Privacy Policy

Last updated: May 21, 2026 · App: Fridgy (com.kitchentech.notti)

This Privacy Policy describes how Fridgy ("we", "our", "the app") collects, uses, and protects information when you use the mobile application. By using Fridgy you agree to the practices described below.

1. Information We Collect

• Account identifiers. When you sign in with Google, we receive your email address, display name, and profile photo URL provided by Google. Guest users have a randomly generated internal identifier only and no personal data attached.
• Family and note content. The notes you create (text, color, optional due date, optional assignee), your family's name, invite code, and the list of family members are stored in our database so they can sync between your devices and other members of your family.
• Membership records. For each family you belong to, we store your user identifier, role (owner / member / child), and join timestamp.
• Push notification token (optional). If you grant notification permission, we may store a Firebase Cloud Messaging token to deliver alerts about new or assigned notes. This token is associated with your account and device.
• App metadata. Platform (iOS / Android), app version, and basic crash diagnostics provided by the OS / Firebase.

We do not collect precise location, contacts, calendar, browsing history, microphone audio, advertising identifiers, or biometric data.

2. How We Use Your Information

• To sync notes between members of your family in real time.
• To authenticate you across devices and protect your account.
• To deliver push notifications about activity in your family (if you have enabled them).
• To investigate crashes and stability problems.

We do not use your data to train machine-learning models. We do not show advertising and do not embed third-party advertising SDKs.

3. Where Your Data Lives

Fridgy is built on Google Firebase. Your data is stored in:

• Firebase Authentication — account identifiers and tokens.
• Cloud Firestore — notes, family records, member records. Located in the europe-west (eur3) multi-region.
• Firebase Cloud Messaging — push notification tokens.

Firebase services are operated by Google LLC and subject to Firebase's own privacy practices.

4. Third-Party Services

• Google Identity — sign-in and ID-token verification (for accounts created via Google Sign-In).
• Apple Sign In — sign-in and ID-token verification (planned for a future release).

We do not sell personal data to third parties and do not share it for advertising or analytics outside of Firebase.

5. Data Retention

• Your notes and family data are retained as long as your account is active.
• When you delete your account, your personal record is removed immediately. If you are the owner of a family, the entire family and all of its notes are also removed for every member at the same time.
• If you are a non-owner member, your membership record is removed; the family and its notes remain intact for the remaining members.
• Anonymous (guest) sessions are stateless on the auth side; the user record is created when you first interact and removed when you delete it.

6. Your Rights and Controls

• Delete your account. Inside the app: Family screen → Danger Zone → "Delete account". This permanently removes your account and the data described above. See the dedicated Account Deletion page for a step-by-step guide and an email-based fallback.
• Sign out. Family screen → "Sign out". Terminates the current session on this device without removing data.
• Leave a family. If you are a non-owner, deleting your account removes only your membership. If you are the owner, see "Account Deletion" — owners delete the family for everyone.
• Access / correction. Email us at sergmochalin@gmail.com to request a copy of your data or corrections.
• Notification permission. You can disable push notifications any time in your system settings; the app continues to work normally.

7. Children's Privacy

Fridgy is not directed at children under 13, and we do not knowingly collect personal data from children under 13. Parents may add children to a family as members (with a "child" role) and remain responsible for the content shared there. If you believe a child has provided us with information, contact us and we will delete it.

8. Security

Data in transit is encrypted via TLS. Authentication tokens are stored by the platform in iOS Keychain / Android EncryptedSharedPreferences (managed by the Firebase SDK). Access to notes is enforced server-side by Firestore security rules — only members of your family can read or write your family's notes. We cannot, however, guarantee absolute security of any electronic transmission.

9. Changes to This Policy

We may update this policy as the app evolves. The "Last updated" date at the top reflects the latest revision. Material changes will be announced in-app.

10. Contact

Questions, data requests, or complaints: sergmochalin@gmail.com