Privacy Policy
1. Data controller (EEA)
Controller: Kevin Santiago Correa Villa
Country of establishment: Austria
Public tax identification: No Austrian UID (VAT ID). Steuernummer is not published (reserved tax data, not a public identifier).
Address: Demuthgasse 11/5, 1160 Wien, Austria
Privacy contact: hola.rolloapp@gmail.com
2. What Rollo is
Rollo is a collaborative photo app for events. Guests capture photos during the event; images stay hidden until the reveal time set by the organizer.
3. Data we collect
| Category | Examples |
|---|---|
| Account | User ID, email (if linked), display name, Apple/Google/anonymous sign-in |
| Events | Name, code or QR, reveal time, role, guest limit |
| Content | Photos taken with the in-app camera; event cover (only the image the organizer chooses) |
| Device photo library (optional) | Only if you request it: save the revealed album to Photos; organizer may upload one cover image picked from their gallery |
| Purchases | Product and purchase status (capacity); payment is processed by Apple or Google |
| Notifications | Device token (push or local notification) |
| Technical | Error diagnostics (Sentry), app version, device type; usually not linked to your identity |
Event photos: captured only with the built-in in-app camera. We do not import photos from your gallery for the event roll.
Photos / photo library access (system permission)
Rollo may ask for Photos permission only in these cases, when you start them:
- Save the revealed album: after reveal, if you tap “Save album to Photos” or “Save my photos”, we download event images from our servers and save them to your camera roll, usually in a system album named “Rollo — [event name]”. Without that action, we do not write to your gallery.
- Roll cover (organizer): if you create an event, you may pick one image from your gallery as the cover. Only that image is uploaded as the cover; we do not scan or sync the rest of your library.
What we do not do: we do not sell your photos, use your library for advertising or cross-app tracking, or upload camera-roll photos to the roll except the cover an organizer explicitly chooses.
iPhone (iOS): the system prompt may mention “full access” to your library and show thumbnails; that is Apple’s standard dialog. You can choose Limit Access…, Allow Full Access, or Don’t Allow. If you deny access, you can still use the in-app event camera; you only won’t be able to save to Photos until you enable it in Settings → Rollo → Photos.
Metadata on device: photos in your library may include location or other metadata they already had; when saving, we copy the image file from the revealed album. We do not use that metadata for advertising.
4. Purposes and legal bases (European Union / GDPR)
- Account, events, and photos: performance of contract (Art. 6(1)(b) GDPR).
- Guest capacity purchases: performance of contract.
- Reveal notifications: consent or legitimate interest, depending on settings.
- Save revealed photos to your library: consent (Photos permission) or performance of contract when you request it in the app.
- Cover from gallery (organizer): consent when you pick the image.
- Security and stability: legitimate interest.
- Legal obligations: when required by law.
5. Processors and third parties
We do not sell your data. We share only with:
- Supabase — database, authentication, and photo storage.
- RevenueCat — in-app purchase validation.
- Apple App Store / Google Play — distribution and payment.
- Apple / Google — if you sign in with their account.
- Sentry — error diagnostics and app stability in production (not used for advertising).
- Expo — app build and distribution infrastructure.
- Members of the same event — see photos after reveal.
6. International transfers
Some providers may process data outside the European Economic Area (e.g. the United States). Where applicable, we use safeguards recognized under the GDPR (e.g. standard contractual clauses).
7. Retention
We keep data as long as needed for the service, legal obligations, or dispute resolution. Deleting the app does not automatically delete server data.
You can request deletion from the app under My account → Request account deletion or by emailing hola.rolloapp@gmail.com.
8. Your rights (EEA)
Access, rectification, erasure, restriction, objection, portability (where applicable), and withdrawal of consent. Practical guide: Your privacy rights. Contact: hola.rolloapp@gmail.com.
You may lodge a complaint with your supervisory authority. In Austria: Datenschutzbehörde. In Spain: AEPD.
9. United States (California and others)
If you live in a state with a consumer privacy law (e.g. California CCPA/CPRA), you may have the right to know, access, correct, and delete personal data, and to opt out of the sale or sharing of data for cross-context behavioral advertising.
Rollo does not sell personal data. To exercise your rights: hola.rolloapp@gmail.com. We will not discriminate for exercising these rights.
10. Canada
We handle personal information in line with accountability, purpose limitation, and security principles aligned with PIPEDA where it applies.
11. Children
- EEA (Spain): we do not target the service at children under 14 without parental consent where required by law.
- United States: we do not target the service at children under 13 (COPPA) and do not knowingly collect data from children under 13.
12. Security
Reasonable technical and organizational measures (restricted access, database and storage rules, encrypted communications). No system is completely secure.
13. Administrative access to content
Rollo is designed so event content is visible to members according to event rules (e.g. after reveal).
We do not routinely review your photos manually. However, authorized staff of the controller or platform providers may access content in a limited, exceptional way when necessary to:
- resolve technical or support issues,
- investigate abuse, fraud, or terms violations,
- protect platform or user security,
- comply with legal obligations or competent authority requests.
Such access is limited to people who need it for their role, under access controls and confidentiality duties.
14. Changes
We will publish the updated version on this page. Material changes will be communicated in the app or by email when possible.