Privacy Policy — iOS apps
Last updated: May 4, 2026
This policy covers our iOS apps Reefkeeper, Beekeeper, HomeKeep, and Spår. They are designed the same way from a privacy standpoint: what you record stays on your device or in your own iCloud. We do not run a backend that receives your data. Spår additionally uses OpenAI for transcript summarisation (a shared key by default; you can supply your own) and offers an optional Google Gmail integration that you opt into yourself.
In short
- We do not collect personal data.
- We do not track you and do not use analytics or advertising SDKs.
- Everything you create (logs, photos, notes, receipts, maintenance plans, and so on) is stored locally and synced to your own iCloud via Apple's CloudKit when iCloud is enabled.
- No third-party servers are involved in handling your data.
Data we process
| Category | How | Shared with |
|---|---|---|
| App content (logs, photos, documents, receipts, maintenance, notes) | Stored in Core Data on your device + synced to your iCloud via CloudKit | Apple (iCloud), you |
| Purchases (Pro subscription) | Handled by Apple via StoreKit | Apple |
| Location (optional) | Used only when you choose to attach a location (apiary, home address). Stored locally. | – |
| Camera / photo library | Only when you actively scan or attach an image | – |
| Apple Intelligence prompts | Executed on-device via Foundation Models on iOS 26+ | – |
| Voice transcripts (Spår) | Speech-to-text runs on-device via Apple's Speech Recognition. Transcripts are stored in your own iCloud Drive. | Apple (iCloud), you |
| Calendar and reminders (Spår) | Read via EventKit/Reminders only after you grant access. Stored in your iCloud Drive vault. | Apple (iCloud), you |
| OpenAI summaries (Spår) | By default uses a shared OpenAI key provided by Enovira. You can choose to supply your own API key in app settings. Transcripts are sent from your device to OpenAI for summarisation. | OpenAI |
| Gmail content (Spår, optional) | Only if you sign in via Google OAuth. Read-only access to ingest emails into your own Spår vault. Email content never passes through Enovira's servers. | You (in your iCloud vault) |
Third parties
- Apple — iCloud sync, Foundation Models, StoreKit, Speech Recognition, EventKit, Reminders, HealthKit, and local notifications. Governed by Apple's own privacy policy.
- EU Safety Gate (European Commission) — HomeKeep only: when the app checks for product recalls, it sends brand and model number to the public Safety Gate API. No information about you is sent.
- OpenAI — Spår only. By default Spår uses a shared OpenAI key provided by Enovira; you can choose to supply your own API key in app settings. Transcripts are sent from your device to OpenAI for summarisation.
- Google Gmail API — Spår only, and only when you sign in via OAuth. Read-only access to ingest your emails into your personal Spår vault. Email content never passes through Enovira's servers.
Spår's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements: https://developers.google.com/terms/api-services-user-data-policy
Your rights (GDPR)
Because we do not keep your data on our servers, you control access, modification, and deletion directly in the app or in iCloud. For GDPR-related questions you can still reach us at hello@enovira.com.
Children
The apps are not directed at children under 13, and we do not knowingly collect data from children.
Changes
We update this page whenever the policy changes. The date at the top shows the last revision.
Contact
Questions about this policy? Contact us: