Teardown
  • Blog
Join the waitlist
Back

Privacy Policy

Last updated: 24/11/2025

Last updated: November 16, 2025

1. Introduction

Teardown ("we", "our", or "us") is committed to protecting the privacy and security of the information we collect. This Privacy Policy explains how we collect, use, disclose, and protect information when you use our mobile release platform services ("Services"), including our website, dashboard, SDK, API, and force update functionality.

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with this Privacy Policy, please do not use our Services.

2. Information We Collect

2.1 Information You Provide

Account Information

  • Email address, name, company name
  • Password (encrypted)
  • Role and permissions within your organization
  • Billing information (processed by our payment providers)

Application Data

  • App identifiers and bundle IDs
  • Version numbers and build metadata
  • Release notes and changelogs
  • Update configurations and rules
  • Code signing certificates and provisioning profiles

Communications

  • Support tickets and inquiries
  • Feedback and feature requests
  • Survey responses

2.2 Information Collected Automatically

SDK Analytics Data When you integrate our SDK into your applications:

  • App version distribution across users
  • Update success/failure rates
  • Device types and OS versions
  • Session duration and frequency
  • Bundle download metrics
  • Network conditions during updates

Usage Information

  • Features used within the dashboard
  • API endpoints accessed and frequency
  • Error logs and debugging information
  • Performance metrics

Device and Technical Information

  • IP addresses
  • Browser type and version
  • Operating system
  • Device identifiers
  • Cookies and similar technologies

2.3 Information from Third Parties

We may receive information from:

  • Expo Application Services (when integrated)
  • App Store Connect and Google Play Console
  • OAuth providers (GitHub, Google, etc.)
  • Analytics and monitoring services

3. Legal Basis for Processing (EEA/UK)

We process your information based on:

PurposeLegal Basis
Providing ServicesPerformance of contract
Account managementPerformance of contract
Billing and paymentsPerformance of contract
Security and fraud preventionLegitimate interests
Service improvementsLegitimate interests
Marketing (existing customers)Legitimate interests
Marketing (new contacts)Consent
Legal complianceLegal obligation

4. How We Use Your Information

4.1 Service Delivery

  • Provide force update functionality
  • Track version distribution and adoption
  • Process and deliver app updates
  • Monitor update performance and reliability

4.2 Account Management

  • Authenticate users and manage access
  • Process payments and subscriptions
  • Send service-related communications
  • Provide customer support

4.3 Service Improvement

  • Analyze usage patterns and trends
  • Identify and fix bugs
  • Develop new features
  • Optimize performance

4.4 Security

  • Detect and prevent fraud
  • Monitor for unauthorized access
  • Enforce rate limits and usage policies
  • Investigate security incidents

4.5 Legal and Compliance

  • Comply with legal obligations
  • Respond to legal requests
  • Enforce our Terms of Service
  • Protect our rights and property

5. How We Share Information

5.1 Service Providers

We share information with vendors who help us provide Services:

  • Cloud Infrastructure: Amazon Web Services (data hosting)
  • Payment Processing: Stripe (payment information)
  • Analytics: Mixpanel, Segment (usage analytics)
  • Communication: SendGrid (transactional emails)
  • Support: Intercom (customer support)
  • Monitoring: Sentry (error tracking)

5.2 Expo Integration

When you connect Expo services:

  • We share app identifiers for EAS Build integration
  • Update metadata for coordinated deployments
  • Authentication tokens for API access

5.3 Your Team Members

Information is accessible to authorized users within your organization based on roles and permissions.

5.4 Legal Requirements

We may disclose information when required by:

  • Court orders or subpoenas
  • Government requests
  • Legal proceedings
  • Protection of rights and safety

5.5 Business Transfers

In case of merger, acquisition, or sale, information may be transferred to the successor entity.

5.6 Aggregated Data

We may share aggregated, non-identifying data publicly or with partners.

We do not sell your personal information to third parties.

6. SDK Data Collection

6.1 End-User Data

Our SDK collects limited end-user data:

  • Device model and OS version
  • App version currently installed
  • Update download/install success
  • Network type (WiFi/cellular)
  • Locale and timezone

6.2 Developer Controls

You can configure SDK data collection:

  • Disable analytics collection
  • Implement custom user consent flows
  • Control update checking frequency
  • Set data retention periods

6.3 End-User Privacy

We recommend you:

  • Disclose our SDK usage in your privacy policy
  • Obtain appropriate user consent
  • Provide opt-out mechanisms where required

7. Data Security

7.1 Security Measures

  • Encryption in transit (TLS 1.2+)
  • Encryption at rest (AES-256)
  • Access controls and authentication
  • Regular security audits
  • Incident response procedures

7.2 Data Centers

Data is stored in AWS regions:

  • Primary: US-East (Virginia)
  • Backup: US-West (Oregon)
  • EU customers: EU-Central (Frankfurt) upon request

8. Data Retention

Data TypeRetention Period
Account dataDuration of account + 30 days
App analytics2 years
Update logs90 days
Support tickets3 years
Billing records7 years (legal requirement)
SDK telemetry30 days

9. Your Rights and Choices

9.1 Access and Portability

Request a copy of your information via your account settings or privacy@teardown.dev

9.2 Correction

Update your information through the dashboard or contact support

9.3 Deletion

Delete your account in settings (immediate) or request deletion at privacy@teardown.dev

9.4 Restriction

Request limited processing of your data

9.5 Object to Processing

Opt out of non-essential data processing

9.6 Withdraw Consent

Unsubscribe from marketing or withdraw other consent

9.7 Response Time

We respond to requests within 30 days

10. International Data Transfers

10.1 Transfer Mechanisms

For transfers outside your region:

  • Standard Contractual Clauses (EU/UK)
  • Appropriate safeguards per local law

10.2 Data Localization

Enterprise customers may request data residency in specific regions.

11. Cookies and Tracking

11.1 Essential Cookies

  • Session management
  • Authentication
  • Security tokens

11.2 Analytics Cookies

  • Usage patterns (can be disabled)
  • Performance monitoring
  • Feature adoption tracking

11.3 Managing Cookies

  • Browser settings to block cookies
  • Dashboard preferences for analytics
  • "Do Not Track" signals honored

12. Children's Privacy

Our Services are not intended for children under 18. We do not knowingly collect information from children. If you believe we have collected such information, please contact us immediately.

13. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know categories of data collected
  • Right to know purposes of collection
  • Right to request deletion
  • Right to non-discrimination
  • Right to opt-out (we don't sell data)

14. GDPR Compliance

14.1 Data Controller

Teardown is the data controller for account and usage data.

14.2 Data Processor

We act as data processor for app/end-user data you transmit through our Services.

14.3 Data Processing Agreement

Available upon request for qualifying customers at legal@teardown.dev

14.4 EU Representative

[To be appointed prior to EU operations]

15. Third-Party Links

Our Services may contain links to third-party services (Expo, app stores, etc.). We are not responsible for their privacy practices.

16. Updates to This Policy

We will notify you of material changes via:

  • Email to your registered address
  • Dashboard notification
  • 30 days notice for material changes

17. Data Breach Notification

In case of a data breach affecting your personal information:

  • We will notify you within 72 hours
  • Provide details of affected data
  • Describe mitigation measures
  • Offer appropriate remedies

18. Privacy Shield

While Privacy Shield is no longer valid for EU/UK transfers, we maintain equivalent protections for data previously transferred under this framework.

19. Contact Us

Data Protection Officer

privacy@teardown.dev

General Inquiries

support@teardown.dev

Postal Address

Teardown Auckland, New Zealand

For Privacy Requests

  • Use dashboard privacy settings, or
  • Email privacy@teardown.dev with proof of identity

20. Definitions

  • Force Update: Mechanism to require app users to update to a specified version
  • MAU: Monthly Active Users
  • SDK: Software Development Kit integrated into your applications
  • Services: All Teardown products, features, and functionality
  • Your Apps: Applications you develop that integrate our SDK

On this page

1. Introduction
2. Information We Collect
2.1 Information You Provide
2.2 Information Collected Automatically
2.3 Information from Third Parties
3. Legal Basis for Processing (EEA/UK)
4. How We Use Your Information
4.1 Service Delivery
4.2 Account Management
4.3 Service Improvement
4.4 Security
4.5 Legal and Compliance
5. How We Share Information
5.1 Service Providers
5.2 Expo Integration
5.3 Your Team Members
5.4 Legal Requirements
5.5 Business Transfers
5.6 Aggregated Data
6. SDK Data Collection
6.1 End-User Data
6.2 Developer Controls
6.3 End-User Privacy
7. Data Security
7.1 Security Measures
7.2 Data Centers
8. Data Retention
9. Your Rights and Choices
9.1 Access and Portability
9.2 Correction
9.3 Deletion
9.4 Restriction
9.5 Object to Processing
9.6 Withdraw Consent
9.7 Response Time
10. International Data Transfers
10.1 Transfer Mechanisms
10.2 Data Localization
11. Cookies and Tracking
11.1 Essential Cookies
11.2 Analytics Cookies
11.3 Managing Cookies
12. Children's Privacy
13. California Privacy Rights (CCPA)
14. GDPR Compliance
14.1 Data Controller
14.2 Data Processor
14.3 Data Processing Agreement
14.4 EU Representative
15. Third-Party Links
16. Updates to This Policy
17. Data Breach Notification
18. Privacy Shield
19. Contact Us
Data Protection Officer
General Inquiries
Postal Address
For Privacy Requests
20. Definitions