Privacy Policy

1) What this policy covers

This policy explains what data DateNight collects, why we collect it, how we use and share it, and the choices you have. It applies to our mobile apps and related services.

2) What we collect

A. Information you provide

• Account data: name, email (depending on sign-in provider), profile photo and bio (optional).
• Support communications: the content of messages you send to us.

B. Information collected automatically

• Approximate/precise location (from device location) to discover nearby restaurants and personalize local results.
• Device & app info: app version, device model, OS, diagnostics, logs, crash data, and analytics events.
• Usage data: in-app interactions (e.g., likes/swipes), feature usage and performance.
• Local storage: settings, preferences, cached images and content stored on your device (e.g., SharedPreferences/local files).
• Notification tokens (if enabled) to deliver push notifications.

C. Data from third parties

• Authentication provider: basic profile from Google if you sign in with Google (e.g., name, email, photo URL as provided by Google).
• Places data: restaurant and places info from Google Maps/Places APIs when you search or browse nearby venues.

D. Photos & media (optional)

• Profile photo: when you choose to set or change your picture, we request access to your photo library so you can pick an image. We do not access your entire library. The selected image path may be stored locally on your device (e.g., SharedPreferences/local files). We do not upload your photo library contents.

E. Purchases & subscriptions (if offered)

• Purchase data: product IDs, price, currency, purchase token/receipt, country, and status (e.g., refunded, canceled) as provided by Google Play.
• No card details: we do not receive or store full payment card details. Payments are processed by Google Play.

3) How we use data

• Provide core features (authentication, nearby restaurant discovery, matching) and personalize your experience.
• Operate, secure, and improve the app (analytics, performance, debugging, and prevention of fraud/abuse).
• Process purchases/subscriptions, confirm eligibility/entitlement, restore purchases, and prevent fraud/abuse (if purchases are offered).
• Deliver optional push notifications if enabled (using your device’s push token).
• Improve reliability and diagnose crashes (e.g., crash reports if enabled).
• Communicate service updates and support messages.

4) Legal bases (EEA/UK)

• Contract: to provide the app/services you request.
• Legitimate interests: app security, analytics, improvement, and preventing abuse.
• Consent: optional features like precise location, notifications, and certain analytics where required. You can withdraw consent in system or in-app settings where applicable.

5) Sharing

We do not sell your personal information. We share data only as needed with:

• Service providers under contract (hosting, authentication, database, analytics, crash reporting, notifications, maps/places, billing) who process data on our behalf and per our instructions.
• Legal/Compliance when required by law or to protect rights, safety, and security.

Key processors/sub-processors and their policies include:

• Google Firebase (Authentication, Firestore, Analytics, Cloud Functions, optional Crashlytics): firebase.google.com/support/privacy
• Google Play Services / Play Integrity / reCAPTCHA Enterprise: policies.google.com/privacy
• Google Maps/Places APIs: mapsplatform.google.com/terms
• Google Play Billing (purchase processing, receipts/tokens): policies.google.com/privacy

6) Location data

• We request approximate and/or precise location to show nearby restaurants and improve local matching.
• Background location: Our current app experience does not require continuous background tracking. If a future feature needs it, we will ask you clearly in the app, explain the use, and you can decline.
• You can change location permissions any time in your device Settings; some features may not work without location.

7) Phone & third-party sign-in

• Google Sign-In: if you sign in with Google, Google may process data as described in its privacy policy.
• Phone sign-in (if enabled): we use your phone number to send a one-time verification code; Google/Firebase may process phone numbers to deliver the verification SMS and prevent abuse. Standard messaging rates may apply.

8) Analytics and tracking

We may use Firebase Analytics and related SDKs to measure usage and improve the app. You can limit ad-personalization and reset advertising identifiers in your device settings. We do not run ads in the app.

9) Data retention

• We retain personal data as long as necessary to provide the service and for legitimate business/legal purposes (e.g., security, fraud prevention, accounting).
• Account/profile data is kept until you delete your account or as required by law. Aggregated/anonymized data may be kept longer.
• Crash logs and diagnostics (if enabled) are typically retained for a limited period (e.g., up to ~90 days) to improve stability.
• Purchase/receipt records (if purchases are offered) are retained as needed for entitlement, support, and legal/accounting obligations (e.g., tax/audit), then deleted or anonymized.

10) Your rights & controls

• In-app deletion: Settings → Delete Account removes your Firebase Authentication account and your user document in Firestore. Some limited information may persist in backups/logs for a short period as required for security and integrity.
• Access/Correction/Deletion: You can request access, correction, or deletion of your data by emailing us at support@app.com.
• Consent management: Change permissions (e.g., Location, Notifications) in device Settings.
• EEA/UK: You may object to processing or request restriction/portability subject to conditions.
• California: We do not “sell” or “share” personal information as defined by CCPA/CPRA.

11) Children

DateNight is not directed to children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect data from children. If you believe a child has provided data, contact us to delete it.

12) International transfers

We may transfer and store data on servers outside your country (e.g., the United States). Where required, we use appropriate safeguards (such as standard contractual clauses) to protect your data.

13) Security

We use reasonable technical and organizational measures (including transport encryption and access controls) to protect your data. No system is 100% secure.

14) Changes to this policy

We may update this policy to reflect changes to the app, laws, or practices. We’ll update the “Last updated” date and, when appropriate, notify you in the app.

15) Contact

Email: support@app.com

Annex: Permissions & purposes (Android)

• ACCESS_FINE_LOCATION, ACCESS_COARSE_LOCATION: show nearby restaurants, personalize local content.
• INTERNET: connect to Firebase, Maps/Places, and backend APIs.
• READ_MEDIA_IMAGES (Android 13+), READ_EXTERNAL_STORAGE (older Android): allow selecting a profile photo from your library. We do not access your entire library; only the image you choose.
• Background location: not requested in current app flow. If required later, we will ask separately.
• Notifications: if enabled on your device, we process a device push token to send alerts. You can disable notifications in system settings.
• Billing: purchases (if offered) use Google Play Billing; no additional Android runtime permission is required for payments.

Note: Our Google Play “Data safety” disclosure is intended to reflect the data types and purposes described in this policy.