Aro Privacy

Aro Privacy


PRIVACY POLICY


Application: Aro

Last updated: May 2, 2026

Effective date: May 2, 2026


This Privacy Policy describes how the mobile application Aro ("Aro", "we", "us", "our") collects, uses, shares and protects information when you use the app. By using Aro you agree to the practices described here. If you do not agree, please do not use Aro.


1. WHO WE ARE

Aro is a consumer mobile application that helps you look up products and ingredients, scan packaging or barcodes, view aggregated lab-test references and manage purchase preferences. The data controller for the purposes of EU/UK GDPR is the developer of Aro. You can reach us at aro9appmanagement@gmail.com.


2. INFORMATION WE COLLECT

Device identifiers

Examples: Apple Vendor Identifier (IDFV), an internally generated UUID stored on-device, OS version, app version.

Why: To authenticate API requests, prevent abuse, and analyze app stability and performance.


Subscription data

Examples: Subscription status, App Store transaction identifiers, paywall placement / paywall identifier, purchase events provided by Apple and Apphud.

Why: To deliver and verify your subscription, restore purchases and operate paywalls.


App usage

Examples: Search queries you type in the app, product views, scan attempts, error and diagnostic logs.

Why: To return product results, improve search quality, debug issues and improve the product.


Camera content

Examples: Photos of product packaging, barcodes or labels you choose to scan.

Why: Sent to our backend (and processing partners) only for the purpose of recognizing the product. We do not require photos that contain personal information; please do not include people or other private content.


Local content

Examples: Search history, recently viewed items, favorites, cached product data.

Why: Stored locally on your device to support offline browsing and quick access. Not uploaded to our servers as a personal profile.


Communications

Examples: Email content if you contact us at aro9appmanagement@gmail.com.

Why: To respond to your support request.


We do NOT ask for your name, address, phone number, government ID, precise location or contacts. We do NOT sell your personal information.


3. HOW WE COLLECT INFORMATION

• From your device — for example, the IDFV provided by iOS, app version, locale and OS version that your device sends with API requests.

• From your in-app actions — searches, scans, screen views, taps on subscription options.

• From Apple — purchase, restore and refund events related to your subscription.

• From Apphud — subscription status, paywall and product information.


4. HOW WE USE INFORMATION

• Provide and maintain the core functionality of Aro (product lookups, scanning, search history, ingredient information).

• Authenticate API requests and protect against abuse, fraud and misuse.

• Deliver, verify and restore in-app subscriptions and free trials.

• Show the appropriate paywall and pricing variant.

• Improve and debug the app, measure performance and crash rates.

• Respond to your support requests.

• Comply with legal obligations and enforce our Terms of Use.


5. LEGAL BASES (EEA / UK)

If you are in the European Economic Area or the United Kingdom, our legal bases for processing personal data are:


• Performance of a contract — to provide the app and the subscription you purchase.

• Legitimate interests — to secure the app, prevent abuse, debug issues and improve the product, where these interests are not overridden by your rights.

• Consent — where required by law, for example before any optional analytics or tracking; you can withdraw consent at any time.

• Legal obligation — when we must process data to comply with applicable laws.


6. SHARING OF INFORMATION

We share limited data only with the following categories of recipients, who act as our processors or independent controllers:


• Apple Inc. — App Store, in-app purchases, App Store Connect, system review prompts. Governed by Apple's privacy policy.

• Apphud — subscription management and paywall analytics. Governed by Apphud's privacy policy.

• Authorities — when required by applicable law, court order or to protect rights, safety and property.


We do not sell or rent personal information to advertisers or data brokers.


7. INTERNATIONAL DATA TRANSFERS

Your information may be processed in countries other than the one you reside in, including the United States. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers.


8. DATA RETENTION

We keep personal data only for as long as it is needed for the purposes described in this Policy, or as required by law. Device identifiers and request logs are typically retained for up to 12 months for security and debugging. Subscription records are retained for the period required for tax, accounting and consumer-protection purposes. Locally cached data is retained on your device until you delete the app or clear it from device settings.


9. YOUR RIGHTS

Depending on where you live, you may have rights to:


• Access the personal information we hold about you;

• Request correction or deletion of your personal information;

• Object to or restrict certain processing;

• Data portability;

• Withdraw consent (where processing is based on consent);

• Lodge a complaint with your local data-protection authority.


California residents have additional rights under the CCPA/CPRA, including the right to know, delete, correct, and to opt-out of "sharing" or "selling" of personal information; we do not sell or share personal information for cross-context behavioral advertising.


To exercise any right, contact us at aro9appmanagement@gmail.com. We will respond within the period required by applicable law.


10. CHILDREN'S PRIVACY

Aro is not directed to children under 13 (or the equivalent minimum age in your country). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.


11. SECURITY

We use reasonable technical and organizational measures to protect personal information, including HTTPS for data in transit, scoped API tokens with short expirations, and access controls on our backend. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.


12. THIRD-PARTY LINKS

Aro may contain links to third-party websites or services (for example, the Apple App Store). We are not responsible for the privacy practices of those services. We encourage you to read their privacy policies.


13. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. The most recent version will always be available at this URL with an updated "Last updated" date at the top. Where required by law, we will provide additional notice or seek your renewed consent.


14. CONTACT

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

aro9appmanagement@gmail.com



© 2026 Aro. All rights reserved.


Report content on this page

Report Page

Please submit your DMCA takedown request to dmca@telegram.org