Privacy Policy
Effective Date: July 9, 2026
1. Zero-Storage Commitment
NexGenSpec ("we," "us," or "our") does not store, host, or have access to your inspection data, client information, photos, or reports. There is no NexGenSpec server that holds your inspection content. Your data lives on your device and — when iCloud Sync is on (the default) — in your own private iCloud account, where it syncs across your Apple devices (see Section 5). Data you export goes only to the third-party storage providers you choose (e.g., iCloud Drive, email).
2. Information We Receive (Limited)
Because we do not store your data on our servers, we only interact with the following:
- Account login: Your email and an encrypted password — or, if you use Sign in with Apple, an Apple-issued user identifier and the email Apple chooses to share with us (which may be a private relay address). Stored in Firebase Authentication. Used solely to authenticate you.
- Optional fallback contact email: If you provide one at signup, it is stored alongside your authentication record and used only if your primary email becomes unreachable (e.g. an Apple private relay is disabled) and we need to deliver a critical service notice or account-deletion receipt.
- Anonymized crash reports: If the app crashes, anonymous technical logs are sent to Firebase Crashlytics so we can fix bugs. These logs do not contain your inspection content, client information, photos, or signatures.
- Free-tier usage check (Apple DeviceCheck): To enforce the free tier's 3-inspection limit fairly across reinstalls, the app uses Apple's DeviceCheck service, which stores two anonymous per-device bits with Apple. This contains no personal information and cannot be used to identify you or your clients.
That is the complete list of data NexGenSpec holds on its own systems. We do not collect analytics, advertising identifiers, contact lists, or any inspection content. The app does use your device location for two optional features — address auto-fill and inspection-day weather — described in Section 3 and Section 6. Your location is never stored on NexGenSpec servers and is never used for tracking or advertising.
3. Device Permissions (How & Why)
NexGenSpec requests the following iOS permissions only to enable specific app functionality:
- Camera: So you can capture inspection photos and video directly inside NexGenSpec. Photos and video taken with the in-app camera are saved only to NexGenSpec's secure storage on your device — they are never written to your iPhone/iPad Photos app.
- Location (optional): When you grant location access, NexGenSpec uses it for two things: (1) to auto-fill the property address when you start a new inspection, and (2) to record inspection-day weather conditions on the report. For weather, your approximate location is sent to Open-Meteo — a third-party weather API — which returns the conditions stamped onto your report. Your location is used only at the moment you take these actions, is never stored on NexGenSpec servers, and is never used for tracking or advertising. You can decline or revoke location access at any time; the rest of the app works without it.
- Photo Library (read-only): So you can import existing photos and video into a specific inspection — for example, drone or thermal imagery you AirDropped to your iPad. NexGenSpec uses this access only when you actively pick from the library. NexGenSpec never writes anything back to your Photo Library, never scans or analyzes your library in the background, and never accesses photos outside of explicit picker actions you initiate. Imported photos are copied into NexGenSpec's secure storage and stay there.
- Calendar (optional): If you grant Calendar access, NexGenSpec adds scheduled inspection appointments to a calendar you choose, and reads your other events to flag scheduling conflicts. Calendar data stays on your device — NexGenSpec never sends it to our servers.
- Microphone: Recorded only when you explicitly capture video with audio inside the app. Recordings are saved only to NexGenSpec's secure storage on your device.
- Notifications (optional): Used for inspection reminders and service notices you have enabled.
You can revoke any permission at any time in iOS Settings → NexGenSpec.
4. Data Ownership and Control
You are the sole owner and controller of all inspection content you create with NexGenSpec. You are responsible for:
- Backing up your inspection records and generated reports (see Terms of Service Section 8 for our recommended backup approach).
- Managing the security of your device (passcode, Face ID / Touch ID, iOS encryption).
- Ensuring the privacy of your clients and stakeholders in accordance with the laws that apply to you and to them.
You, not NexGenSpec, are the data controller for any personal information about your clients, agents, or other parties that you choose to enter into the app.
5. Cross-Device Sync (Your iCloud)
When iCloud Sync is on (the default), your inspections — the inspection record, report PDFs, thumbnails, and LiDAR floor plans — sync across the Apple devices signed in to your iCloud account, through Apple's iCloud (CloudKit) in your private database. This data goes only to your iCloud account. NexGenSpec never receives, stores, or has access to it, and there is no NexGenSpec server in the path. Apple encrypts this data in transit and at rest.
Full-resolution photos, videos, and 3D room-scan files stay on the device where they were captured and do not sync; archive and invoice status are stored per-device. Use the Files-app export feature in the app to move a complete inspection package between your devices intentionally.
Because inspection records can contain your client's personal information and e-signatures, that information is replicated into your iCloud; you are responsible for it as the inspector. To keep inspections on a single device instead, turn on Local-Only mode in Settings. Sync is not a backup: deletions propagate across your devices, so keep your own backups.
6. Third-Party Services
When you export a report via email or save it to a cloud provider (like iCloud Drive, Google Drive, Dropbox, or your own NAS), the data is subject to the privacy and retention policies of that specific provider. NexGenSpec does not control or see this data during the transfer or after delivery.
Email retention. Once a PDF report is emailed to a client, it is in transit on your email provider's servers and, upon delivery, on the recipient's email provider's servers. Retention of those copies is governed by those email providers, not by NexGenSpec.
Weather data (Open-Meteo). If you use weather logging, NexGenSpec sends your approximate location to Open-Meteo to retrieve inspection-day weather conditions for your report. Open-Meteo's handling of that request is governed by its own privacy terms. NexGenSpec does not receive or store your location or the returned weather data on its servers.
7. Security
On your device, your data is protected by your device's security (passcode, Face ID / Touch ID, and iOS file-level encryption). When iCloud Sync is on, the synced copy in your private iCloud is encrypted by Apple in transit and at rest. We strongly recommend you keep iOS updated, use a strong device passcode, and enable iCloud Backup so your inspections survive device loss or replacement.
8. Privacy Rights (GDPR / CCPA / Other)
NexGenSpec holds only your account login and (if you provided one) your optional fallback contact email. We do not have your inspection content, your clients' personal information, photos, signatures, or reports.
Accordingly:
- Right to access: The data we hold on you is your account email and (optional) fallback email. Email contact@nexgenspec.com and we will confirm what we have.
- Right to deletion: Use the in-app "Delete Account" button (Settings → Delete Account) to permanently remove your authentication record and erase all locally stored inspections. Or email us — we will process the request manually.
- Right to portability: Use the in-app per-inspection export feature to obtain your inspection data as a Files-app archive (.zip) at any time.
- Requests from your clients: If a homeowner, buyer, agent, or other person whose information appears in your inspections asks NexGenSpec for their data, our answer is that we do not hold it. You, the inspector, are the data controller for that information and must respond directly. We will refer such requests to you.
For California (CCPA / CPRA): we do not sell or share personal information for cross-context behavioral advertising. We have not done so in the preceding 12 months.
For European Economic Area / United Kingdom (GDPR / UK GDPR): the legal basis for processing your authentication credentials is performance of the Terms of Service (Article 6(1)(b) GDPR). Processing of crash diagnostics is based on our legitimate interest in maintaining a functional product (Article 6(1)(f) GDPR).
9. Children
NexGenSpec is intended for adult professional inspectors. The app is not directed to children under 13 (or under 16 in jurisdictions that apply that threshold), and we do not knowingly collect personal information from children.
10. Contact
For privacy inquiries, please contact:
Email: contact@nexgenspec.com