Privacy Policy

1. Introduction

This Privacy Policy explains how TouchRemote collects, uses, stores, and protects information when you use the TouchRemote mobile application, website, and related services (collectively, the "Service").

TouchRemote is a service operated under the iGALabs brand by Igor Ozhiganov.

TouchRemote is designed to work with the TouchDesigner environment through a proprietary component called TouchRemote COMP.

By accessing or using the Service, you agree to the practices described in this Privacy Policy.

2. Scope of This Policy

This Privacy Policy applies to:

• The TouchRemote mobile application for iOS and Android.
• The website located at https://touchremote.pro.
• Related backend services, account systems, and support processes.

3. Information We Collect

We collect only the information reasonably necessary to provide and improve the Service.

3.1 Account Information

When you create or use an account, we may collect:

• Email address.
• Hashed password.
• Username, if provided.
• Avatar image, if provided.

Your email address is used for authentication, account management, password reset, email verification, support, and service-related communication.

3.2 Device and Installation Information

To manage access, licensing, and device seats, we may collect:

• InstallID, which is a unique identifier generated for a specific installation of the application.
• App version.
• Device model.
• Operating system version.
• Limited technical identifiers needed for service operation and diagnostics.

InstallID is used to associate an app installation with a license seat.

3.3 Analytics and Diagnostics Data

We use analytics and diagnostics tools to understand usage patterns and improve reliability.

This may include:

• App version.
• Device model.
• Operating system version.
• Crash reports.
• Diagnostic information.
• Technical event data related to app performance and stability.

We use:

• Firebase Analytics.
• Firebase Crashlytics.

3.4 Payment and Subscription Information

Payments for paid features are processed by:

• Apple App Store.
• Google Play.

We do not collect or store payment card details.

We use RevenueCat to manage subscription status, purchase synchronization, and entitlement handling across platforms. Limited purchase-related metadata may be processed by RevenueCat in accordance with its own policies.

The authoritative source of subscription status for the Service is the TouchRemote backend.

4. Device Permissions and Feature Access

To provide its functionality, the application may request access to certain device features or permissions.

These may include:

Local Network

Used to discover and connect to TouchRemote COMP instances running in the user's TouchDesigner environment.

Camera

Used for scanning QR codes and, where enabled by the user, transmitting video to the TouchDesigner environment.

Microphone

May be used where the application or related streaming functionality requires audio input.

Location

Used when the user chooses to transmit location data to their TouchDesigner environment.

Sensors

Used to transmit motion and environmental data from the device, including:

• Accelerometer.
• Gyroscope.
• Barometer.
• Other available device sensors.

Push Notifications

Used to deliver service updates, account-related notices, and important announcements.

Users can manage most permissions through their device settings.

5. Video, Sensor, and Control Data

TouchRemote enables real-time interaction with TouchDesigner systems and may involve:

• Panel interaction.
• Control input.
• Video streaming.
• Sensor data transmission.
• Device-originated media or telemetry.

These data streams are transmitted directly between the mobile device and the user's TouchDesigner environment using technologies such as:

• WebRTC.
• NDI.

Connections may rely on STUN/TURN services, including Google STUN/TURN infrastructure, to establish peer-to-peer communication where necessary.

TouchRemote servers do not store, record, or process user video streams or sensor data transmitted between the mobile device and the user's TouchDesigner environment.

6. How We Use Information

We use collected information to:

• Create and manage user accounts.
• Authenticate users.
• Verify email addresses.
• Provide password reset functionality.
• Manage subscriptions, licenses, and device seats.
• Operate and maintain the Service.
• Provide support and respond to inquiries.
• Improve functionality, reliability, and stability.
• Send service-related messages and updates.
• Detect misuse, abuse, or technical issues.

7. Data Sharing and Third-Party Services

We do not sell personal information.

We may share limited data with service providers that help us operate the Service, including:

• Apple App Store.
• Google Play.
• RevenueCat.
• Firebase Analytics.
• Firebase Crashlytics.
• Firebase Cloud Messaging.
• Mailgun.
• Railway.
• Google STUN/TURN services.
• Other infrastructure providers reasonably required to operate the Service.

These providers may process limited data in accordance with their own privacy policies and only to the extent needed to deliver their services.

8. Data Retention

We retain personal data only for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy.

8.1 Account Data

We retain account-related data while the account remains active.

8.2 Account Deletion

Users may request deletion of their account by contacting:

Deletion requests are typically processed within 7 business days.

After confirmation of the deletion request:

• The account may be deactivated.
• Personal data associated with the account will generally be deleted within 30 days.

8.3 Payment and Legal Records

Certain purchase, subscription, billing, support, or legal records may be retained for a longer period where required for legal, accounting, fraud-prevention, dispute-resolution, or regulatory purposes.

8.4 Technical Logs

Infrastructure providers may temporarily retain technical logs, such as IP addresses, request metadata, error logs, and service events, for operational, security, abuse-prevention, and debugging purposes.

9. Data Security

We use reasonable technical and organizational safeguards designed to protect information.

These measures include, where applicable:

• Encrypted connections over HTTPS.
• Encrypted WebSocket connections over WSS.
• Secure authentication practices.
• Password hashing.
• Restricted access to service infrastructure where appropriate.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. International Processing

The Service may rely on infrastructure or third-party providers that process data in different countries or regions depending on operational needs.

By using the Service, you understand that information may be processed outside your country of residence where permitted by applicable law.

11. Children's Privacy

The Service is not directed to children and is not intended for use by children below the minimum age permitted by applicable law or app marketplace requirements.

We do not knowingly collect personal information from children in violation of applicable law.

12. Your Rights

Depending on applicable law, you may have the right to:

• Request access to your personal data.
• Request correction of inaccurate data.
• Request deletion of your data.
• Withdraw consent where processing is based on consent.
• Object to or restrict certain processing.

To exercise these rights, contact:

13. Policy Updates

We may update this Privacy Policy from time to time.

The latest version will be published on the TouchRemote website. Continued use of the Service after an update becomes effective constitutes acceptance of the revised Privacy Policy.

14. Contact

If you have any questions about this Privacy Policy or the handling of your data, contact: