Privacy
Policy.
One unified policy covering every iOS app published by Beans Factorial under the App Store imprint TeamHB — DRMemory, Photoclean, Squat Trainer, Widget US, and Elemental Master.
Note · The Korean version is the official text under the Personal Information Protection Act of the Republic of Korea. Other languages are translations for reference; in case of conflict, the Korean version prevails.
Our default is to do everything on your device. We do not run any server that receives your photos, camera frames, files, contacts, widget content, or memory metrics. Network traffic from our apps is strictly limited to advertising (only with your consent), App Store transactions, and Game Center scores where applicable.
Who we are.
- Provider
- Beans Factorial
- App Store imprint
- TeamHB ↗
- Business reg. no.
- 572-30-01699
- Mail-order reg.
- 2024-경기안산-6287
- Representative
- Kakkyoo Lee
- Address
- 508-101, 11, Gamgol 2-ro, Sangnok-gu, Ansan-si, Gyeonggi-do 15623, Republic of Korea
- Contact
- [email protected]
- Data Protection Officer
- Kakkyoo Lee · [email protected]
App data flows. None of this touches our servers.
DRMemory
Processed entirely on-device.
- ◆Google AdMob — ads, with consent
- ◆Apple StoreKit — purchases
Photoclean
CoreML analysis entirely on-device.
- ◆Google AdMob — ads, with consent
Squat Trainer
No adsCoreML pose estimation entirely on-device.
- ◆None — fully free, no ads, no tracking.
Widget US
Widget content stays on-device. Firebase Authentication (Google) for account IDs only — no widget content uploaded. App Store Server Notifications and the receipt are forwarded to Adapty so we can verify subscription status without operating our own server.
- ◆Firebase Authentication — sign-in only
- ◆Adapty — subscription receipt validation
- ◆Google AdMob — ads, with consent
Elemental Master
Gameplay stored locally. Optional Game Center scores via Apple.
- ◆Apple Game Center — leaderboards
- ◆Google AdMob — ads, with consent
Integrated services.
We use Google UMP for consent. With consent, AdMob processes IDFA and device data to serve ads. Without consent, only non-personalized ads appear.
Google Privacy Policy ↗Used in Widget US to identify the user via Email, Apple Sign-in, or Google Sign-in. We store only an email address and an auth token. No widget content is uploaded.
Firebase Privacy ↗Widget US uses Adapty to validate App Store subscription receipts and receive App Store Server Notifications (subscription start, renewal, cancellation, refund) on our behalf, so we do not run our own receipt-validation server. We pass an anonymous Adapty profile ID along with the StoreKit transaction. No widget content, email, or payment details are sent to Adapty. Sandbox notifications are routed to a separate test endpoint and never mixed with production data.
Adapty Privacy Policy ↗In-app purchases and leaderboards are securely processed directly by Apple. We never receive payment details. App Store Server Notifications about subscription lifecycle events are delivered to Adapty (see 3.3).
Apple Privacy ↗What we never collect.
We have no backend that could receive any of the data below. The only exceptions are explicitly listed in §02 — a Widget US sign-in email, an Elemental Master leaderboard nickname, and an anonymous subscription transaction ID via Adapty.
- Your real name
- Phone number
- Email address — except Widget US sign-in
- Government IDs
- Card or bank details
- Direct payments — Apple / Google handle billing
- Precise location
- Biometric data
- Health, race, religion, politics
- Photo, file, or contact contents
- Cross-app browsing history
- Keystrokes or screen recordings
- Microphone audio
Retention & destruction.
Required disclosures under the Korean Personal Information Protection Act (§21 retention period, §22 destruction procedure). Where retention is set by law, the longer of the two periods applies.
On-device data is erased the moment you delete the app or use the in-app reset. Records held under retention law are destroyed within 5 days of the period ending.
Electronic records are deleted from Firebase and Adapty consoles using their irrecoverable-delete APIs. Email correspondence is permanently purged from the support inbox.
International data transfers.
Some of our processors are located outside the Republic of Korea. Per Korean PIPA §28-8 and GDPR Chapter V, we disclose every recipient country, transferred data, retention period, legal basis, and the processor's privacy contact.
- Data transferred
- Email + auth token (Widget US) · IDFA + ad-event signals (consented users only)
- Legal basis
- Performance of the contract you agreed to + your explicit consent for advertising
- Privacy contact
- [email protected]
- Data transferred
- Anonymous subscription profile ID + StoreKit transaction ID (no email, no name)
- Legal basis
- Performance of the contract — receipt validation for paid features
- Privacy contact
- [email protected]
- Data transferred
- StoreKit purchase records, Game Center nicknames (where used)
- Legal basis
- Performance of the App Store distribution contract
- Privacy contact
- See apple.com/legal/privacy
For EU/UK users, transfers are protected by the European Commission's Standard Contractual Clauses and — where applicable — the EU-U.S. Data Privacy Framework certification of the relevant processor.
Automated decision-making.
Runs in your phone, not in our cloud.
Squat Trainer's pose estimation and Photoclean's similarity scoring use Apple's CoreML / Vision frameworks on the device. No image, video frame, or pose vector ever leaves the device.
These models produce best-effort heuristics, not legal, medical, or fitness diagnoses. They have no legal or comparably significant effect on you under GDPR Art. 22.
Only with consent, only via Google.
If you grant ATT consent, Google AdMob may build an advertising profile to personalise the ads you see. We never receive that profile and we do not perform any profiling ourselves.
You can revoke at any time — iOS Settings → Privacy & Security → Tracking, or AdMob opt-out.
PIPA · GDPR · CCPA / CPRA.
Because we do not store your personal data on our servers, data like photos and files are retained only on your device until you delete the app. AdMob and Apple retain data according to their respective policies.
GDPR
Under the GDPR, we act as the Data Controller for any data you provide to us directly (like email support). The Legal Basis for ad tracking via AdMob is your explicit Consent, managed via the Google UMP consent dialog.
- Right to Access
- Right to Erasure
- Right to Portability
To exercise these rights for advertising data, manage your consent in the app settings or iOS Settings. For support data, contact us.
CCPA / CPRA
Under the California Consumer Privacy Act, you have the right to know what personal information is collected, the right to delete it, and the right to opt-out of the "sale" or "sharing" of personal information.
Opt-out at any time via iOS Settings → Privacy & Security → Tracking.
We do not knowingly collect data from children.
We do not knowingly collect personal information from children under 14 without verifiable consent of a legal guardian, in compliance with the Personal Information Protection Act.
We do not knowingly collect personal information from children under 13, in compliance with the Children's Online Privacy Protection Act.
For users in the EU/UK, we treat the minimum age for consent as 16 unless a lower age is set by national law.
If you believe a child has provided personal information to us, please contact [email protected] and we will delete it without delay.
How we change this policy.
We will post any changes on this page at least 7 days before they take effect. For changes that materially affect your rights, we will notify you in advance through an in-app notice or, where applicable, by email.
The Korean-language version of this policy is the official text. Translations are provided for convenience; if there is any conflict, the Korean version prevails.