myFaxxer Privacy Policy
Last updated: 2026-04-26
This policy explains what myFaxxer collects, why, and how long it is kept. Written in plain English because policy-ese exists to obscure, not clarify. If something here is unclear, write to [email protected].
Summary
- The content of your faxes is stored briefly to transmit, then deleted.
- Metadata (recipient number, page count, cost, status) is kept so you can see your send history and so the operator can respond to support requests.
- No analytics SDKs, no advertising networks, no tracking across apps or websites.
- Purchases are handled by Apple. Apple receipts stay in Apple's systems; the app receives only a transaction identifier.
- myFaxxer is not suitable for HIPAA, PHIPA, or GDPR‑regulated data — and this applies to faxes you receive too. Medical offices commonly fax lab results, referrals, and other protected health information; myFaxxer carries no compliance controls for it, so do not use it where such content is regulated.
Data the app collects
| Category | What | Why | Retention |
|---|---|---|---|
| Fax content | The PDF you upload | To transmit it to the recipient through the telecom provider | Deleted from our backend within 24 hours of a terminal status (delivered, failed, or canceled). The telecom provider (SignalWire) retains its own copy per their policy. |
| Job metadata | Recipient number, submission time, page count, duration, cost, status transitions, opaque provider job ID, SHA‑256 hash of the submitted PDF | History view, billing reconciliation, abuse investigation, support | Up to 90 days, then aggregated or deleted |
| Apple transaction ID | A unique purchase identifier Apple provides | Idempotent crediting — prevents double‑counting a single purchase | For the lifetime of your installation |
| iCloud credit balance | Your page credit count and an anonymous purchase identifier (UUID) | Sync your balance across devices signed into the same Apple ID | Stored in your private iCloud database until you delete the app or revoke iCloud access. The developer cannot read this data — it is accessible only to your Apple ID. |
| Received fax content | PDFs of faxes sent to your number | Deliver them to the app and, if you enable it, to your email | Up to 90 days on our backend, then deleted |
| Your fax number (DID) | The dedicated number provisioned to your subscription | So you can receive faxes | Held while your subscription is active plus a 30‑day grace period, then released and may be reassigned |
| Forward‑to‑email address | An email address you optionally provide | Email you a copy of faxes you receive | Until you change or clear it |
| Push notification token | An Apple Push Notification (APNs) device token | Notify you the moment a fax arrives | Until it becomes invalid or you delete the app |
| Subscription data | Apple's original transaction identifier, your plan tier, and renewal date | Validate your subscription and provision your number | For the lifetime of the subscription |
| Number nicknames | Friendly names you choose to assign to fax numbers | Show a recognizable label instead of a raw number in your history and recents | Stored on your device and synced through your private iCloud (the developer cannot read it); kept until you change them or delete the app |
| Crash diagnostics | Only if you opt in via iOS Settings → Privacy → Analytics | Bug fixing | Per Apple's retention policy |
What the app does NOT collect
- Your name, email, phone number (the app has no sign‑up).
- Your Apple ID or iCloud account identity — the app uses iCloud only to sync your credit balance privately across your own devices (see iCloud section below).
- Device identifiers (IDFA/IDFV) for advertising.
- Location.
- Contacts, photos, or other Files content — you pick a specific PDF via the iOS document picker, and only that file is read.
- Your address book. The recipient picker surfaces only the single number you tap, and Save to Contacts is a one‑way write you trigger — myFaxxer never reads or uploads your contacts.
iCloud sync
myFaxxer uses Apple's CloudKit to sync your page credit balance across devices signed into the same Apple ID. The following is stored in your private iCloud database:
- Your current page credit count.
- An anonymous purchase identifier (a random UUID generated on first launch) that links your Apple purchases to our backend credit ledger. This identifier is not linked to your name, email, or Apple ID.
- Any friendly names ("nicknames") you assign to fax numbers, so the same labels appear on your other devices.
This data is end‑to‑end private to your Apple ID. The developer has no access to it. It is governed by Apple's iCloud privacy policy. You can remove it at any time by deleting the app or signing out of iCloud.
Third parties
- Apple — handles all purchases via In‑App Purchase. See Apple's privacy policy.
- SignalWire — the telecom provider that places outbound fax calls, provisions the dedicated number for subscribers, and receives inbound faxes on it. PDFs we submit (and inbound PDFs they assemble) are stored on their side for the duration of their standard retention window. See SignalWire's privacy policy.
- Apple Push Notification service (APNs) — used to notify you when a fax arrives. We send Apple a notification keyed to your device token; Apple delivers it to your device.
- Resend — if you enable email forwarding, received faxes are emailed via Resend (an email delivery provider).
- Cloudflare — fronts the backend HTTPS endpoint. Receives standard request metadata (IP, URL, user agent). See Cloudflare's privacy policy.
Data location
The app's backend runs on personal infrastructure in Canada. SignalWire's fax processing occurs in the United States. Cloudflare's edge is globally distributed. By using the app you understand your fax payload transits between these providers.
Your rights
You can:
- Request deletion of retained metadata associated with your device (email below).
- Delete the app — all local data (fax history, credit balance) is removed with it.
- Request an export of your metadata.
Because the app has no sign‑up and uses Apple's anonymized purchase tokens, identity‑linking any one request to a specific device requires us to correlate your Apple transaction ID or recent fax metadata. Include at least one of those when making a request.
Security
All traffic between the app and the backend is TLS‑encrypted. The backend verifies inbound webhooks from SignalWire using HMAC‑SHA1 signatures. PDFs on our side are stored on an encrypted volume with access restricted to the operator account. None of this is a substitute for the compliance posture a regulated industry requires — again, do not use this app for regulated data.
Children
myFaxxer is not directed at children under 13. We do not knowingly collect data from children.
Changes
If this policy changes materially, the app will show a one‑time notice on next launch and this page will be updated with the new date.
Contact
Privacy questions, deletion requests, or anything else: [email protected].