Privacy Policy

Provenance — by djEnterprises


Effective Date: July 10, 2026 · Last Updated: July 10, 2026

djEnterprises ("we," "us," or "our") makes the Provenance mobile application (the "App"). Provenance is a collectibles scanner: point your camera at a coin, a banknote, a trading card, or a comic book, and the App identifies it and estimates its value. This Privacy Policy explains, in plain language, what data Provenance handles and what it does not. The short version: you initiate every scan yourself, your scan images stay on your device by default and are never stored on our servers beyond the live scan request, we never sell your data, and there are no ads and no trackers.

1. What Provenance Does

Provenance helps you identify and value collectibles — currency (coins and paper money), trading cards (sports and TCG), and comic books. You choose an item, take or select a photo of it, and tap to scan. The App returns a likely identification and an estimated value range drawn from recent comparable sales. Every value it shows is an AI-generated estimate for informational purposes only — not a professional appraisal.

2. When You Scan — What Is Sent, and Why

When you tap to scan an item, the photo(s) you captured and any text you add (for example a note, a title, or a correction) are sent over an encrypted connection to Provenance's backend server and, from there, to our AI sub-processor Anthropic (the Claude API). This is done solely to identify the item and estimate its value, and for no other purpose.

Every scan is initiated by you. Nothing is captured, uploaded, or transmitted automatically or in the background. The App sends data only at the moment you tap to scan; if you never scan, nothing about your items ever leaves your device.

3. Anthropic — Our AI Sub-Processor

The identification and valuation features are powered by Anthropic's Claude API, reached through our own backend server. Anthropic acts solely as our data processor for the App. Under its commercial API terms, Anthropic does not train its models on data submitted through the API. Anthropic retains API content only transiently and automatically deletes API inputs and outputs within approximately 30 days, retaining content longer only where flagged for a Usage Policy violation or required by law, as described in its Privacy Policy and Commercial Terms. We have confirmed that Anthropic — and each third party with whom the App shares user data — provides the same or equal level of protection of user data as described in this policy. Our Anthropic API key lives only in secure server environment variables, never in the App. Our backend forwards your request and the reply; it does not retain the content of your scans.

4. Your Scan Images Stay on Your Device

By default, your scan images and your saved Vault items are stored locally on your device, in the App's private, sandboxed storage. We do not retain your scan images on our servers beyond the live scan request, and we do not log scan images. Deleting an item, or deleting the App, removes the local copy from your device.

5. What We Collect

  • User Content — the scan photos and any text you submit for identification. This is sent for the live scan only (see Sections 2–4) and is not retained on our servers afterward.
  • A random per-install identifier — a random value generated on your device the first time you use the App, used only for rate-limiting and abuse-prevention so the service stays available and affordable. It is not your name, your email, or your Apple ID, and it is not used to track you. Provenance has no account and no sign-in — you never give us your name or email.
  • Purchases & restores (to Apple via StoreKit) — the optional one-time Provenance Pro unlock is handled entirely by Apple. We never see your payment details.

No tracking. We do not track you across apps or websites, we do not request the IDFA, and the data described above is used only to provide the App's functionality — never for advertising, profiling, or data brokering.

6. Your Consent — and How to Withdraw It

Your scan data is sent to our backend and Anthropic only when you choose to scan, and the App discloses this before your first scan. By tapping to scan, you consent to the one-time processing described in Sections 2–4. You can withdraw consent at any time: simply stop scanning, revoke Camera or Photo Library access in iOS Settings, or delete the App. Withdrawing consent does not affect scans you have already completed.

7. Data Retention & Deletion

  • Scan images and text — used for the live scan and not retained on our servers afterward; Anthropic deletes API content within approximately 30 days as described above.
  • Your on-device data — your Vault, saved images, and notes stay on your device and are yours to control. Delete an item, or use the App's in-app account deletion (Settings → Delete Account), which erases your on-device data and ends all data sharing. Deleting the App also removes all local data.

8. What We Do Not Do

  • No advertising SDKs, no third-party analytics or trackers, no IDFA.
  • No sale or sharing of personal data with data brokers — ever.
  • No server-side profile of you and no advertising profiles.

9. Children

Provenance is a general-audience tool intended for adult collectors. It is not directed at children under 13 and does not knowingly collect personal information from children.

10. Security

All network communication uses HTTPS. Your scan images and Vault data are stored in the App's private, sandboxed storage on your device. Our Anthropic API key and backend secrets live only in secure server environment variables, never in the App.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes are posted here with an updated date, and material changes are surfaced in the App.

12. Contact Us