Privacy Policy

MyDailyDay is operated by Pewter Software Ltd, United Kingdom.

This Privacy Policy explains how we collect, use, and protect your information when you use the MyDailyDay mobile application.

If you have questions, you may contact us at: pewtersoftware@gmail.com

1. Information We Collect

Account Information

When you create an account we may collect:

• Email address
• Display name
• Authentication identifiers (Google account ID if using Google Sign-In)

Passwords are not stored by us directly and are managed securely via Supabase authentication services.

User Content

The app stores information you create within the application, including:

• Tasks you create
• Task schedules, frequencies, and urgency
• Task completion history
• Productivity statistics (daily totals, streaks, max streak)

Most of this information is stored encrypted locally on your device.

Social Features

If you add friends or connect with a partner ("couple") within the app, we store:

• Relationship connections between users
• Display names of connected users
• Poke notification interactions

The content of your tasks is not shared with other users.

Device Information

We may collect:

• Device identifiers for push notifications
• Push notification tokens (Firebase Cloud Messaging)

Subscription Information

If you purchase a premium subscription, we store:

• Subscription status
• Entitlement information
• Subscription relationships (for couple subscriptions)

Subscription management is handled through RevenueCat, Apple App Store, and Google Play. We do not store payment details such as credit card numbers.

2. Where Your Data Is Stored

Data may be stored:

Locally on your device (encrypted):

• Email
• Display name
• Tasks
• Task history
• Productivity statistics
• Friend display names

On secure servers (Supabase):

• Account identifiers
• Email
• Display name
• Social relationships
• Subscription status
• Device push notification tokens
• Aggregated task completion statistics

Our database infrastructure is currently hosted in Western Europe.

3. Data Types Collected (Privacy Labels)

The following information is provided to comply with Apple App Store and Google Play Store privacy label requirements:

Personal Information

• Email address (used for account authentication)
• Display name (visible to connected users)

User Content

• Tasks and productivity data (stored locally, encrypted)
• Task completion statistics (aggregated, stored on servers)

Identifiers

• User ID (internal identifier)
• Device ID (for push notifications)

Usage Data

• Crash reports (Firebase Crashlytics)
• Basic app performance data

Data Not Collected

We do NOT collect:

• Precise location
• Financial information (handled by Apple/Google)
• Health data
• Browsing history
• Search history
• Contacts
• Photos or videos

4. Third-Party Services

We use trusted third-party services to operate the app:

• Supabase (authentication and database)
• Firebase Cloud Messaging (push notifications)
• Firebase Crash Reporting (error monitoring)
• Google Sign-In
• RevenueCat (subscription management)
• Apple App Store
• Google Play Store

These providers process data only as necessary to provide their services.

5. Data Sharing

We share data with third parties ONLY for the following purposes:

Analytics

Firebase Crashlytics (crash reporting only)

App Functionality

Supabase (database), Firebase (push notifications)

Payment Processing

RevenueCat, Apple App Store, Google Play Store (subscription management)

We do NOT:

• Sell your data to third parties
• Use your data for advertising
• Share your data for marketing purposes
• Share task content with other users

6. How We Use Your Information

We use your data to:

• Provide and maintain the application
• Enable user accounts and authentication
• Deliver push notifications
• Enable social features (friends and couples)
• Manage premium subscriptions
• Monitor crashes and technical errors

We do not sell user data and do not use personal data for advertising.

7. Push Notifications

The app may send notifications including:

• Daily reminders
• Evening summaries
• Poke notifications sent by friends

Users may disable notifications within their device settings.

8. Children's Privacy (COPPA Compliance)

Age Requirements

This app is designed for users aged 13 and older.

Users Under 13

This app is NOT directed at children under 13 years of age. If you are under 13, you must NOT use this app or create an account. We do not knowingly collect personal information from children under 13.

If we discover that a user is under 13, we will:

• Immediately delete the account
• Remove all associated personal data
• Block the email address from future registration

Parents and Guardians

If you believe your child under 13 has created an account, please contact us immediately at pewtersoftware@gmail.com. We will delete the account within 24 hours.

Users 13-17

If you are between 13 and 17, you may only use this app with the consent of a parent or legal guardian. You should ask your parent or guardian to read this Privacy Policy and our Terms of Service before using the app. By using the app as a minor, you confirm that you have obtained parental consent.

9. Your Rights

Depending on your location (including the UK and EU), you have the right to:

• Access your personal data
• Correct inaccurate information
• Delete your account and associated personal data
• Restrict processing in certain circumstances

You can delete your account directly from within the app.

10. Data Deletion

When you delete your account:

• All identifiable personal data is permanently deleted
• Associated relationships and subscriptions are removed
• A non-identifiable internal account ID may remain for audit and system integrity purposes

Local task data stored on your device may remain unless removed by uninstalling the app.

11. Data Security

We take reasonable technical and organizational measures to protect user data, including:

• Encryption of local data
• Secure authentication via Supabase
• Restricted database access
• Industry-standard infrastructure providers

However, no system can guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy periodically. When changes occur we will update the Last Updated date. Continued use of the app constitutes acceptance of the revised policy.

13. Contact

If you have questions about this Privacy Policy you can contact:

Pewter Software Ltd

Email: pewtersoftware@gmail.com

14. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to Know: You can request details about the personal data we collect, use, and disclose
• Right to Delete: You can request deletion of your personal data (available through in-app account deletion)
• Right to Opt-Out: We do NOT sell your personal data to third parties
• Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

To exercise your California privacy rights, contact us at pewtersoftware@gmail.com with "California Privacy Request" in the subject line.

15. Data Breach Notification

In the unlikely event of a data breach affecting your personal data, we will:

• Notify affected users within 72 hours of becoming aware of the breach (where feasible)
• Provide details about the nature of the breach, data affected, and potential risks
• Explain the remedial actions we have taken or plan to take
• Report serious breaches to the Information Commissioner's Office (ICO), the UK's data protection regulator

We maintain security measures designed to prevent data breaches, including encryption, secure authentication, and restricted access controls.

If you suspect unauthorized access to your account, please contact us immediately at pewtersoftware@gmail.com.