Privacy Policy

At Remory, we are committed to protecting your privacy and the security of your family's most precious memories. This Privacy Policy explains how we collect, use, and protect your information when you use our mobile application (the "App") and associated web services.

1. Introduction

Remory is a collaborative memory-sharing platform designed to help families and friends build shared scrapbooks through "Shared Vaults." Our motive is to preserve collaborative history by allowing multiple perspectives—through photos, voice recordings, videos, and written stories—to be captured in a secure, private environment.

2. Information We Collect

A. Personal Data

• Account Information: Email address, name, and profile picture (via Firebase Authentication and Google Sign-In).
• User Identifiers: A unique User ID (UID) assigned to your account to sync your data across devices.
• Billing Information: Purchase and subscription data processed through Google Play Billing for premium features. We do not store your payment card details.

B. User-Generated Content (Memories)

As a core part of the App's functionality, we collect and store:

• Media Files: Photos, videos, and audio recordings you upload to your Shared Vaults. Media may be stored on Cloudinary and/or Supabase Storage.
• Written Content: Diary entries, story titles, prompts, and reactions.
• Collaborative Data: Information about which Shared Vaults you belong to and your interactions with other members.

C. Location Data

• Memory Locations: When you grant location permission, we may associate geographic coordinates with your memories using Google Maps and Google Places APIs. This data is stored alongside your memory entries to enable location-based features.

D. AI Companion Data

• Remo AI Conversations: When you interact with our AI companion "Remo," your conversation inputs are processed by Google Gemini AI to generate personalized responses. Conversations may be stored locally and/or in the cloud to provide continuity.

E. Technical & Usage Data

• Device Information: Device model, operating system version, and unique device identifiers.
• Local Storage: Memories, diary entries, and app preferences are stored locally on your device using an encrypted database (Room/SQLite) and DataStore preferences.

3. How We Use Your Information

We use the collected data to:

• Provide the Service: Sync your memories to the cloud so they are accessible to you and your invited vault members.
• Facilitate Collaboration: Enable you to invite others via email or WhatsApp and allow members to respond to shared prompts.
• Web Sharing: Allow you to share individual diary pages via time-limited web links. Shared content is temporarily accessible via our web platform and automatically expires after 24 hours.
• AI Features: Process your inputs through Google Gemini AI to power the Remo companion, including memory prompts and personalized interactions.
• Backup & Restore: Enable cloud backups via Remory Cloud or Google Drive so you can restore your memories on a new device.
• Improve the App: Analyze usage patterns to enhance features like the "Daily Prompt" and "Canvas Renderer."
• Security: Protect against unauthorized access to your private vaults, including biometric lock support.

4. Third-Party Services

Remory uses trusted third-party services for essential functionality. These services have their own privacy policies:

• Google Play Services: For app distribution, core Android features, and ML Kit (subject segmentation for photo editing).
• Firebase (Google): We use Firebase Authentication (login) and Cloud Firestore (cloud database for syncing memories).
• Cloudinary: Used for hosting and delivering media files (photos, videos, and audio recordings) associated with your memories.
• Supabase: Used for cloud storage, database services, and serverless functions that power features like web sharing and theme delivery.
• Google Gemini AI: Powers the Remo AI companion for generating personalized responses and memory prompts.
• Google Maps & Places: Used to display and associate location data with your memories.
• Google Drive: Optional backup destination for your memories and app data.
• Google Play Billing: Processes in-app purchases and subscriptions for Remory Premium features.
• WhatsApp: Used as an external tool for sharing invitation links and referral codes.

5. Data Sharing & Visibility

• Private by Design: Your memories are not public. They are only visible to you and the specific members you invite to a "Shared Vault."
• Web Sharing: When you choose to share a diary page via a web link, the shared content becomes temporarily accessible to anyone with the link. These links expire automatically after 24 hours.
• Ownership: Vault owners have the authority to manage members and content within their specific vaults.
• No Sale of Data: We do not sell, rent, or trade your personal information or content to third parties.

6. Permissions

The App may request the following permissions to function correctly:

• Camera: To capture photos and videos for your memories.
• Microphone: To record voice memos and audio stories.
• Storage/Media: To upload existing photos or save memories to your device.
• Location: To tag memories with geographic locations (optional).
• Biometrics: To enable biometric lock for app security (optional).
• Notifications: To send daily reminders and "On This Day" memory notifications (optional).

7. Account Deletion & Data Retention

In compliance with Google Play policies, GDPR, and CCPA, we provide a clear way to delete your data:

• In-App Deletion: You can delete your account and all associated data within the App's "Account" section. This deletes your Firebase Auth account, Firestore documents (memories, chapters, diary pages, people, and vault entries), and your user profile.
• Web Request: If you cannot access the App, you may request account and data deletion through our Data Deletion page or by emailing us at the address provided below.
• Effect of Deletion: Upon account deletion, your personal data, private memories, and all associated media (including files stored on Cloudinary and Supabase) will be permanently removed from our active servers within 30 days.
• Backup Data: If you have enabled Google Drive backups, you will need to manually remove backup data from your Google Drive account, as we do not have access to delete files from your personal Drive.
• Shared Content: If your memories were part of a Shared Vault, other members' copies of those memories may persist in their own vaults.
• Retention Period: We retain your data only for as long as your account is active or as needed to provide our services. After account deletion, we aim to remove all cloud data within 30 days.

8. Security

We utilize industry-standard encryption (via Firebase and Supabase) to protect your data both in transit and at rest. The App also supports biometric authentication for an additional layer of security. While we strive to use commercially acceptable means to protect your information, no method of transmission over the internet is 100% secure.

9. Children's Privacy

Remory is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal data from a child under 13, we will take steps to delete such information promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy within the App or on our website with an updated "Last Updated" date. We encourage you to review this policy periodically.

11. Contact Us