Privacy Policy

Last updated: April 28, 2026

GateOpener is built so that your data stays on your device. The mobile app collects no personal data. The website at gate-opener.app collects only what is needed to run the site and reply to messages you send us. This policy explains what little data is involved, who handles it, and your rights.

Who is responsible for your data

GateOpener is published by us ("we", "us") — a software publisher based in the Netherlands, identified by the KvK and BTW-id shown in the Legal Notice. For any privacy question, contact [email protected].

What this policy covers

This policy applies to (a) the GateOpener mobile application ("the App") and (b) the gate-opener.app website ("the Site"). Where requirements differ between the two, both are described below.

Stored on your device only

  • Gate device names and SIM phone numbers (local database)
  • Device passwords (encrypted in your device's secure keychain/keystore)
  • Authorized user phone numbers and names
  • A log of commands sent from the app

Accessed temporarily

Your contacts (only when you choose to add a user from your phone book — the name is cached locally, nothing is sent anywhere)

What we don't do

No analytics or telemetry
No crash reporting
No advertising identifiers
No location data
No usage tracking
No account creation
No cloud storage or sync
No data shared with third parties

SMS and phone calls

GateOpener sends SMS messages and makes phone calls to your gate opener hardware. These are standard carrier communications between your phone and the SIM card in your gate module. On Android, the app temporarily listens for incoming SMS replies from your gate module's phone number to confirm that commands were received successfully (e.g., during device setup and status checks). The app only reads SMS messages from your gate module and does not access any other messages.

Standard carrier charges may apply for SMS messages and phone calls.

Contacts access

When you tap "Choose from Contacts," the app accesses your phone book to let you select a person. Only the selected contact's name and phone number are saved locally to identify the authorized user. No contact data is transmitted to any server.

Android permissions and Google Play Data Safety

GateOpener requests the following Android permissions. Each is used only for the purpose described, and no data accessed via these permissions is uploaded, sold, or shared with third parties:

  • Send SMS (SEND_SMS) — to send SMS commands to your gate opener hardware (a connected device). The app does not send SMS to any other recipient.
  • Receive and read SMS (RECEIVE_SMS, READ_SMS) — to read replies from your gate hardware so the app can confirm a command worked. The app filters incoming messages by your gate's phone number and ignores everything else.
  • Make and manage phone calls (CALL_PHONE) — to call your gate module's SIM card, which is how some gate hardware triggers the relay. The app only places calls to numbers you have added as gate devices.
  • Read contacts (READ_CONTACTS) — used only when you tap "Choose from Contacts" while adding an authorized user. The selected name and number are stored locally on your device; nothing is uploaded.
  • Internet (INTERNET) — used only to load remote hardware images and PDFs that you have asked the app to fetch. The app does not transmit any of your gate, user, or activity data over the internet.

Google Play Data Safety summary: GateOpener does not collect, share, or sell user data. Phone numbers, contact information, SMS content, and gate activity stay on your device. SMS and Call Log access are used solely as a connected-device interface, in line with the Google Play "Connected Devices" use case for restricted permissions.

Data storage

All data is stored locally on your device using:

  • SQLite database — device info, user list, command log
  • Secure Keystore/Keychain — device passwords, encrypted by the operating system

You can delete individual gates, users, and activity logs at any time within the app. Deleting the app removes all data permanently.

Website data

The website is hosted on Cloudflare Pages. Loading any page involves the following:

  • Hosting logs at Cloudflare — IP address, user-agent, requested URL, time of request — kept for security and abuse prevention for up to 30 days.
  • Web fonts (Manrope and Inter) loaded from Google Fonts. Your browser connects directly to fonts.googleapis.com and fonts.gstatic.com; Google receives your IP for that purpose only.
  • Aggregated indexing data via Google Search Console (totals only, no individual visitor data).
  • No analytics, advertising trackers, marketing cookies, or fingerprinting.

Form submissions

If you use the "Request hardware" form, you provide an email address and information about a hardware module. That submission is:

  • Delivered through Resend (resend.com), our transactional email provider.
  • Stored in our [email protected] inbox at Zoho Mail.
  • Used only to evaluate hardware support and to reply to you.
  • Kept for up to 24 months and then deleted, unless we still need it to respond to a follow-up.

Legal basis for processing (GDPR)

Where the EU/EEA General Data Protection Regulation (GDPR) applies, we rely on the following legal bases:

  • Operating the website and answering hardware-support form submissions: legitimate interest (Art. 6(1)(f)) and, where appropriate, your consent (Art. 6(1)(a)) shown by you submitting the form.
  • Hosting logs and security measures: legitimate interest in keeping the service available and free from abuse.
  • App functionality: not based on data we receive — your data does not leave your device, so no GDPR processing by us takes place.

International transfers

Resend (form delivery) and Cloudflare (hosting) operate in the United States and globally. They process the limited data described above under the European Commission's Standard Contractual Clauses or equivalent safeguards. Google Fonts requests are handled directly between your browser and Google.

Cookies and local storage

The website does not set marketing or analytics cookies. Your browser may store small amounts of data locally (for example, your selected language) for usability. No consent banner is shown because no consent-requiring trackers are used.

Your rights

Under the GDPR and similar laws (including the UK GDPR and the California Consumer Privacy Act), you have the right to:

  • Request a copy of any personal data we hold about you (right of access).
  • Have inaccurate data corrected (right of rectification).
  • Request that we delete your data (right of erasure).
  • Restrict or object to processing.
  • Receive your data in a portable format.
  • Withdraw any consent you previously gave.

To exercise any of these rights, email [email protected]. We respond within 30 days. Because the App stores no data on our servers, exercising rights against the App means deleting it on your device; exercising rights against form data means asking us to delete the email thread.

Complaints

If you are in the EU or EEA and believe we have mishandled your data, you may complain to your national data-protection authority. In the Netherlands this is the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).

Children's privacy

GateOpener does not knowingly collect data from children. The app has no user accounts, no social features, and no data collection of any kind.

Changes to this policy

If we update this policy, the new version will be posted at this URL with a new "Last updated" date. Material changes will also be noted in the App's release notes when feasible.

Contact

Privacy questions: [email protected].