Mobile App Privacy Policy - Ludo Resonance

Introduction

Ludo Resonance ("we," "our," or "us") is committed to protecting your privacy. This Mobile App Privacy Policy applies to our mobile applications, including but not limited to:

Doughly - Sourdough starter tracking and gamification app
Other Ludo Resonance mobile applications

This policy explains how we collect, use, disclose, and safeguard your information when you use our mobile applications available through the Apple App Store and Google Play Store.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not download, install, or use our applications.

Information We Collect

We collect information in the following categories to provide and improve our services:

1. Information You Provide Directly

Account Information (Optional - Premium Features Only):

Email address (for authentication via Firebase Auth)
Display name (optional)
Profile photo (optional)

Sourdough Starter Data:

Starter names and feeding schedules
Health metrics, notes, and timestamps
Experience points (XP), levels, and progression data
Streaks and achievement data
Recipe information and baking schedules

Photos (Optional):

Starter photos (if you choose to take/upload them)
Custom sprite images (generated from your photos via on-device TensorFlow.js processing)

In-App Purchase Information:

Purchase receipts (processed by Apple/Google, not stored by us)
Premium subscription status

2. Information Collected Automatically

Device Information:

Device type, model, and operating system version
Unique device identifiers (for Firebase services only)
App version and build number
Language and timezone settings

Usage Data (Local Only):

App feature usage and interaction patterns (stored locally, not transmitted)
Error logs and crash reports (stored locally unless you opt in to sharing)
Performance metrics (local only)

Push Notification Tokens:

Device notification tokens (to send feeding reminders, if enabled)

3. Permissions We Request

Camera Access (Optional):

Purpose: To take photos of your sourdough starter
Processing: Photos are processed on-device using TensorFlow.js for sprite generation
Storage: Photos are stored locally on your device and optionally synced to your Firebase account (premium only)
You can deny this permission and still use the app

Photo Library Access (Optional):

Purpose: To select existing photos for your starter or custom sprites
Processing: Same as camera access (on-device TensorFlow.js)
You can deny this permission and still use the app

Notifications (Optional):

Purpose: To remind you when to feed your starter
You can disable notifications at any time in device settings

Storage Access:

Purpose: To save your starter data, photos, and app preferences locally
This permission is required for the app to function

4. Information We Do NOT Collect

We explicitly do not collect:

Location data (GPS, precise location, or approximate location)
Contacts or address book information
Microphone/audio recordings
Health data or biometric information
Browsing history or search history
Advertising IDs or tracking identifiers (we do not use ads or tracking)
Social media information (unless you explicitly connect an account)

How We Use Your Information

We use the information we collect for the following purposes:

Core App Functionality

Track your sourdough starters, feeding schedules, and health metrics
Calculate XP, levels, and progression based on feeding consistency
Send push notifications for feeding reminders (if enabled)
Provide baking calculators and recipe management
Generate custom sprites from photos (processed on-device)

Premium Features (Optional)

Sync your data across multiple devices via Firebase Cloud Firestore
Authenticate your account via Firebase Auth
Process in-app purchases through Apple/Google payment systems
Provide cloud backup of your starter data

Service Improvement

Debug crashes and errors (locally stored unless you opt in to sharing)
Improve app performance and user experience
Develop new features based on usage patterns (anonymized, local analysis only)

Legal and Safety

Comply with legal obligations
Protect our rights and prevent fraud
Enforce our terms of service

How We Process and Store Your Information

Local Processing (On-Device)

Most of your data is processed and stored locally on your device. This includes:

AsyncStorage: All starter data, preferences, and app state are stored locally using AsyncStorage
Photo Processing: TensorFlow.js runs entirely on your device to generate custom sprites from photos
Calculations: XP, levels, baking schedules, and baker's percentages are calculated locally
Error Logs: Crash logs and debugging information are stored locally by default

Local data is not transmitted to our servers unless you explicitly enable cloud sync (premium feature).

Cloud Processing (Premium Features Only)

If you subscribe to premium features and enable cloud sync, the following data is transmitted to and stored in Firebase (Google Cloud Platform):

Firebase Cloud Firestore: Starter data, feeding history, XP/levels, streaks, recipes
Firebase Auth: Email address, display name, authentication tokens
Firebase Storage: Starter photos and custom sprites (optional)
Firebase Cloud Messaging: Push notification tokens (for feeding reminders)

Data Location: Firebase data is stored on Google Cloud Platform servers in the United States. Google's security and privacy practices apply. See Firebase Privacy Policy for details.

Data Encryption

In Transit: All data transmitted to Firebase is encrypted using HTTPS/TLS
At Rest: Firebase Cloud Firestore and Storage encrypt data at rest
Local Storage: AsyncStorage data is protected by iOS/Android device encryption (if enabled on your device)

Data Sharing and Third Parties

We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

Third-Party Services We Use

We share limited data with the following third-party services to provide app functionality:

1. Firebase (Google)

Services: Authentication, Cloud Firestore (database), Cloud Storage, Cloud Messaging
Data Shared: Email, starter data, photos (premium only)
Purpose: Multi-device sync, authentication, push notifications
Privacy Policy: Firebase Privacy

2. Apple App Store / Google Play Store

Services: In-app purchases, subscription management
Data Shared: Purchase receipts, subscription status (processed by Apple/Google, not stored by us)
Purpose: Process payments for premium features
Privacy Policies: Apple Privacy | Google Privacy

3. Expo (React Native Framework)

Services: App updates, push notification delivery
Data Shared: Device tokens, app version, minimal telemetry
Purpose: Over-the-air updates, notification infrastructure
Privacy Policy: Expo Privacy

We Do NOT Use

Advertising networks or ad trackers
Analytics services that track individual users (no Google Analytics, Facebook Pixel, etc.)
Social media SDKs (unless you explicitly connect an account)
Data brokers or marketing platforms

Legal Disclosures

We may disclose your information if required by law, such as:

To comply with a subpoena, court order, or legal process
To protect our rights, property, or safety
To prevent fraud or security threats
In connection with a merger, acquisition, or sale of assets

Data Retention and Deletion

Local Data

Data stored locally on your device (via AsyncStorage) is retained indefinitely until you:

Delete the app
Clear app data through device settings
Use the in-app "Delete All Data" option

Cloud Data (Premium Only)

Data synced to Firebase is retained as follows:

Active Accounts: Data is retained as long as your account is active
Inactive Accounts: Accounts inactive for 2 years may be deleted
Canceled Subscriptions: Cloud data is retained for 90 days after cancellation, then deleted

How to Delete Your Data

Option 1: In-App Deletion

Go to Settings → Account → Delete Account
This will permanently delete all cloud data and cancel your subscription
You will receive a confirmation email

Option 2: Email Request

Email us at privacy@ludoresonance.com
Include your account email address
We will delete your data within 30 days and send confirmation

Option 3: Uninstall App

Uninstalling the app deletes all local data immediately
Cloud data (if any) remains until you request deletion via Options 1 or 2

Backup and Export

Before deleting your account, you can export your data:

Go to Settings → Export Data
Download a JSON file containing all your starter data, feeding history, and recipes
Photos can be saved individually from within the app

Your Privacy Rights and Choices

Opt-Out and Control

You have the following choices regarding your data:

Cloud Sync (Premium):

Settings → Cloud Sync → Toggle Off (app will work locally only)

Push Notifications:

iOS: Settings → Notifications → Doughly → Disable
Android: Settings → Apps → Doughly → Notifications → Disable

Camera/Photo Access:

iOS: Settings → Privacy → Camera/Photos → Doughly → Disable
Android: Settings → Apps → Doughly → Permissions → Camera/Storage → Deny

Rights Under GDPR (EU Users)

If you are in the European Union, you have the following rights:

Right to Access: Request a copy of your personal data
Right to Rectification: Correct inaccurate data
Right to Erasure: Request deletion of your data ("right to be forgotten")
Right to Portability: Export your data in a machine-readable format
Right to Object: Object to processing of your data
Right to Withdraw Consent: Withdraw consent at any time (e.g., disable cloud sync)

To exercise these rights, contact us at privacy@ludoresonance.com.

Rights Under CCPA (California Users)

If you are a California resident, you have the following rights:

Right to Know: Request disclosure of data collected, sources, and purposes
Right to Delete: Request deletion of your personal data
Right to Opt-Out: We do not sell personal data, so no opt-out is needed
Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact us at privacy@ludoresonance.com.

Children's Privacy

Our app is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@ludoresonance.com, and we will delete the information immediately.

Age Verification: We do not require users to verify their age, but by using the app, you represent that you are at least 13 years old (or the minimum age in your jurisdiction).

Data Security

We take reasonable measures to protect your information from unauthorized access, disclosure, alteration, or destruction. Our security practices include:

Encryption: HTTPS/TLS for data in transit, Firebase encryption for data at rest
Firebase Security Rules: Firestore rules restrict data access to authenticated users only
Authentication: Firebase Auth with secure token-based authentication
Device Security: Local data protected by iOS/Android device encryption (if enabled)
Code Reviews: Regular security audits of our codebase

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

Your Responsibility: Use a strong password, enable device encryption, and keep your device software up to date.

International Data Transfers

If you are located outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our Firebase servers are located.

By using our app, you consent to the transfer of your information to the United States and other countries where data protection laws may differ from those in your country.

EU-US Data Transfers: Firebase (Google) complies with applicable data protection frameworks, including GDPR. See Google Cloud Compliance for details.

App Store Privacy Labels

The following data types are disclosed in our Apple App Store and Google Play Store privacy labels:

Data Linked to You

(Only if you use premium features with cloud sync enabled)

Contact Info: Email address (for authentication)
User Content: Photos, starter data, feeding history, recipes
Identifiers: User ID (Firebase UID)
Usage Data: Premium subscription status

Data Not Linked to You

(Stored locally on device, not transmitted)

User Content: Starter data, photos (if cloud sync disabled)
Diagnostics: Crash logs, error logs (local only unless you opt in)

Data Not Collected

Location data
Contacts
Browsing history
Search history
Health data
Financial info (payments handled by Apple/Google)
Sensitive info (racial/ethnic data, political opinions, etc.)

Data Used to Track You

None. We do not use data to track you across apps and websites owned by other companies.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the new Privacy Policy on this page
Updating the "Last Updated" date at the top
Sending an in-app notification or email (for significant changes)

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Continued use of the app after changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Mobile App Privacy Policy, your data, or your privacy rights, please contact us:

Privacy Email: privacy@ludoresonance.com
General Inquiries: hello@ludorez.com
Response Time: We will respond to privacy requests within 30 days

Privacy-First Philosophy

At Ludo Resonance, we believe privacy is a fundamental right. Our apps are designed with privacy by default:

Local-first: All core functionality works without cloud sync
No selling: We never sell your data to third parties
User control: You decide what gets synced and when