Sherlocksherlock
Download
← Back

Privacy Policy

Last updated: June 25, 2026

This Privacy Policy explains how Kurdsoft ("we," "us," or "our") handles information in connection with the Sherlock mobile application (the "App"). We built Sherlock to be privacy-first: we do not require an account, we only ask for a first name if you choose to provide one, and we do not sell your personal data.

In short. Photos you upload are sent to a third-party reverse-image search provider to perform your search and are not stored by us after the search completes. We do not build a face database, and we do not use your photos to train any model.

1. Information We Collect

a) Face data and photos you choose to search

Sherlock is a reverse-image face search app. When you start a search, the App processes your chosen photo on your deviceusing Apple's built-in Vision framework to:

  • Detect and crop the face. The App uses Apple's VNDetectFaceRectanglesRequest API to locate the largest face in your photo and crop it for a more accurate search. This detection runs entirely on your device; the raw face-rectangle coordinates never leave your device.
  • Generate a facial-landmark overlay for the scanning animation. The App uses Apple's VNDetectFaceLandmarksRequest API to extract facial landmark points (jawline, eyebrows, eyes, nose, lips, and pupils — approximately 80 points). These landmarks are used solelyto render a visual "biometric scanning" animation on screen. The landmark data exists only in device memory during the active search session and is discarded when you leave the search screen. Landmark data is never transmitted to any server or third party.

After on-device processing, the cropped face photo (JPEG image) is transmitted through our server to a third-party reverse-image search provider (FaceCheck.id) to find visually similar images on public websites. Our server acts as a pass-through proxy and does not retain a copy of your photo after the search request is forwarded. FaceCheck.id processes the image to perform the search and handles it in accordance with their own privacy policy.

Face data is not shared with any other third party beyond FaceCheck.id as described above. We do not use face data for advertising, profiling, or any purpose other than performing the search you requested.

Face data retention

Data typeWhere storedRetention
Facial landmark points (jawline, eyes, nose, lips, pupils)Device memory onlyDiscarded when the search screen is dismissed. Never transmitted off-device.
Cropped face photo (JPEG)Cached locally in your search history (on-device)Until you clear your history or delete the App. You can delete it at any time from Settings → Search History.
Cropped face photo (server transit)Our server (Supabase edge function)Not retained. Forwarded to FaceCheck.id in real time and then discarded.
Cropped face photo (search provider)FaceCheck.idGoverned by FaceCheck.id's privacy policy.

b) Anonymous app identifier

To track search credits and purchases without requiring an account, the App generates a random, anonymous identifier. This identifier is not linked to your email or contact information and cannot be used by us to identify you personally.

c) Optional first name

During onboarding we may ask for a first name to personalize your experience (for example, to greet you in the App). Providing a name is entirely optional — you can skip it and continue using the App normally. If you do provide one, it is stored on your device and shared with our push-notification provider (OneSignal) so we can personalize messages, associated only with your anonymous identifier. We do not ask for your last name, and we do not use the name to identify you across other apps or services. You can change or remove it at any time in the App's Settings.

d) Purchase information

Subscriptions and credits are processed by Apple and our subscription management provider (RevenueCat). We receive your subscription status and a transaction identifier, but we do not receive or store your full payment-card details — those are handled solely by Apple.

e) Optional survey answers

During onboarding we may ask optional questions (e.g., how you found us). These answers are stored locally on your device and used only to improve the App. You can skip them.

f) Usage, analytics, and diagnostic data

To understand how the App is used, improve it, and keep it stable, we collect analytics and diagnostic information through trusted third-party providers. This is tied to your anonymous app identifier — not to your email, phone number, or other contact details. It includes:

  • Product interaction & usage data. Which screens you view, taps and navigation, feature usage, and session activity, collected via our analytics provider (PostHog).
  • Session recordings. To diagnose issues and improve the experience, we record interactions during App sessions. These recordings capture how you move through and interact with the App, such as taps and navigation. Recordings are processed by PostHog and tied only to your anonymous identifier.
  • Crash & diagnostic data. When the App crashes or encounters an error, we collect diagnostic details (such as the error type, stack trace, device model, and operating-system version) to fix the problem.
  • Performance data. Basic technical metrics such as request timing, response sizes, and status codes, used to monitor reliability. We do not capture the contents of network request or response bodies.
  • Marketing attribution. To measure how well our marketing performs, we use AppsFlyerto attribute App installs to the campaigns that drove them. With your permission (via Apple's App Tracking Transparency prompt), this may include device-level advertising identifiers.

2. What We Do Not Collect

  • We do not require an account. We do not collect your email, phone number, or address. (A first name is optional — see Section 1(c).)
  • We do not collect your contacts, location, or device microphone data.
  • We do not maintain a searchable database of faces or identities.
  • We do not use your photos or face data to train facial-recognition models.
  • We do not create, store, or share biometric identifiers or biometric templates derived from face data.
  • We do not use face data to build a profile of you for advertising or to identify you across other apps or websites.

3. How We Use Information

DataPurpose
Cropped face photoTo perform the reverse-image search you requested, via our third-party search provider (FaceCheck.id).
Facial landmark pointsTo display an on-screen scanning animation during the search. On-device only; never transmitted.
Anonymous identifierTo track your credit balance and restore purchases.
Purchase statusTo unlock paid features and prevent abuse.
Crash & diagnostic dataTo keep the App stable and fix bugs.

4. Third-Party Service Providers

We share the minimum information necessary with trusted providers that help us operate the App:

  • FaceCheck.id (reverse-image search provider) — receives the cropped face photo from your search to find visually similar public images. Their handling of that image is governed by their own privacy policy. No other face data (e.g., facial landmarks) is shared with this provider.
  • Apple — processes payments and subscriptions.
  • RevenueCat — manages subscription status tied to your anonymous identifier.
  • Supabase — securely stores your anonymous credit balance. Photo data transits through Supabase edge functions but is not persisted.
  • PostHog — provides product analytics, session recordings, and crash/diagnostic reporting, tied to your anonymous identifier, to help us understand usage and keep the App stable.
  • AppsFlyer — provides marketing attribution to measure the performance of our advertising campaigns.
  • OneSignal — delivers push notifications and in-app messages, keyed to your anonymous identifier.

We do not sell your personal information to anyone, and we do not share it for cross-context behavioral advertising.

5. Data Retention

Uploaded photos are not retained on our servers after a search completes. Facial landmark data exists only in device memory during an active search and is discarded immediately when the search screen is dismissed. Locally cached result thumbnails and the cropped search photo remain on your device until you clear them (Settings → Search History) or delete the App. Your anonymous credit balance is retained while your identifier remains active so your purchases can be restored.

6. Your Rights and Choices

  • Access & deletion.Because we hold no information that identifies you personally, our records cannot be tied back to you. You can clear your local search history (including cached face photos) and uninstall the App at any time to remove all on-device data. To request deletion of your anonymous credit record, use the "Delete My Data" option in Settings or email us with your in-app identifier.
  • Face data.You can delete all locally stored face data at any time by clearing your search history in the App's Settings screen or by deleting the App. On-device facial landmark data is automatically discarded when you leave the search screen.
  • Subscriptions. Manage or cancel anytime via Settings → Apple ID → Subscriptions on your device.
  • Region-specific rights. If you are in the EEA, UK, or California, you may have additional rights under the GDPR or CCPA/CPRA. We honor applicable requests; contact us using the details below.

7. Children's Privacy

The App is intended for users 18 and older. We do not knowingly collect information from children. If you believe a child has used the App, contact us and we will take appropriate action.

8. Security

We use industry-standard measures, including encryption in transit, to protect information. Face photos are transmitted over HTTPS. On-device face processing uses Apple's Vision framework, which runs in the App's sandboxed environment. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

9. International Transfers

Your information may be processed on servers located outside your country. Where required, we rely on appropriate safeguards for such transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above. Continued use of the App after changes take effect constitutes acceptance of the updated policy.

11. Contact Us

If you have questions or requests regarding this Privacy Policy or your data, contact us at sahindhamzani@gmail.com.

Sherlocksherlock© 2026 Kurdsoft
PrivacyTermsData Deletion