Jadran is a Dalmatian coast ferry guide — an iOS app and website at jadrandalmatia.com — operated by:
Tomi Blasic
Zürich, Switzerland
appsandwebsite@pm.me
Tomi Blasic is the data controller for all personal data processed in connection with this website and app. This policy explains what data is collected, why, and how you can exercise your rights under the EU General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (nDSG).
Jadran works without a user account. We collect as little personal data as possible.
| Data | Source | Legal basis |
|---|---|---|
| Purchase & entitlement data Device identifier, purchase status, subscription state |
RevenueCat (via App Store) | Contract — necessary to deliver the paid app and subscription |
| AI query text The text of questions sent to the AI assistant |
Typed by you in the app | Contract — necessary to provide the AI assistant feature |
| Query count Lifetime and daily AI query count |
Stored locally on your device only | Contract — used to enforce the free allowance and daily cap |
| Server access logs IP address, user agent, timestamp |
Netlify (website and API hosting) | Legitimate interest — security and abuse prevention |
| Map tile requests IP address (incidental, not stored by us) |
Mapbox (map rendering) | Legitimate interest — map functionality |
We do not collect your name, email address, or any financial data. Payment processing is handled entirely by Apple — we never see your card details or billing information.
We use the data described above for these purposes only:
| Verifying your purchase entitlement to unlock app features |
| Processing your AI assistant questions and returning answers |
| Enforcing the 50 lifetime free queries and 20 queries/day subscription cap |
| Operating and securing the website and API infrastructure |
| Rendering the interactive map on the website and in the app |
We do not use your data for advertising, profiling, or any purpose beyond operating the product you paid for.
We use the following third-party processors, each for a specific function:
Apple / App Store
Payment processing and app distribution. Apple handles all purchase data under their own privacy policy.
RevenueCat
Subscription and entitlement management. Receives an anonymised device identifier and purchase status — no name or email required.
Netlify
Website hosting and serverless function execution (AI proxy). May log IP addresses in standard server access logs.
Anthropic
AI query processing. Your question is transmitted via our server-side proxy to generate an answer. Anthropic's API usage policy applies.
Mapbox
Interactive map rendering. May log IP addresses when serving map tiles.
Supabase
Ferry timetable database. Stores timetable and route data only — no personal data stored here.
We do not sell data to any third party. We do not use advertising networks, social media trackers, or analytics services that build user profiles.
When you use the AI assistant, your question is sent from the app to our server-side proxy (hosted on Netlify), which forwards it to Anthropic's API to generate a response. The query text is transmitted in transit but not stored by us after the response is returned.
Anthropic may retain API request data in accordance with their own data retention policies. We recommend reviewing Anthropic's Privacy Policy if you have concerns about how query content is handled downstream.
Your query count (lifetime and daily) is stored locally on your device only, using your device's standard app storage. This data never leaves your device and is deleted when you uninstall the app.
We retain data only as long as necessary for the purpose for which it was collected:
| Data | Retention |
|---|---|
| Purchase & entitlement data (RevenueCat) | Duration of app ownership or subscription, plus RevenueCat's standard retention period |
| AI query text (in transit) | Not retained — discarded after response is returned |
| Query count (on-device) | Stored locally until app is uninstalled |
| Server access logs (Netlify) | Netlify's standard log retention (typically 30 days) |
Under GDPR and Swiss nDSG, you have the following rights regarding your personal data:
To exercise any of these rights, contact us at appsandwebsite@pm.me. We will respond within 30 days.
Some of our third-party processors (Netlify, Anthropic, RevenueCat, and Mapbox) are based in the United States. Where data is transferred outside the EU/EEA or Switzerland, we rely on the processors' compliance with Standard Contractual Clauses or equivalent safeguards recognised under GDPR and nDSG.
Jadran is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided personal data, please contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the date at the top of this page. If changes are material, we will make reasonable efforts to notify users — for example, through an in-app notice on next launch.
Continued use of Jadran after changes are posted constitutes acceptance of the updated policy.
For any questions about this Privacy Policy, to exercise your rights, or to report a data concern:
Tomi Blasic
Zürich, Switzerland
We aim to respond to all privacy-related requests within 30 days.
This Privacy Policy was drafted to reflect the actual data processing practices of Jadran as of the effective date above. It is not a substitute for legal advice. For legally binding or regulated contexts, consider review by a qualified Swiss or EU data protection lawyer.