Privacy Policy

Last updated: May 2026

1. Data Controller

The data controller for both the MechaHandbook app and this website is:
Matteo Dallapiccola
Via Stramaiolo 2, Bedollo (TN), Italy
Email: privacy@mechahandbook.com

2. The App — MechaHandbook (iOS)

2.1 Data we collect

MechaHandbook is designed to work fully offline. The app does not require an account, does not collect personal data, and does not transmit any information to our servers.

All user preferences (favorites, recent items, language settings) are stored exclusively on your device using Apple's UserDefaults and never leave it.

2.2 Apple diagnostics and crash reports

If you have enabled "Share with App Developers" in your iOS settings (Settings - Privacy & Security - Analytics & Improvements), Apple may share aggregated, anonymized diagnostics and crash report data with us through App Store Connect. This data does not personally identify you and is used solely to improve app stability.

You can opt out at any time by disabling that setting on your device.

2.3 App Store analytics

Apple provides us with aggregated, privacy-preserving analytics through App Store Connect, such as download counts, sessions, and territory data. This data cannot be used to identify individual users.

2.4 In-app purchases

MechaHandbook may offer in-app purchases. All transactions are handled exclusively by Apple through the App Store. We do not receive or store your payment information. Apple's privacy policy applies to all purchase transactions: apple.com/legal/privacy .

2.5 Feedback

The app may include an anonymous feedback feature. No personal data is collected through this feature. For direct support, you may contact us via email (see Section 7). Emails you send us are stored only for the time necessary to respond to your request.

3. This Website

3.1 Cloudflare (hosting and CDN)

This website is hosted on Cloudflare Pages (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). As part of its normal operation, Cloudflare processes technical data including IP addresses and browser information in its network logs. This data is processed for a limited time for security and performance purposes. Cloudflare is certified under the EU-US Data Privacy Framework. For more information: cloudflare.com/privacypolicy .

3.2 Cloudflare Web Analytics

We use Cloudflare Web Analytics to collect aggregated statistics about website usage. This service is privacy-first: it does not use cookies, does not track users across sessions, and does not collect personally identifiable data. The data collected includes page views, country of origin, device type, and referrer, all in aggregated and anonymous form. Explicit consent under GDPR is not required as no tracking cookies are set. For more information: cloudflare.com/web-analytics .

3.3 Mailing list

You may subscribe to our mailing list to receive updates about new releases and features. The only data collected is your email address, provided voluntarily. You may unsubscribe at any time via the link included in every email. The legal basis for this processing is your consent (Art. 6(1)(a) GDPR).

4. Legal Basis for Processing

  • Cloudflare infrastructure: legitimate interest in providing a secure and performant website (Art. 6(1)(f) GDPR).
  • Cloudflare Web Analytics: legitimate interest in aggregated traffic analysis, without cookies and without personal identification (Art. 6(1)(f) GDPR).
  • Mailing list: your explicit consent (Art. 6(1)(a) GDPR).
  • Support emails: pre-contractual or contractual necessity, or legitimate interest (Art. 6(1)(b) and (f) GDPR).

5. Data Retention

  • Cloudflare network logs: limited period as per Cloudflare's policy.
  • Cloudflare Web Analytics: aggregated data, no personal data retained.
  • Mailing list: until you unsubscribe.
  • Support emails: until the request is resolved, unless longer retention is required.

6. Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate data
  • Request erasure of your data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with your local supervisory authority

The Italian supervisory authority is the Garante per la protezione dei dati personali .

7. Contact

For any privacy-related request, contact us at:
privacy@mechahandbook.com

8. Changes to This Policy

We may update this policy as the app and website evolve. The date at the top of this page reflects the most recent revision. Continued use of the app or website after changes constitutes acceptance of the updated policy.