Privacy Policy

Last updated: 27 May 2026 · Applies to Dossier for iOS, all versions.

TL;DR

Dossier collects nothing, transmits nothing, and stores nothing off your device. There are no accounts. There are no servers. There is no analytics. The only network requests are the ones you trigger when you tap a Share button.

1. Who we are

Dossier is an iOS app published under the brand HamsterAI ("we," "us"). This policy describes how the Dossier iOS app handles information on your device. We can be reached at our support email.

2. Data we collect

None.

Specifically, Dossier does not collect:

Personal identifiers (name, email, phone, IP address, device IDs)
Usage analytics, telemetry, crash reports auto-uploaded to a server
Location data (Dossier can burn GPS coordinates onto your own recording as a watermark, but the coordinate values stay on your phone and are never transmitted anywhere by us)
Contacts, calendar, photos library (beyond what you explicitly import)
Recordings, photos, audio, transcripts, or any media you capture
Receipt PDFs, hashes, or any clip metadata
Information from third-party SDKs (there are none in Dossier)

3. Data Dossier processes on your device

Dossier processes the following on your iPhone, locally, and never transmits it:

Camera feed — analyzed in real time by Apple's Vision framework to detect faces. The detection runs on your device's neural engine; no frame leaves the device.
Microphone audio — optionally pitch-shifted on-device before being written to the recording file.
Speech — when Live Captions is enabled (a Pro feature), Apple's `SFSpeechRecognizer` runs in on-device-only mode (`requiresOnDeviceRecognition = true`). Audio is processed by the speech engine bundled with iOS and is not sent to Apple's servers.
Library metadata — clip titles, tags, durations, SHA-256 hashes, and operation logs are stored in a JSON file in Dossier's application sandbox on your device.
App settings — preferences (watermark text, frame rate, app lock toggle, etc.) are stored in your phone's local `UserDefaults` and never synced.

4. Network behavior

Dossier makes zero network requests of its own. The app does not contain a networking library, does not include any analytics SDK, and does not have any backend.

The only network activity Dossier triggers is when you, the user, tap a Share button. In that case iOS's standard share sheet hands the file to whatever destination you select (Messages, Mail, AirDrop, WeChat, the Files app, etc.). What that destination then does with the file is governed by that app's privacy policy, not ours.

5. Permissions Dossier asks for

iOS will prompt you for these the first time a feature needs them. You can deny any of them and still use parts of the app.

Camera — required to record video and capture photos.
Microphone — required to record audio with the video.
Photos (write access) — only if you choose "Auto-save to Photos" or tap Share → Save to Photos. We never read your Photos library; we only write the clips you explicitly export.
Speech recognition — only if you enable Live Captions. Forced on-device.
Location — only if you enable the optional GPS-coordinate stamp. Location is read by iOS while the camera is active and burned into your recording as a watermark. We do not transmit it.
Face ID / Touch ID / passcode — only if you enable the app lock.

6. In-app purchases

Dossier Pro is a non-consumable in-app purchase processed entirely by Apple's App Store. We do not see your credit card details, billing address, or App Store account email. Apple shares with us only an anonymous purchase record so the app can verify you're entitled to Pro features. See Apple's privacy policy for how Apple handles in-app purchases.

7. Children

Dossier is not directed at children under 13. We do not knowingly collect data from anyone — including children — because we do not collect any data at all.

8. Changes to this policy

If we change this policy, we'll update the "Last updated" date at the top and post the new version at this URL. Substantive changes will also be noted in the app's "What's New" release notes.

9. Contact

Privacy questions, takedown requests, or general feedback: tap here to email us (we obfuscate the address to deter spam bots).

10. Jurisdiction-specific notes

GDPR (European Economic Area)

Because we do not collect, process, or store any personal data, GDPR's data-subject rights (access, rectification, erasure, portability) do not apply — there is nothing to access, rectify, erase, or port. If you believe we are processing your data and we are not aware of it, please contact us.

CCPA / CPRA (California)

We do not sell or share personal information. There is nothing to opt out of.

Mainland China (PIPL)

All processing occurs on the user's local device. We do not transfer personal information across borders because we do not collect any.