SendSafe Privacy Policy
Last updated: June 3, 2026
TL;DR
SendSafe processes everything on your phone. We do not collect, store, or transmit any of your photos, PDFs, or the personal information our AI detects inside them. No account, no signup, no analytics, no ads.
What we don’t collect
We do not collect, see, or have access to any of the following:
- The photos or PDFs you import
- The redactions you draw
- The text our on-device AI detects (names, SSNs, addresses, IDs, etc.)
- The watermark text you type
- Your name, email, phone number, address, or any other personally identifying information
We don’t ask for an account because we don’t need one. SendSafe works completely offline after install.
What stays on your device
When you redact a document, SendSafe:
- Loads the photo or PDF entirely into memory on your phone.
- Runs Apple’s on-device Vision framework to recognize text in the image.
- Runs Apple’s on-device NaturalLanguage framework to detect personal names.
- Runs regular-expression matching for SSNs, credit cards, phones, emails, dates of birth, and US addresses.
- Burns the redactions you accept into a new image at the pixel level.
- Strips EXIF and GPS metadata from the export.
- Writes the result to a temporary file inside the app’s sandbox.
- Hands the file URL to the iOS share sheet so you can decide where it goes.
At no point in this pipeline does any of your content leave your device.
In-App Purchase
SendSafe Premium is a one-time $4.99 in-app purchase processed by Apple. We do not handle your payment information. Apple shares the following with us:
- Whether your Apple ID owns the Premium entitlement (so we can unlock the corresponding features).
We do not receive your name, your Apple ID email, or your purchase history. The entitlement is read locally via Apple’s StoreKit framework.
Network access
SendSafe makes the following network calls only:
- StoreKit calls to Apple to fetch product info and verify your Premium entitlement.
- Nothing else.
No third-party servers, no analytics endpoints, no crash reporters, no ad networks.
Children’s privacy
SendSafe is rated 4+ and does not knowingly collect any information from anyone, including children under 13. We display no advertising and do not use any third-party SDKs that may collect data.
Data retention
Because we don’t collect any data, there is nothing to retain. The temporary files SendSafe writes during export live inside the iOS sandbox and are cleaned up either by SendSafe itself when you dismiss the share sheet, or by iOS when the app is removed or its temporary storage is cleared.
Your rights
You have the right to know what data we hold about you. The answer is: nothing. We have nothing to delete, export, or correct because we never had it.
If you ever want to fully reset the app, deleting SendSafe from your device removes its sandbox and any temporary files inside it. Your Premium purchase remains tied to your Apple ID and can be restored via Settings → Restore Purchases the next time you install.
Contact
Questions, feedback, or concerns: momomodd07@gmail.com
Changes to this policy
If this policy changes in any material way, we will update the “Last updated” date at the top and surface a notice inside the app before the change takes effect. There is no email list to notify because we don’t have your email.