隐私政策
诗境(以下简称「本应用」)是一款将照片转化为诗歌的 iPhone 应用。我们珍视你的隐私,并以「克制」为产品与数据实践的共同原则——只在为你生成诗歌所必需的范围内处理数据,不多收集一分。本隐私政策说明我们处理哪些数据、为何处理、与谁共享,以及你享有的权利。
一、数据控制者
本应用由个人开发者 BoZhi Yuan 开发与运营,是本政策所述个人数据的控制者(data controller)。
如对本政策或你的数据有任何疑问、请求或投诉,可通过以下邮箱联系我们:
kudu_dower.0t@icloud.com
二、我们处理的数据
我们仅处理以下三类数据,且均限于为本应用核心功能所必需:
1. 你选择的照片。当你拍摄或从相册选择一张照片用于生成诗歌时,该照片会通过我们的服务器发送给第三方 AI 模型进行处理(详见第三节)。照片仅用于即时生成诗歌;处理完成后即被丢弃,我们的服务器不会留存你的照片,也不会用于训练任何模型。
2. 匿名设备标识(UUID)。为了管理你的订阅状态与生成额度(积分),本应用会在你的设备上生成一个随机的匿名标识符(UUID)。该标识符不包含、也不关联你的姓名、邮箱、电话或任何可识别你真实身份的信息。它仅作为一个匿名「账本」键,用于记录该设备对应的订阅档位与剩余积分。
3. 订阅交易信息。当你购买订阅或额度包时,相关交易凭证由 Apple 通过 App Store 提供给我们,用于核验你的订阅是否有效。我们据此为你的匿名标识开通相应权益。付款由 Apple 处理,我们不会接触你的支付卡号或 Apple ID 等信息。
我们不要求注册账户,因此不收集姓名、邮箱地址或密码。
三、第三方接收方
为了实现「照片转诗歌」这一核心功能并运行订阅服务,你的部分数据会经过以下第三方。除 Apple 外,这些接收方仅处理照片内容本身,不接触你的身份信息:
| 第三方 | 角色 | 接收的数据 |
|---|---|---|
| Cloudflare(Cloudflare, Inc.) | 我方后端托管与网络服务 | 照片在转发过程中流经,连接所需的网络元数据(如 IP 地址) |
| OpenRouter(OpenRouter, Inc.) | AI 模型聚合与中转 | 你的照片与固定的诗歌生成指令 |
| OpenAI / Anthropic / Google | 实际执行生成的 AI 模型提供商 | 你的照片与固定的诗歌生成指令 |
| Apple(Apple Inc.) | 应用分发与订阅支付 | 订阅交易信息 |
数据流向为:你的照片 → 我们的服务器(Cloudflare Workers)→ OpenRouter → OpenAI / Anthropic / Google(根据你所选模型)。我们的服务器在转发后即丢弃照片,不予留存。上述模型提供商按其各自的隐私政策处理数据;据其面向 API 开发者的现行政策,经 API 提交的内容默认不用于训练其模型。我们建议你同时查阅相关方的隐私政策以了解其完整做法:
- Cloudflare:cloudflare.com/privacypolicy
- OpenRouter:openrouter.ai/privacy
- OpenAI:openai.com/policies/privacy-policy
- Anthropic:anthropic.com/legal/privacy
- Google:policies.google.com/privacy
- Apple:apple.com/legal/privacy
四、我们不做的事
为消除疑虑,我们明确声明:
- 我们不留存你的照片。照片仅在生成诗歌的瞬间被处理,之后立即丢弃。
- 我们不进行跨应用或跨网站追踪,不使用广告标识符(IDFA),不构建用户画像。
- 我们不收集你的姓名、邮箱地址或电话号码。
- 我们不收集你的精确位置,也不读取照片中的 EXIF GPS 等位置元数据。
- 我们不将你的数据出售给任何第三方。
五、处理数据的法律依据(GDPR)
若你位于欧洲经济区、英国或瑞士,我们处理你数据的法律依据为:
- 合同的履行——为提供你所请求的诗歌生成与订阅服务(GDPR 第 6(1)(b) 条);
- 你的同意——在首次上传照片前,我们会就「照片将发送至第三方 AI 处理」征得你的明确同意(GDPR 第 6(1)(a) 条)。你可随时撤回同意(见第七节)。
六、数据保留
- 照片:零留存——处理完成后即丢弃。
- 匿名标识与积分记录:保留至你的订阅生命周期结束或不再需要为止;若你卸载本应用,设备上的匿名标识即被清除。
- 订阅交易记录:在适用法律要求的范围内,为履行税务、会计与争议处理义务而保留。
七、你的权利
根据《通用数据保护条例》(GDPR)、《加州消费者隐私法》(CCPA/CPRA)及其他适用法律,你享有以下权利:访问、更正、删除你的数据,限制或反对处理,数据可携,以及撤回同意。我们不会因你行使权利而对你区别对待。
由于本应用采用匿名标识、无账户体系,且不留存照片:
- 撤回同意 / 删除本地身份:你可随时卸载本应用,这将清除存储在你设备上的匿名标识,停止任何进一步的数据处理。
- 删除服务端记录:如你希望我们删除与某匿名标识关联的服务端积分记录,可发送邮件至 kudu_dower.0t@icloud.com,并提供该标识(可在应用设置中查看)。我们会在适用法律规定的期限内处理你的请求。
- 因我们不收集可识别身份的信息,我们通常无法将服务端记录与某一具体自然人关联;为核实删除请求,我们可能需要你提供上述匿名标识。
八、儿童隐私
本应用并非面向 13 岁以下儿童设计,我们不会在知情的情况下收集儿童的个人数据。若你认为儿童向我们提供了数据,请通过上述邮箱联系我们,我们将予以删除。
九、数据的国际传输
我们的服务及上述第三方可能在你所在国家/地区以外的地点处理数据。在适用法律要求时,此类传输将受到适当保障措施的保护(如标准合同条款)。
十、安全
数据在你的设备与我们的服务器之间、以及在转发至第三方时,均通过加密连接(HTTPS/TLS)传输。尽管如此,没有任何一种互联网传输方式可保证绝对安全。
十一、本政策的变更
我们可能不时更新本隐私政策。重大变更将通过更新本页顶部的「生效日期」并在应用内适当位置告知。变更后继续使用本应用即表示你接受更新后的政策。
十二、联系我们
如对本隐私政策有任何疑问,请联系:
BoZhi Yuan
邮箱:kudu_dower.0t@icloud.com
Privacy Policy
Poetic Mist (the “App”) is an iPhone application that turns a photograph into a poem. We value your privacy, and we apply restraint as a shared principle of both our product and our data practices: we process only the data strictly necessary to generate a poem for you, and never collect more. This Privacy Policy explains what data we process, why, with whom we share it, and the rights you have.
1. Data Controller
The App is developed and operated by BoZhi Yuan, an individual developer, who is the controller of the personal data described in this Policy.
For any question, request, or complaint about this Policy or your data, contact us at:
kudu_dower.0t@icloud.com
2. Data We Process
We process only the following three categories of data, each strictly limited to what the App’s core functionality requires:
1. The photos you choose. When you take or select a photo to generate a poem, that photo is sent through our servers to a third-party AI model for processing (see Section 3). Photos are used solely for the immediate generation of a poem; once processing is complete, the photo is discarded. Our servers do not retain your photos, and your photos are never used to train any model.
2. An anonymous device identifier (UUID). To manage your subscription status and generation allowance (credits), the App generates a random anonymous identifier (a UUID) on your device. This identifier does not contain or link to your name, email, phone number, or any information that identifies you personally. It serves only as an anonymous “ledger” key recording the subscription tier and remaining credits associated with that device.
3. Subscription transaction information. When you purchase a subscription or a credit pack, the relevant transaction receipt is provided to us by Apple through the App Store so that we can verify your subscription is valid and grant the corresponding entitlement to your anonymous identifier. Payment is handled by Apple; we never receive your payment card details or your Apple ID.
We do not require you to create an account, and therefore we do not collect a name, email address, or password.
3. Third-Party Recipients
To deliver the core “photo-to-poem” feature and to run the subscription service, some of your data passes through the following third parties. Other than Apple, these recipients process only the photo content itself and do not receive any identity information about you:
| Third Party | Role | Data Received |
|---|---|---|
| Cloudflare (Cloudflare, Inc.) | Our backend hosting and network service | The photo as it transits during forwarding, plus network metadata required for the connection (e.g., IP address) |
| OpenRouter (OpenRouter, Inc.) | AI model aggregation and routing | Your photo and a fixed poem-generation instruction |
| OpenAI / Anthropic / Google | The AI model providers that perform the generation | Your photo and a fixed poem-generation instruction |
| Apple (Apple Inc.) | App distribution and subscription payments | Subscription transaction information |
The data flows as follows: your photo → our servers (Cloudflare Workers) → OpenRouter → OpenAI / Anthropic / Google (depending on the model you select). Our servers discard the photo after forwarding and do not retain it. The model providers process data under their own privacy policies; under their current policies for API developers, content submitted via their APIs is not used to train their models by default. We encourage you to review the relevant policies to understand their full practices:
- Cloudflare: cloudflare.com/privacypolicy
- OpenRouter: openrouter.ai/privacy
- OpenAI: openai.com/policies/privacy-policy
- Anthropic: anthropic.com/legal/privacy
- Google: policies.google.com/privacy
- Apple: apple.com/legal/privacy
4. What We Do Not Do
For the avoidance of doubt, we expressly state that:
- We do not retain your photos. Each photo is processed only at the moment a poem is generated, then immediately discarded.
- We do not track you across apps or websites, we do not use the advertising identifier (IDFA), and we do not build user profiles.
- We do not collect your name, email address, or phone number.
- We do not collect your precise location, and we do not read EXIF GPS or other location metadata from your photos.
- We do not sell your data to anyone.
5. Legal Bases for Processing (GDPR)
If you are located in the European Economic Area, the United Kingdom, or Switzerland, our legal bases for processing your data are:
- Performance of a contract — to provide the poem-generation and subscription services you request (GDPR Art. 6(1)(b)); and
- Your consent — before your first photo upload, we obtain your explicit consent to send the photo to a third-party AI for processing (GDPR Art. 6(1)(a)). You may withdraw consent at any time (see Section 7).
6. Data Retention
- Photos: zero retention — discarded immediately after processing.
- Anonymous identifier and credit records: retained for the lifetime of your subscription or for as long as needed; if you uninstall the App, the anonymous identifier stored on your device is cleared.
- Subscription transaction records: retained as required by applicable law to meet tax, accounting, and dispute-resolution obligations.
7. Your Rights
Under the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), and other applicable laws, you have the rights to access, correct, and delete your data; to restrict or object to processing; to data portability; and to withdraw consent. We will not discriminate against you for exercising your rights.
Because the App uses an anonymous identifier with no account system and does not retain photos:
- Withdraw consent / delete your local identity: you may uninstall the App at any time, which clears the anonymous identifier stored on your device and stops any further processing.
- Delete server-side records: if you want us to delete the server-side credit record associated with an anonymous identifier, email kudu_dower.0t@icloud.com with that identifier (viewable in the App’s settings). We will process your request within the period required by applicable law.
- Because we do not collect identifying information, we generally cannot link server-side records to a specific individual; to verify a deletion request, we may need you to provide the anonymous identifier above.
8. Children’s Privacy
The App is not directed to children under the age of 13, and we do not knowingly collect personal data from children. If you believe a child has provided us with data, please contact us at the email above and we will delete it.
9. International Data Transfers
Our service and the third parties above may process data in locations outside your country or region. Where required by applicable law, such transfers are protected by appropriate safeguards (such as Standard Contractual Clauses).
10. Security
Data is transmitted over encrypted connections (HTTPS/TLS) between your device and our servers, and when forwarded to third parties. Nevertheless, no method of transmission over the Internet can be guaranteed to be perfectly secure.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be indicated by updating the “Effective Date” at the top of this page and noted in an appropriate place within the App. Your continued use of the App after a change takes effect constitutes your acceptance of the updated Policy.
12. Contact Us
For any question about this Privacy Policy, contact:
BoZhi Yuan
Email: kudu_dower.0t@icloud.com