Vapor

Privacy-First Ferry Travel

Privacy Policy for Vapor

Effective Date: July 31, 2025
Last Updated: July 31, 2025
Data Controller: Zoran Pucar, Sweden

1. Introduction

Vapor is designed with privacy-first principles. This Privacy Policy explains how we handle information in connection with your use of the Vapor mobile application ("App").

Key Principle: Vapor processes minimal data and stores everything locally on your device. We do not collect, store, or transmit your personal information to external servers.

2. Data Controller Information

Company: Zoran Pucar
Address: Norrköping, Sweden
Email: zoran.pucar@gmail.com
Country: Sweden

3. What Information We Process

3.1 Information We DO NOT Collect

  • Personal identification information (name, email, phone number)
  • User accounts or profiles
  • Usage analytics or tracking data
  • Device identifiers for tracking purposes
  • Social media information
  • Payment information
  • Browsing history or app usage patterns

3.2 Information Processed Locally on Your Device

Location Data:

  • Current GPS coordinates (when location services are enabled)
  • Proximity to ferry ports
  • Island/mainland location detection
  • Processing: All location data is processed locally on your device and never transmitted to external servers

User Preferences:

  • Favorite ferry ports and routes
  • App settings and configurations
  • Journey history for personalization
  • Storage: Stored locally in your device's secure storage

Ferry Schedule Data:

  • Pre-bundled Croatian ferry schedules
  • Source: Public transportation data from official Croatian ferry operators
  • Storage: Included with app installation, stored locally

3.3 Anonymous Weather Data Requests

Weather Information:

  • Anonymous requests to third-party weather services
  • No personal identifiers included in requests
  • Only geographic coordinates (no device or user identification)
  • Purpose: Display weather conditions for ferry travel planning

4. Legal Basis for Processing (GDPR)

Under GDPR Article 6, our legal basis for processing is:

Location Data: Legitimate interest (Article 6(1)(f)) - to provide relevant ferry recommendations based on your location

User Preferences: Legitimate interest (Article 6(1)(f)) - to personalize your app experience

Weather Requests: Legitimate interest (Article 6(1)(f)) - to provide relevant weather information for travel planning

5. How We Use Information

5.1 Local Processing Only

  • Personalized Recommendations: Algorithm runs locally to suggest relevant ferry departures
  • Location-Based Features: Determine nearby ports and relevant routes
  • Journey History: Track your travel patterns locally for better recommendations
  • App Functionality: Store your preferences and settings

5.2 No External Transmission

  • Your personal data never leaves your device
  • No data is sent to our servers or third parties
  • No analytics or tracking data is collected
  • No advertising or marketing data is processed

6. Data Sharing and Third Parties

6.1 We Do Not Share Your Data

  • No personal data is shared with third parties
  • No data is sold, rented, or disclosed to external parties
  • No advertising networks have access to your data

6.2 Third-Party Services

Weather Service:

  • Anonymous requests for weather data
  • No personal information included in requests
  • Weather service privacy policies apply to their data handling

Apple App Store / Google Play:

  • App downloads are subject to platform privacy policies
  • We do not receive personal information from app stores about downloads

7. Your Rights Under GDPR

As Vapor processes data locally on your device, you have full control:

7.1 Right of Access (Article 15)

  • All your data is stored locally on your device
  • You can view your preferences and journey history within the app

7.2 Right to Rectification (Article 16)

  • You can modify your preferences and settings within the app
  • You can clear or correct your journey history

7.3 Right to Erasure (Article 17)

  • Delete the app to remove all locally stored data
  • Clear app data through device settings
  • Reset preferences within the app

7.4 Right to Data Portability (Article 20)

  • Export your preferences and journey history (if feature is available)
  • Data is stored in standard formats on your device

7.5 Right to Object (Article 21)

  • Disable location services through device settings
  • Turn off weather features within the app

7.6 Right to Withdraw Consent

  • Revoke location permissions through device settings
  • Disable specific app features at any time

8. Data Security

8.1 Local Storage Security

  • Data stored using iOS/Android secure storage mechanisms
  • Device-level encryption protects your information
  • No data transmission means no network security risks

8.2 App Security

  • Regular security updates through app stores
  • No external APIs that could compromise your data
  • Minimal attack surface due to offline-first design

9. Data Retention

9.1 Local Data

  • Data remains on your device until you delete it
  • Journey history can be cleared within the app
  • Uninstalling the app removes all data

9.2 No Server-Side Retention

  • We do not retain any of your personal data on our servers
  • No backup or archival of your personal information

10. International Data Transfers

No International Transfers: Since all data is processed locally on your device, there are no international data transfers of your personal information.

Weather Data: Anonymous weather requests may be processed by international weather services, but contain no personal information.

11. Children's Privacy

Vapor does not knowingly collect personal information from children under 16. Since we don't collect personal data at all, the app is safe for users of all ages. Parents should supervise children's use of location services.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will:

  • Notify users of material changes through app updates
  • Post the updated policy with a new effective date
  • Maintain previous versions for reference

13. Contact Information

For privacy-related questions or to exercise your rights:

Email: zoran.pucar@gmail.com
Address: Norrköping, Sweden
Subject Line: "Vapor Privacy Inquiry"

Response Time: We will respond to privacy inquiries within 30 days as required by GDPR.

14. Supervisory Authority

If you have concerns about our privacy practices, you can contact the Swedish Data Protection Authority:

Integritetsskyddsmyndigheten (IMY)
Website: https://www.imy.se
Email: imy@imy.se

15. Language Versions

This Privacy Policy is available in:

  • English (this version)
  • Swedish (upon request)
  • Croatian (upon request)

For Swedish users, the Swedish version takes precedence in case of conflicts.

Summary: Vapor is designed to protect your privacy by processing all personal data locally on your device. We do not collect, store, or transmit your personal information to external servers. You maintain full control over your data at all times.

© 2025 Zoran Pucar. All rights reserved.
Registered in Sweden