Legal

Privacy Policy

Last Updated: 30 June 2026

SIGNLOKR is a job-management tool for sign shop businesses. This policy explains how data is handled when you use the app.

Who This Covers

SIGNLOKR has two types of users: the shop operator (you, using the app) and survey respondents (your customers or contractors, who fill in a web form — no app required). The shop operator is the data controller for their own customers' information. On Lock Creative acts as a data processor only.

Your Data Stays On Your Device

All information you enter into SIGNLOKR — job details, client names, contact information, sign specifications, photos, and notes — is stored locally on your device using on-device storage. There is no account system and no cross-device sync. This data is never transmitted to our servers, except where you actively generate a customer survey link (see below), or opt in to receive product updates via email (see below).

App Permissions & Why We Use Them

PermissionPlatformPurpose
CameraiOS + AndroidCapture site photos for job records
Photo Library (read)iOS + AndroidAttach existing photos to job records
Photo Library (write)iOS + AndroidSave photos to camera roll
MicrophoneiOS + AndroidVoice-to-text input for job notes
Speech RecognitioniOS onlyTranscribe spoken notes
Push NotificationsiOS + AndroidAlert you when a customer completes a survey
Background Fetch / Remote NotificationsiOSDeliver push notifications when the app isn't active

We do not collect or track your device's GPS location. Android's media-location permission is used only to read photo file metadata correctly, not to track you.

Customer Survey Data (Temporary Server Storage)

When you generate a customer or contractor survey link, the following is sent to our survey backend so the link can work: your shop name, return email, branding details, the customer's name, your materials/sign-type lists, and your push notification token.

This data is stored temporarily in our database for up to 30 days, after which it is automatically and permanently deleted — whether or not the survey was completed.

When a customer or contractor submits the survey, their responses (contact details, sign specifications, site photos, notes, preferences) are used to generate a branded PDF, which is emailed to your registered shop email. The submitted data remains in temporary storage until the 30-day window closes, then it's automatically deleted. We don't use it for anything beyond producing that report.

Survey photos are stored in a separate file storage service, accessible only via a unique, hard-to-guess link tied to that survey.

Survey Respondent Consent

The shop operator is responsible for obtaining any necessary consent from their customer or contractor before sending them a survey link. SIGNLOKR provides the tool; how and when it's used to contact someone is the shop operator's decision and responsibility.

If you're a survey respondent and didn't expect to receive a survey link, or want your submitted data corrected or deleted before the 30-day automatic deletion, contact the shop directly, or email support@signlokr.com and we'll assist where we can.

Push Notifications

When a customer completes a survey, we send a push notification through Expo's push infrastructure containing your push token and the customer's name (so the notification can say "Jane Smith completed their survey"). This passes through Expo's systems and isn't stored by us beyond delivering that notification.

Marketing Emails (Optional)

During setup, you can optionally opt in to receive product updates and tips via email by checking a box on your shop profile screen. If you opt in, your email address is sent to Resend, our email provider, and added to a mailing list. We use this list only to send occasional product updates — never sold, shared, or used for anything else.

You can unsubscribe at any time using the link included in every email. Opting in is entirely optional and has no effect on your use of the app or its features.

No Tracking

We don't use analytics, advertising SDKs, or behavioural tracking. We have no visibility into how you use the app day-to-day or what you store on your device.

Third-Party Services

  • RevenueCat — manages SIGNLOKR Pro subscription status. Processes purchase receipts via Apple/Google. We don't see or store payment details. revenuecat.com/privacy
  • Resend — sends survey PDFs via email, and manages our optional marketing mailing list if you opt in. Doesn't retain survey content beyond delivery. resend.com/legal/privacy-policy
  • Vercel (KV/Blob) — temporarily stores survey data and photos, encrypted in transit and at rest, auto-deleted after 30 days. vercel.com/legal/privacy-policy
  • Sentry — crash and error reporting for the app and survey backend. Collects stack traces, device/OS info, and error context. We configure Sentry to exclude personal data such as customer names and contact details, though error logs may occasionally capture unexpected technical context. sentry.io/privacy
  • Expo Push Notifications — delivers the completion alert described above. expo.dev/privacy
  • Apple App Store / Google Play — process subscription purchases.

We don't sell or share your data with anyone outside this list.

Data Export & Backup

You can export a full backup of your app data, or export jobs and clients as CSV files, at any time. These exports are entirely user-initiated — you choose where they go (iCloud, Google Drive, email, etc.). We have no access to your exported files and don't store them. Automatic cloud backup is planned for a future update.

No Cloud Recovery

We don't operate cloud backup infrastructure for your on-device data. There's no account system and no way for us to recover your job history if your device is lost, stolen, or damaged. Export your data regularly via Settings.

Data Deletion

Deleting SIGNLOKR removes all locally stored data permanently and immediately. There's no separate in-app option to clear data while keeping the app installed — uninstalling is the way to wipe your local records. Customer survey data on our servers is automatically deleted after 30 days regardless of submission status.

Access, Correction & Complaints

If you'd like to access, correct, or request deletion of personal information we hold (this mainly applies to temporary survey data on our servers, since your job and client data lives only on your device and isn't accessible to us), email support@signlokr.com. We'll respond within a reasonable timeframe.

If you believe we've mishandled your personal information and want to make a complaint, email us first so we can address it directly. If you're not satisfied with our response, Australian residents can lodge a complaint with the Office of the Australian Information Commissioner (oaic.gov.au). Residents of other regions may have the right to lodge a complaint with their local data protection authority.

In the event of a data breach affecting your personal information, we'll notify affected users and relevant authorities in line with applicable legal obligations.

Subscription & Payments

SIGNLOKR Pro is an optional subscription processed through Apple's App Store or Google Play, managed via RevenueCat. We don't handle, see, or store payment information. All transactions are governed by Apple's or Google's own terms and privacy policies.

Limitation of Liability

SIGNLOKR is a survey and job-capture tool. It's not quoting software, production management software, or a substitute for a professional site inspection. You're responsible for the accuracy of the data you enter and for verifying details before quoting or producing work. On Lock Creative accepts no liability for financial loss, data loss, incorrect measurements, or other damages arising from app use.

Children

SIGNLOKR is a business tool intended for use by sign shop operators and is not directed at or intended for use by anyone under 18. We don't knowingly collect data from minors.

Applicable Regions & Overseas Data Storage

SIGNLOKR is distributed worldwide via the App Store and Google Play. We comply with the Australian Privacy Act 1988 (Australian Privacy Principles) as our baseline standard, and aim to meet GDPR (EU/UK users) and CCPA (California users) requirements where applicable.

Some of our third-party service providers store or process data outside Australia, primarily in the United States (Vercel, Resend, Sentry, RevenueCat, Expo). When you generate a customer survey, that temporary data may be stored on servers located overseas. We take reasonable steps to ensure these providers handle data securely, but we don't control their infrastructure location and can't guarantee a specific country of storage. Their own privacy policies (linked above) govern their handling of this data.

We don't collect sensitive categories of personal data (health, financial, race, religion).

Changes to This Policy

If this policy changes, the "Last Updated" date at the top will reflect that. Continued use of the app after an update constitutes acceptance.

Contact

Questions about privacy? Email support@signlokr.com