This policy explains what information Ballpoint collects, how we use it, and the choices you have. We've written it in plain English because you shouldn't need a lawyer to understand what happens to your data.
Ballpoint ("Ballpoint", "we", "us") is a mobile app for tradespeople that turns photos of handwritten notes, sketches, receipts and documents into finished, professional paperwork.
Who we are
Ballpoint is provided by [PLACEHOLDER: legal entity name], [PLACEHOLDER: registered address]. If you have any question about this policy or your data, email us at support@ballpointapp.com.
The short version
- We collect the minimum we need: your account details, the business content you create, and the photos or files you choose to process.
- Photos, PDFs and spreadsheets you capture are sent to Google's Gemini AI (through our own backend) only to read them and generate your paperwork or drawings. We never sell your data and never use it for advertising.
- Your business content lives on your device first, and is backed up to our servers only when you're signed in.
- You can export everything, for free, any time — and you can delete your account and data whenever you want.
Information we collect
Account information. When you sign in with Apple, Google or email, we receive your email address, your name (if provided), and a provider account identifier so we can recognise you and secure your account. If you use Sign in with Apple, Apple may pass us a private relay email address rather than your real one.
Business content you create. Quotes, invoices, customers, your price book, business/branding details (like a logo you add), and the documents you generate. This is your content — see "Your content is yours" in our Terms of Service.
Captures you process. The photos, PDFs and spreadsheets you point the camera at or import so the app can turn them into paperwork or AI drawings. These are treated as your business records.
Subscription status. Whether you're on the free trial or a paid subscription, and related purchase/entitlement information from the app stores (via RevenueCat). We never see or store your card or payment details — those are handled by Apple, Google and RevenueCat.
Minimal diagnostics. Basic, largely anonymous technical information (such as crash reports and error logs) so we can keep the app stable. We do not use advertising identifiers and we do not track you across other apps or websites for ads.
How captures are processed by AI
This is the core of what Ballpoint does, so we want to be clear about it.
- When you capture or import a photo, PDF or spreadsheet, the app compresses and resizes the image on your device, then uploads it to our secure, private storage.
- Our own backend (a Supabase Edge Function) sends that image or file to Google's Gemini AI to (a) work out what kind of document it is, and (b) extract the text, figures, line items, dates and totals, or generate an AI drawing from your sketch.
- The extracted data comes back to your device as an editable draft. Totals and VAT are always recalculated in our own code — we never trust the AI's arithmetic. You then review and correct what the AI read before anything is sent.
We send captures to Gemini only to provide these features. Your captures are not used to serve you ads and are not sold. We configure our AI processing to use no-training / zero-retention tiers where available, meaning your content is not used to train the AI models.
Your original photos and files are kept as part of your business records (they're the source and proof behind each document), stored encrypted, and deleted when you delete them or your account.
Where your data is stored
Your business content is stored locally on your device first, so the app works fully offline. When you're signed in, it is also backed up to our servers (Supabase), which use PostgreSQL with per-user row-level security — meaning your data is walled off so only your account can access it. Data is encrypted in transit and encrypted at rest.
Because our providers operate globally, your information (including captures being processed by AI) may be processed and stored in the United States and/or the EU. Where you're in the UK/EU, we prefer EU-region processing and endpoints where our providers offer them.
Who we share data with
We don't sell your data, and we don't share it with anyone for their own marketing. We use a small set of trusted service providers purely to run Ballpoint:
- Supabase — hosts your account, backed-up business content, captured files and our backend, under per-user access controls.
- Google (Gemini AI) — reads your captures and generates drawings, only to provide the feature, on no-training/zero-retention terms where available.
- RevenueCat — manages your subscription and trial status. It does not receive your payment card details.
- Apple / Google — handle sign-in and process your subscription payment through the App Store / Google Play.
We may also disclose information if required by law, or to protect the rights, safety and security of our users and our service.
Your choices and rights
- Export everything, free, any time. Getting your data out is a built-in feature and always will be — no charge, no lock-in.
- Delete your account and data. You can ask us to delete your account, which wipes your stored content and captured files from our servers. Email support@ballpointapp.com and we'll action it.
- Correct your information. You can edit your business content and account details in the app.
- Access / portability / objection. Depending on where you live (for example under UK/EU GDPR), you may have rights to access, correct, port, restrict or object to our processing, and to complain to your local data protection authority. Contact us to exercise any of these.
- Subscriptions. You can cancel your subscription any time through your App Store or Google Play account settings.
How long we keep your data
We keep your account and business content for as long as your account is active, because it's the paperwork you rely on. Captured photos and files are kept as the source records behind your documents until you delete them. When you delete your account, we delete your stored content and captures from our servers (some minimal records may be retained only where the law requires, such as basic billing records).
Children
Ballpoint is a business tool and is not intended for anyone under 16. We don't knowingly collect data from under-16s. If you believe a child has provided us data, contact us and we'll delete it.
Changes to this policy
If we make material changes, we'll update this page and the "Last updated" date, and where appropriate notify you in the app. Continuing to use Ballpoint after an update means you accept the revised policy.
Contact
Questions, requests, or a data deletion? Email support@ballpointapp.com.