Depthlock

Privacy Policy

Effective May 11, 2026

Summary. Depthlock has no servers and no accounts. Everything the app needs lives on your device. The app talks directly to Google Drive, Google Gemini, and TMDB on your behalf using credentials you supply — nothing about your activity is sent to us, because there is no us-side infrastructure to send it to.

1. Who this policy is from

This Privacy Policy describes how Depthlock (the "App"), an iOS application that lets you preview images as iOS lock-screen wallpapers with the depth effect already applied, handles information.

2. Information the App does NOT collect

Depthlock does not operate a backend server. The developer of Depthlock does not run analytics, tracking, telemetry, or a user database. Specifically:

No account is created with the developer; you never sign up for "Depthlock."
No third-party analytics, advertising, or crash-reporting SDKs are embedded.
No personal identifiers (name, email, phone number, device identifiers, location) are transmitted to the developer.
No image content, search queries, or browsing activity is transmitted to the developer.

3. Information stored locally on your device

The following items live in your device's local storage (Keychain, UserDefaults, or the App's Caches directory) and never leave the device by way of the App:

Google Drive OAuth tokens — if you choose to connect Google Drive. Stored in the iOS Keychain. Used only to authorize requests you make to Google's servers.
Google Gemini API key — if you choose to enable AI cleanup. Stored in the iOS Keychain. Used only to authorize cleanup requests you make to Google's Gemini API.
TMDB API Read Access Token — if you choose to enable the Movie Posters source. Stored in UserDefaults. Used only to authorize list requests you make to TMDB.
Folder bookmarks — for on-device folders you've picked, so the App can reopen them on relaunch. Stored locally via SwiftData.
App preferences — clock font, spatial-effect toggle, scroll position, favorites list, and similar UI settings. Stored in UserDefaults.
Image caches — thumbnails and preview-size copies of images you've viewed, plus cleaned-up images from AI Cleanup. Stored on disk under the App's Caches directory, capped in size, and clearable from Settings → Cache.

4. Third-party services you may use through the App

Depthlock makes direct, on-device network calls to the following services when you enable them. Each is operated by its respective provider under that provider's own privacy policy:

Google Drive

If you connect Google Drive (Settings → Cloud Drives → Connect Google Drive), the App requests read-only access to your Drive files through Google's OAuth flow. The App fetches the file list and image bytes for the folders you choose. Image bytes are decoded and displayed on your device; thumbnails and preview-size copies are cached locally as described above. Tokens are stored only on this device and revoked when you disconnect or delete the App. The developer never sees your Drive contents or your tokens. Google's handling of this traffic is governed by the Google Privacy Policy.

Google Gemini API

If you enable AI Cleanup (Settings → Cleanup AI) and tap the cleanup action on a preview, the App sends the source image plus your prompt to the Google Gemini 2.5 Flash Image API and receives the edited image back. The request is authorized by your Gemini API key, which is read from your device's Keychain and included as a Bearer token on the API call. Google may use, retain, and process this data per its Gemini API Additional Terms. The developer is not party to this traffic.

The Movie Database (TMDB)

If you enable Movie Posters (Settings → Movie Posters), the App fetches public movie metadata and poster image URLs from TMDB using your TMDB v4 Read Access Token. Only public, read-only data is requested. TMDB's terms and privacy are at themoviedb.org/terms-of-use and themoviedb.org/privacy-policy. Depthlock uses the TMDB API but is not endorsed or certified by TMDB.

5. iOS permissions the App may request

Photos library (read/write) — only when you choose to browse a Photos album as a source or save an image to your Photos library. Required permissions are described in the iOS system prompt at the time of request.
Network access — for the optional third-party services listed above. The App makes no network calls when no such source is configured.
Motion data (CoreMotion) — used to drive the on-device spatial-tilt preview. Motion data never leaves the device.

No microphone, camera, location, contacts, or health data is requested or used.

6. Children's privacy

Depthlock is not directed to children under 13. The App does not knowingly collect any personal information from anyone (including children) because, as described above, the App's developer does not operate a server that collects any information at all.

7. Your choices and controls

You can disconnect any third-party service from Settings at any time; the corresponding credentials are deleted from your device.
You can clear cached images and the AI cleanup history from Settings → Cache.
You can revoke Google Drive access entirely from your Google Account permissions page.
Deleting the App from your device removes all locally stored credentials, bookmarks, preferences, and caches.

8. Changes to this policy

If this policy changes materially, the effective date at the top of this page will be updated and a description of the change will be noted here.

9. Contact

For questions about this policy, please reach out via the App's GitHub repository or the contact information on the homepage.