Privacy Policy

Who we are

Midpoint - Card Centering Tool ("we", "us", or "our") is operated by I Lov Guitars Inc.. This policy applies to the Midpoint - Card Centering Tool mobile app for iOS and Android (the "App") and our website at https://www.cardcenteringtool.com (the "Site"), together the "Service". By using the Service you consent to the practices described here.

Midpoint - Card Centering Tool is a measurement tool for trading-card collectors. It is NOT a grading service, NOT affiliated with PSA, BGS, CGC, TAG, Nintendo, or The Pokémon Company, and its grade estimates are informational only — they are not predictions of what any grading company will award.

Information you give us

• Email and OAuth profile. When you sign in with Google or Apple, your provider gives us your email address, a unique user ID, and (optionally) your display name. We store this so we can authenticate you and send transactional messages. If you use Apple's Hide-My-Email relay, we only receive the relay address.
• Card photos. Photos you capture with your camera or pick from your photo library are processed to detect the card edge and inner print frame. See "Card photos, camera & photo library" below for how they are stored and deleted.
• Card metadata. When you save a card we store the measured bounding boxes, any name or notes you typed, and the AI surface scan (if AI mode was used).
• Support messages. If you contact support from the App or by email, we receive the message and the reply-to email you provide so we can respond.
• Billing email. If your sign-in email is a private relay alias, we may ask for a reachable email during a website checkout so the payment processor can deliver a receipt.

Card photos, camera & photo library

The App asks for camera and photo-library access for a single purpose: to let you capture or select photos of trading cards to measure. We do not access your camera or library for any other reason, and we do not scan, index, or upload other photos on your device.

• What we collect. Only the card photos you choose to capture or select, plus the measurement data derived from them.
• How they are used. Photos are analyzed to find the card and print-frame edges and compute a centering measurement. In AI mode, the cropped card image is sent to our AI providers for background removal, straightening, and surface analysis (see "Third parties").
• Where they are stored. Uploaded images and saved cards are stored in Supabase's secure managed cloud storage.
• Retention. A photo is kept only when you save the card; otherwise the upload is discarded after analysis. Bulk-upload raw files are removed once each card is processed (or the batch is cancelled). See "Data retention" below.
• Sharing. Your card photos are never sold and are not shared with anyone except the AI providers used to process them in AI mode. We do not use your photos to train AI models.
• Your control. You can delete any saved card or photo at any time in the App, and "Delete my account" removes all of them at once. Once deleted, the data cannot be recovered.

Information collected automatically

• Usage analytics. We use PostHog (App and Site) and Plausible (Site) to count screen/page views, see which features are used, and diagnose errors. PostHog may also record anonymized session replays with form inputs masked.
• Device & app data (mobile). Device model, operating-system version, app version, language, and unique device identifiers, plus in-app events (screens viewed, actions taken) used to operate and improve the App.
• Crash & diagnostics. We use Firebase Crashlytics to collect crash logs and error reports so we can fix problems.
• Attribution & advertising identifiers (mobile). With your permission (via Apple's App Tracking Transparency prompt on iOS), we use AppsFlyer and the Meta SDK and may access your device's advertising identifier (IDFA on iOS, Advertising ID on Android) to measure which campaigns lead to installs and purchases. You can decline or revoke this at any time (see "Advertising & analytics").
• Device fingerprint (website). On website signup we compute a browser-fingerprint hash via the open-source FingerprintJS library, used only to stop the same device from re-claiming free trial credits with multiple emails. We do not sell or share it.
• Server logs. Standard request logs (IP address, user agent, path, status, timestamp) are retained for ~30 days for debugging and abuse prevention.

How we use your information

• To authenticate you and keep your saved cards available.
• To run the centering analysis and (in AI mode) the surface inspection. AI-mode requests send your card image to our model providers — see "Third parties" below.
• To process credit purchases — through the Apple App Store or Google Play in the App, or Stripe on the website.
• To send transactional messages (receipts, security alerts) and to respond to support requests.
• To measure marketing performance and improve the product based on aggregated usage signals.

We do not use your card images to train AI models and we do not sell your personal information.

Advertising & analytics

On iOS, the first time you open the App we show Apple's App Tracking Transparency prompt; tracking and use of your advertising identifier only happen if you allow it. You can change this any time in iOS Settings → Privacy & Security → Tracking. On Android you can reset your Advertising ID or opt out of personalized ads in your device settings. We may share limited, campaign-measurement data (device identifier, app events such as purchases, and revenue) with attribution and advertising partners solely to measure and optimize advertising; we do not sell your personal information.

Third parties we use

• Supabase — authentication, database, and image storage, in their managed cloud.
• Google Gemini & OpenAI — AI mode sends the cropped card photo to these models for background removal, straightening, and surface analysis. Per their public terms, they do not train on data submitted through their paid APIs.
• RevenueCat with the Apple App Store and Google Play — in-app credit purchases on mobile. Apple and Google process the payment; we never see your card number. Stripe processes payments for website purchases only.
• Firebase Crashlytics — crash and error reporting.
• AppsFlyer and the Meta SDK — mobile attribution and marketing measurement.
• PostHog and Plausible — product analytics (see above).
• Coolify — website/application hosting.

Each provider has its own privacy policy; we recommend reviewing them.

Data retention

• Saved cards and uploaded images are kept until you delete them in the App or website, or until you delete your account.
• Unsaved uploads are discarded immediately after analysis completes. Bulk-upload raw files are removed once each card is processed (or when the batch is cancelled).
• Account data is removed within 7 days of you requesting account deletion from Settings.
• Billing records are retained by Apple, Google, or Stripe per their legal-retention obligations; we keep purchase audit rows for tax / accounting.

Your rights

You can request access to, correction of, or deletion of your personal information at any time. The fastest way to delete everything is the "Delete my account" control in Settings — it removes your profile, saved cards, uploaded images, and credit history in one shot. You can also delete individual cards and photos at any time. For anything else, email support@cardcenteringtool.com.

If you live in the EU/UK, you also have rights under GDPR. If you live in California, you have rights under CCPA. We honor those rights for all users regardless of jurisdiction.

Children

Midpoint - Card Centering Tool is not directed at children under 13 and we do not knowingly collect data from them. If you believe a child has signed up, email us and we will delete the account.

Changes to this policy

We will post any material changes to this page and update the "Last updated" date, and may also notify you in the App. Continued use after a change constitutes acceptance.

Contact

Questions, requests, or complaints — support@cardcenteringtool.com.

I Lov Guitars Inc.
1102-2250 Kennedy Road
Scarborough, Ontario, M1T 3G7, Canada