genuinely anonymous, it does not constitute personal data within the meaning of GDPR Article 4(5).
Legal basis: Not applicable — anonymous data falls outside GDPR.
Right to erasure: Because no party can identify which records belong to you, individual erasure requests cannot be fulfilled.
Provider: TelemetryDeck GmbH, Germany. telemetrydeck.com/privacy
3.2 RevenueCat — subscription verification
Purpose: Verifying purchases and managing subscription entitlement status. Purchases themselves are processed by Apple via the App Store; RevenueCat receives the receipt to confirm entitlement.
What is collected: An anonymous user ID generated by RevenueCat (not linked to your Apple ID), purchase history, and subscription status.
Legal basis: Performance of contract (Article 6(1)(b) GDPR) — required to deliver the subscription service.
Your rights: You can request deletion of your RevenueCat record by contacting us. To help us locate your record, please use the "Request Data Deletion" button in the app (Settings → About → Data & Privacy), which will automatically include your anonymous App User ID in the email. We process such requests within 30 days.
Provider: RevenueCat, Inc., United States. International transfers covered under Standard Contractual Clauses incorporated in their Data Processing Addendum. revenuecat.com/privacy
3.3 Superwall — paywall management
Purpose: Displaying upgrade prompts and managing which paywall variant is shown to which user.
What is collected: Technical information including device type, operating system, app version, IP address, and approximate location inferred from IP (typically city or region level). Records of which paywalls were shown and whether a conversion occurred. Superwall does not collect your name, email, or other directly identifying information from this app.
Legal basis: Performance of contract (Article 6(1)(b) GDPR) — required to operate the paywall component of the subscription service.
Your rights: You can request deletion of your Superwall record by contacting us. Please use the "Request Data Deletion" button in the app (Settings → About → Data & Privacy) so your anonymous App User ID is included automatically. We process such requests within 30 days.
Provider: Superwall (Nest 22, Inc.), United States. International transfers covered under Standard Contractual Clauses incorporated in their Data Processing Addendum. superwall.com/privacy
3.4 Firebase Remote Config — feature configuration
Purpose: Allowing us to remotely adjust app configuration values (such as the free shift limit and required legal version) without requiring an App Store update.
What is collected: A Firebase installation identifier (a per-app pseudonymous ID), app version, and basic device information needed to deliver the correct configuration. Firebase Analytics is not used by TipShark, and we have explicitly disabled automatic screen reporting.
Legal basis: Legitimate interest (Article 6(1)(f) GDPR) — operating and updating app configuration.
Provider: Google LLC, United States. International transfers covered under Standard Contractual Clauses incorporated in Google's data processing terms. firebase.google.com/support/privacy
4. Whether providing data is required
You are not required to provide any personal information to use TipShark. Your shift and tip data is stored only on your device and is never required to be shared. The technical data described in Section 3 is processed automatically by our service providers when you use the app.
If you do not wish to have any technical data processed by these providers, your option is to not use the app. We do not offer a granular opt-out for individual providers because each provides functionality that is integral to delivering the app (subscription verification, paywall display, configuration updates, and product analytics).
Purchasing a subscription is voluntary. If you choose not to subscribe, you can use the free tier of the app subject to its limits.
5. Automated decision-making
We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on you within the meaning of GDPR Article 22.
6. Payments
Purchases and subscriptions are processed exclusively by Apple via the App Store using StoreKit. We do not receive or store your payment card details. Apple's privacy practices govern this processing. RevenueCat receives only the validation receipt issued by Apple, as described in Section 3.2.
7. Crash reports
The app does not use any third-party crash reporting service — we do not use Firebase Crashlytics, Sentry, Bugsnag, or any equivalent. Crash reports may be sent to Apple via the standard iOS system if you have opted in to share analytics with Apple in your device settings. We receive crash diagnostics through Apple's developer console in the form Apple provides, governed by Apple's privacy practices.
8. Your rights under GDPR
8.1 Data Protection Officer
We have not appointed a Data Protection Officer because we are not required to do so under GDPR Article 37. We process personal data on a small scale and do not engage in large-scale monitoring or processing of special categories of data.
If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have the following rights regarding personal data we hold about you:
- Access — request a copy of your data
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your data
- Restriction — request that processing be limited
- Data portability — request your data in a machine-readable format
- Objection — object to processing based on legitimate interest
- Complaint — lodge a complaint with your supervisory authority
To exercise any of these rights, contact us at support@tipshark.app. For deletion requests involving RevenueCat or Superwall records, please use the "Request Data Deletion" button in the app (Settings → About → Data & Privacy), which will automatically include your anonymous App User ID so we can locate your record.
The Austrian supervisory authority is the Datenschutzbehörde (dsb.gv.at). UK users may contact the Information Commissioner's Office (ico.org.uk). Swiss users may contact the Federal Data Protection and Information Commissioner (edoeb.admin.ch).
Note: TelemetryDeck data is not subject to these rights because it is genuinely anonymous and does not constitute personal data.
9. Other jurisdictions
If you are located outside the EEA, UK, or Switzerland, your local law may grant you additional rights regarding your personal data — including under the California Consumer Privacy Act (CCPA), Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), the Australian Privacy Principles, and the New Zealand Privacy Act 2020.
California residents have the right to know what categories of personal information are collected and to request deletion. The categories are described in Section 3 above. California residents also have the right not to be discriminated against for exercising any of these rights.
We do not sell or share your personal information.
To exercise any rights under your local law, contact us at support@tipshark.app. For deletion requests, please use the "Request Data Deletion" button in the app so your anonymous App User ID is included automatically.
10. Data retention
| Service | Retention |
|---|---|
| Data on your device | Until you delete the app |
| TelemetryDeck | As described in TelemetryDeck's privacy policy |
| RevenueCat | Until deletion is requested or the account is closed |
| Superwall | Until deletion is requested or the account is closed |
| Firebase Remote Config | No personal data is retained |
11. International transfers
Some of our service providers (RevenueCat, Superwall, Google) are based in the United States. Where personal data is transferred outside the European Economic Area, the United Kingdom, or Switzerland, we rely on:
- the EU-US Data Privacy Framework (DPF) where the provider is certified under the framework, or
- Standard Contractual Clauses (SCCs) incorporated by reference into each provider's Data Processing Agreement.
Both mechanisms are recognised by the European Commission as providing adequate safeguards for international transfers.
12. Children
TipShark is intended for adults and is not directed at children. The app does not require an account, does not request personal information from users, and does not contain features designed for children. The limited technical data processed by our service providers, as described in Section 3, is not knowingly directed at or collected from children under the age of 16 (or under the age of 13 for users in the United States, in line with the Children's Online Privacy Protection Act).
13. Changes to this policy
We will update this policy when our data practices change. The "Last updated" date at the top of this page reflects the most recent revision.
For material changes to this policy, we will notify you within the app and ask you to acknowledge the updated policy before continuing to use TipShark. For minor changes (such as corrections of typographical errors or clarifications that do not affect your rights), continued use of the app constitutes acceptance of the revised policy.
14. Contact
For privacy questions, data deletion requests, or general support:
Email:
support@tipshark.app
Website: tipshark.app
Note: If you voluntarily contact us via email for support or data requests, we will receive your email address and any information you choose to include. We process this information solely to resolve your inquiry or fulfill your legal rights request. We do not use support emails for marketing, nor do we retroactively link your email address to your anonymous on-device app data.