Sander Schat

PP for VerhaalPaden

Privacy Policy for VerhaalPaden

Last Updated: October 23, 2025

Overview

VerhaalPaden (“we”, “our”, or “the app”) is an iOS application that generates interactive origin stories using AI. We are committed to protecting your privacy and being transparent about our data practices.

Information We Collect

Device Identifier

  • We generate a unique device identifier that is stored securely in your device’s Keychain
  • This identifier is used solely for rate limiting API requests (maximum 10 story generations per hour)
  • The device ID is not linked to your personal identity and cannot be used to identify you

Story Content

  • Stories you create are stored locally on your device using SwiftData
  • If you enable iCloud sync, your stories are synchronized across your Apple devices via CloudKit
  • Story content includes: topics, chapter text, and your chosen story directions
  • We do not access, read, or store your story content on our servers

Language Preference

  • Your selected language (English or Dutch) is stored locally on your device
  • This preference is used to generate stories in your chosen language

How We Use Your Information

API Rate Limiting

  • Your device identifier is sent to our Cloudflare Workers backend to enforce fair usage limits
  • Rate limit data is stored temporarily in Cloudflare KV storage
  • This prevents abuse and manages our API costs

Story Generation

  • When you create or continue a story, your topic and chosen direction are sent to Anthropic’s Claude API via our backend
  • Story content is processed in real-time and streamed back to your device
  • We do not store, log, or retain your story content on our servers
  • Story data is immediately discarded after being streamed to your device

Third-Party Services

Anthropic Claude API

  • We use Anthropic’s Claude AI model to generate story content
  • Your story prompts are sent to Anthropic’s servers for processing
  • Anthropic’s privacy policy applies: https://www.anthropic.com/privacy
  • As of our knowledge, Anthropic does not use API data to train their models

Cloudflare Workers

  • Our backend infrastructure runs on Cloudflare’s edge network
  • Request logs may be retained by Cloudflare according to their privacy policy: https://www.cloudflare.com/privacypolicy/
  • We do not enable detailed logging of request content

Apple iCloud (Optional)

  • If you enable iCloud sync, your stories are stored in your private CloudKit container
  • Only you can access this data across your Apple devices
  • Apple’s privacy policy applies: https://www.apple.com/legal/privacy/

Data Storage & Retention

On Your Device

  • All stories are stored locally on your device indefinitely until you delete them
  • Story data is stored in an encrypted SwiftData database
  • You can delete individual stories or all data by deleting the app

On Our Servers

  • We do not store your story content
  • Device rate limit counters are stored for 1 hour, then automatically expire
  • No persistent user accounts or profiles are created

Data Sharing

We do not sell, rent, or share your personal information with third parties except:

  • As required by law or legal process
  • To prevent fraud or abuse of our service
  • With Anthropic (solely for AI processing of your story requests)

Your Rights

Access & Control

  • You have complete control over your story data on your device
  • You can export, copy, or delete any story at any time
  • You can delete all app data by uninstalling the app

Children’s Privacy

VerhaalPaden does not knowingly collect personal information from children under 13. The app does not require age verification as no personal information is collected. 

Changes to This Privacy Policy

We may update this privacy policy from time to time. We will notify you of significant changes by:

  • Updating the “Last Updated” date at the top of this policy

Contact Us

If you have questions about this privacy policy or our data practices, please contact us at:

 

Email:  info@sanderschat.nl

Technical Details

For transparency, here are the technical specifics of our data handling:

Network Requests to our server

  • Headers sent: Authorization token, Device ID, Content-Type
  • Data sent: Story topic, language preference, story direction
  • Data received: Generated story text (streamed)

Local Storage

  • SwiftData models: Story, Chapter, User, UserSettings
  • Location: App’s local database container
  • Encryption: iOS system-level encryption when device is locked