Privacy Policy for Cuevi

Effective date: June 18, 2026

Last updated: June 18, 2026

Cuevi ("Cuevi", "we", "us") is an iOS app that helps you understand letters,

bills, and official documents and turn them into reminders and checklists. This

policy explains what data the app handles and what happens to it.

The short version: your documents and data stay on your device. Cuevi has no

accounts, no sign-in, and no server database. The only time information leaves

your phone is when the *text* of a document is sent for AI processing, described

below.

1. Who is responsible

Cuevi is operated as a sole proprietorship based in New York,

United States.

Questions about this policy: support@cuevi.app.

(If a business entity such as an LLC is formed later, this section will be updated

with its legal name and address.)

2. What we collect and process

Stays entirely on your device

Your documents, photos, and scans. Photos you take or upload are read by

on-device text recognition (Apple Vision OCR). The photo and the **extracted

details** (the item we create — title, amount, due date, steps, saved fields,

notes) are stored locally on your device. The raw recognized text itself is **not

kept by the app — but when you scan, it is sent to OpenAI** to produce the

summary and steps (see the next section), so a scanned document's text does leave

your device.

Items you create — titles, amounts, due dates, steps, saved fields, notes,

and reminders — are stored locally on your device using Apple's on-device

database (SwiftData).

Reminders/notifications are scheduled locally by iOS. We do not see them.
Your settings (such as your chosen explanation language) are stored locally.

We do not have a server that stores any of the above. We cannot see your

documents or items. Uninstalling the app removes this local data.

What is sent to OpenAI when you scan

When you scan or upload a document, the app recognizes its text on-device and

then sends that full recognized text to OpenAI to generate the summary and

steps. This text can include sensitive personal information — whatever appears

on the document, such as health, financial, tax, or immigration details, your

name, and account, policy, or case numbers. If you'd rather not send a document's

text, use manual entry instead of scanning.

We don't attach a separate account or device identifier (the app has no account),

but the document's text is sent as-is, so any personal details on it are included.

For non-sensitive guides, the built checklist is sent to OpenAI to reword and

translate it. Sensitive guides (below) are never sent.

The request goes through a Cloudflare Worker we run, so our OpenAI key isn't in

the app. Cloudflare may briefly process your device's IP address; we don't store it.

OpenAI processes the text and returns the result; Cuevi keeps no server-side copy.

Per OpenAI's API policy, API data is not used to train their models, but OpenAI

may retain it for up to ~30 days for abuse monitoring.

Sensitive GUIDES are generated on your device

The built-in guides we classify as sensitive — money/banking, taxes, immigration

(USCIS), medical, and similar — are generated entirely on your device and are

never sent to OpenAI (they show a "stays on your device" badge). This applies to

those guides only; it does not apply to scanning, where the recognized text is

sent to OpenAI as described above, however sensitive the document is.

We do NOT

We do not sell or rent your data.
We do not use your data for advertising.
We do not link your bank, process payments, or use autopay.
We do not currently use any third-party analytics or tracking. *(If we add

privacy-first, no-PII analytics in the future, we will update this policy first.)*

3. Third parties that may process data

Provider	What they process	Why
OpenAI	The full recognized text of any document you scan/upload (may include sensitive personal info), plus non-sensitive guide checklists. May be retained ~30 days for abuse monitoring; not used for training.	To generate the summary, steps, and translations
Cloudflare	Your IP address, transiently	To proxy the AI request so the OpenAI key isn't in the app
Apple	Local storage, on-device OCR, local notifications	Standard iOS app functionality (on your device)

We are not responsible for these providers' own practices; please review their

privacy policies (OpenAI, Cloudflare, Apple).

4. Data retention

On-device data stays until you delete the item or uninstall the app. You are

in control.

AI requests are processed in transit and returned; we keep no server copy.

OpenAI's retention of API data is governed by their policy.

5. Your choices and rights

Because your data lives on your device and we hold no server copy:

Delete anytime — delete an item, or uninstall the app, to remove your data.
Don't want text sent to OpenAI? Use the manual-entry option instead of

scanning, or use the on-device sensitive guides.

California (CCPA) and EU/UK (GDPR): we do not maintain personal data on our

servers, so there is no server-side profile to access, port, or delete — you

already control it on your device. For any questions about your rights, email us

at the address above.

6. Children

Cuevi is not directed to children under 13 and we do not knowingly collect

data from them. (COPPA.)

7. Security

Our AI key is held server-side in the Cloudflare Worker and is not shipped

inside the app.

The app limits how many scans you can run (per day and per month).
Your photos and saved items are stored in the app's protected on-device storage.
No method of transmission or storage is 100% secure, but we minimize risk by

keeping data on-device and sending the least amount of text necessary.

8. Changes to this policy

We may update this policy as the app evolves (for example, if we add accounts,

sync, or analytics). We will revise the "Last updated" date above, and material

changes will be reflected in the app.

9. Contact

Cuevi Support — support@cuevi.app