Privacy policy HEADPHONES app
Privacy Policy — LEWITT Headphones App
Last updated: 2026-04-22. Effective date: 2026-09-08.
This policy covers the LEWITT Headphones companion apps for iOS and Android, used to control and configure LEWITT headphones. For data handling related to our website, support, marketing, and e-commerce, see our general privacy policy.
Data processed by the app
The app does not collect, transmit, or store any personal data on our servers. It has no user accounts, no cloud backend, no sign-in, and no third-party analytics, advertising, tracking, or crash-reporting SDKs.
Stored locally on your device
The app keeps the following in your phone's local application storage (iOS UserDefaults, Android DataStore). This data never leaves your device and is removed when you uninstall the app or clear its storage:
- The custom name you assign to your headphones.
- The device identifier of previously connected headphones, so the app can auto-reconnect.
- Your equaliser settings, sound profile choices, button assignments, and other app preferences.
- A rolling in-memory Bluetooth debug log (up to 500 entries) used only for troubleshooting inside the app.
Communication with the headphones
The app communicates with the headphones over Bluetooth Low Energy (BLE). This link is local, between your phone and the headphones. No audio, settings, or diagnostic data is transmitted to LEWITT or any third party through it.
Permissions the app requests
iOS
| Permission | Purpose |
|---|---|
| Bluetooth | Required to discover and connect to your headphones. |
| Location (when in use) | Declared for compatibility with older iOS BLE-scanning behaviour. Location data is not collected, stored, or transmitted. |
Background mode: bluetooth-central |
Keeps the BLE link active while the app is backgrounded, so connection state and notifications are preserved when you switch apps. |
Android
| Permission | Purpose |
|---|---|
BLUETOOTH_SCAN (Android 12+, declared with neverForLocation) |
Required to discover headphones during a scan. The neverForLocation flag declares that scan results are not used to derive physical location. |
BLUETOOTH_CONNECT (Android 12+) |
Required to connect to and exchange data with the headphones. |
ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION (Android 11 and earlier only, maxSdkVersion=30) |
Required on older Android versions because BLE scanning was historically gated behind location permission. Not used on newer Android versions. Location data is not collected, stored, or transmitted. |
Platform analytics from Apple and Google
Although the app itself does not collect data, Apple (via App Store Connect) and Google (via Google Play Console) provide developers with aggregated, anonymised statistics about their apps — typically install counts, session counts, OS and device distribution, and crash reports. This data is collected and processed by Apple and Google under their own privacy policies, and is subject to your device privacy settings:
- iOS: Settings → Privacy & Security → Analytics & Improvements → Share with App Developers (opt-in).
- Android: Settings → Google → Usage & diagnostics.
We receive only aggregated metrics and cannot identify individual users from this telemetry. We do not combine it with any other data. See the Apple Privacy Policy and the Google Privacy Policy for details.
Legal basis under the GDPR
To the extent any processing above is attributable to LEWITT as a controller, the legal basis is Art. 6(1)(f) GDPR (legitimate interests): providing a functional companion app and understanding, in aggregate, whether it works reliably across devices. No special categories of personal data (Art. 9 GDPR) are processed. The app does not transfer personal data internationally; platform telemetry handled by Apple and Google may involve transfers under those companies' own transfer mechanisms.
Your rights
Because the app does not collect personal data, there is generally no data held by LEWITT through the app. Where any such data nevertheless exists, you have the following rights under the GDPR: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), portability (Art. 20), objection (Art. 21), and the right to lodge a complaint with a supervisory authority (Art. 77) — for users in Austria, the Austrian Data Protection Authority (Datenschutzbehörde).
For platform-level telemetry, rights are exercised directly with Apple or Google via their account settings. To exercise your rights with LEWITT, contact [email protected].
Children
The app is not directed at children and does not knowingly process personal data from children under 16.
Security
The app does not expose any network services. The Bluetooth link between your phone and the headphones uses the standard Bluetooth Low Energy protocol provided by your operating system; your phone's Bluetooth privacy controls apply.
Security vulnerabilities can be reported to [email protected] with the subject “Security report — LEWITT Headphones app”. We commit to providing security updates for 5 years from the release date of each version of the app.
Changes to this policy
We may update this policy to reflect changes in the app or in applicable law. The “Last updated” date at the top will change accordingly. Material changes will be highlighted in the release notes of the corresponding app update.
Controller and contact
The data controller is LEWITT GmbH (Austria). Full contact and company registration details are on the general LEWITT privacy policy page. For general inquiries and data-subject requests: [email protected].