Rimami

KinoLight privacy policy

Last updated: 2026-05-17

Rimami Oy (“we”, “us”) publishes KinoLight, an iOS app that synchronizes your room lighting with what is shown on your TV. This policy explains what data KinoLight handles, where it is stored, and which third parties are involved.

1. Data we handle

On your device (not transmitted anywhere)

  • Camera video. KinoLight uses your camera to detect the TV screen and the colors playing on it. Frames are processed locally in real time. KinoLight does not record video to disk, does not save camera frames to your media library, and does not upload frames to any servers.
  • App preferences and calibration data. Light configurations, layout presets, calibration values, and similar settings are stored on your device.

In your Apple iCloud Key-Value Store (visible only to you, via your Apple ID)

  • Trial and app-usage metadata. To keep trial state consistent across devices signed into the same Apple ID, and to prevent trial-period bypass, KinoLight stores a small amount of trial/app-usage metadata (cumulative trial seconds and an expiry flag) in your iCloud Key-Value Store. We do not have access to your iCloud data.

In your device’s secure Keychain (encrypted at rest, never iCloud-synced across devices)

  • Smart-light credentials. If you connect Tuya/Smart Life lights, KinoLight stores your Tuya cloud access ID and access secret in the device Keychain.
  • Per-device local keys. The 16-character LAN-protocol keys used to encrypt communication with Tuya devices on your local network are stored in the device Keychain, one per paired device.

Handled by third parties

  • Subscription and purchase records. Payment processing is handled by Apple and managed by RevenueCat. We never see your full payment information. RevenueCat assigns an anonymous app-user identifier we use to recognize a valid purchase across launches.

2. Permissions KinoLight requests

KinoLight requests only two iOS permissions:

  • Camera. Used to detect and analyze the TV screen.
  • Local Network. Used to discover and communicate with compatible lights, TVs, AirPlay devices, and Google Cast devices on your Wi-Fi network. Required for Bonjour / mDNS-based device discovery.

KinoLight does not request microphone, photo library, location, contacts, calendar, Bluetooth, or motion permissions.

3. Third-party services

Apple

Processes subscription payments through the App Store. Operates the iCloud Key-Value Store that holds your trial/subscription metadata.

RevenueCat (https://www.revenuecat.com/privacy)

Manages our subscription entitlement state. Receives an anonymous identifier, your purchase history with KinoLight, and basic device and app metadata required to attribute purchases.

Tuya Smart (only when you connect Tuya / Smart Life lights)

To control Tuya cloud-based lights, KinoLight communicates with Tuya’s regional cloud API servers (e.g. openapi.tuyaeu.com, openapi.tuyaus.com, openapi.tuyacn.com, and equivalent endpoints for other regions). Your Tuya account access credentials, device IDs, and lighting commands are sent to Tuya. Tuya’s handling of this data is governed by Tuya’s own privacy policy. If you do not connect Tuya lights, KinoLight does not contact Tuya servers.

Google Cast SDK (only when you cast to a Cast device)

When you cast calibration or sync content to a Google Cast device, the Google Cast SDK on your device communicates with the Cast device and reports standard Cast-session telemetry to Google per Google’s privacy policy.

Apple AirPlay (only when you AirPlay to an AirPlay device)

When you AirPlay calibration or sync content to an AirPlay device, your iPhone streams to it over your local network using Apple’s standard AirPlay protocols.

Hue, Nanoleaf, WLED, LIFX, Govee, WiZ (only for lights you pair)

When you pair lights from these vendors, KinoLight communicates with them over your local Wi-Fi using each vendor’s public protocols. These exchanges stay on your local network; no light-control data is sent to our servers. Vendor-specific cloud features (for example, Hue’s remote-access cloud) are not used by KinoLight; everything is LAN-only except for the Tuya cloud integration noted above.

Bunny CDN

KinoLight streams its calibration tutorial video from a content delivery network operated by Bunny. As with any web request, the CDN can observe the requesting IP address and standard request metadata. The content itself is identical for all users; no personalized data is sent.

4. Tracking

KinoLight does not use any third-party advertising SDKs and does not track your activity across other apps or websites. We do not show ads. We do not sell your personal information to anyone.

5. Data retention and your controls

  • On-device data persists until you uninstall the app or clear app data in iOS Settings.
  • iCloud Key-Value Store data persists until you remove KinoLight from your iCloud account or Apple removes it under Apple’s iCloud retention policies.
  • Keychain data is stored only on this device and is not synchronized through iCloud Keychain. You can remove Tuya credentials from within KinoLight where supported, or by erasing the device. iOS controls how long Keychain items remain after app deletion.
  • Subscription and purchase records are retained by Apple and RevenueCat under their respective data-retention policies.
  • You can revoke Camera or Local Network permission at any time in iOS Settings > KinoLight.

6. Children’s privacy

KinoLight is not directed to children under the age of 13. We do not knowingly collect personal information from children.

7. Changes to this policy

We may update this policy as the app evolves. Material changes will be reflected here with an updated “Last updated” date at the top.

8. Contact us

Rimami Oy
Email: support@rimami.com
Website: https://rimami.com/