Calm Tails Privacy Policy

This Privacy Policy describes how Calm Tails ("Calm Tails," "we," "us," or "our") collects, uses, stores, discloses, and otherwise processes information when you access or use the Calm Tails application and related services (collectively, the "Service"). By using the Service, you acknowledge the processing practices described in this Privacy Policy, subject to applicable law.

1. Scope and Applicability

This Privacy Policy applies to information processed through the Service, including mobile app interactions, account-related workflows, customer support communications, analytics, and crash reporting. This Privacy Policy does not apply to third-party products, websites, or services that may be linked from or integrated with the Service, each of which is governed by its own privacy documentation.

2. Categories of Information We Process

Depending on feature configuration, deployment model, and your usage choices, we may process the following categories of information:

• Account and Authentication Data: identifiers, email address, authentication tokens, sign-in metadata, and account state information.
• User Content and Activity Data: logs, notes, routine entries, report content, timestamps, and interaction history relevant to app functionality.
• Technical and Device Data: device model, operating system version, app build/version, language, time zone, and basic diagnostics.
• Analytics and Performance Data: product usage events, feature engagement, performance metrics, and aggregate behavioral insights.
• Crash and Error Data: stack traces, exception context, runtime states, and related debugging diagnostics.
• Support Communications: correspondence content and metadata when you contact us for support or legal/privacy requests.

3. Sources of Information

We collect information (a) directly from you, (b) automatically from your device and Service interactions, and (c) from service providers and platforms supporting authentication, analytics, crash reporting, hosting, or app distribution.

4. Purposes of Processing

We process information as reasonably necessary to:

• Provide, operate, maintain, and secure the Service.
• Create, synchronize, generate, and display user logs and reports.
• Authenticate users and protect account integrity.
• Diagnose defects, investigate incidents, and improve reliability and usability.
• Analyze product performance, feature adoption, and aggregate usage trends.
• Comply with legal obligations, enforce terms, and resolve disputes.

5. Firebase Analytics and Firebase Crashlytics

We use Firebase Analytics and Firebase Crashlytics to measure product usage, assess performance, and detect stability problems. These tools may process device identifiers, event-level telemetry, app configuration metadata, runtime diagnostics, and crash traces. Such processing supports legitimate business interests in product quality, security, and operational continuity.

6. Legal Bases (Where Required)

Where applicable law requires a legal basis for processing, we rely on one or more of the following: your consent, performance of a contract with you, compliance with legal obligations, and legitimate interests such as fraud prevention, security monitoring, product analytics, and service improvement. Where consent is used, you may withdraw it at any time, subject to lawful processing already performed.

7. Disclosure of Information

We may disclose information to:

• Service Providers: vendors that support hosting, infrastructure, analytics, crash diagnostics, authentication, and communications.
• Platform Operators: app marketplace and operating-system providers where required for distribution, billing, or technical operations.
• Legal and Compliance Recipients: regulators, courts, law enforcement, or advisors where required to comply with law, protect rights, investigate misconduct, or respond to legal process.
• Corporate Transaction Counterparties: in connection with mergers, acquisitions, financing, restructuring, or asset transfers, subject to appropriate confidentiality measures.

We do not sell your personal information.

8. Data Retention

We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, including service delivery, account administration, quality assurance, security monitoring, dispute resolution, legal compliance, and enforcement of agreements. Retention duration depends on data type, context of collection, legal requirements, and operational necessity. Where feasible, we delete, de-identify, or aggregate data when it is no longer required.

9. Security Measures

We implement commercially reasonable technical, administrative, and organizational safeguards intended to protect information against unauthorized access, disclosure, alteration, or destruction. No method of transmission or storage is completely secure, and therefore we cannot guarantee absolute security.

10. Your Rights and Choices

Subject to applicable law and verification requirements, you may have rights to access, correct, delete, or receive a copy of certain personal information, and to object to or restrict specific processing activities. You may also be entitled to withdraw consent in jurisdictions where consent is the relevant legal basis. You may exercise applicable rights by contacting us at the email address below.

You may also manage certain settings directly in your device and app environment, including notification preferences, permission controls, and local data deletion options.

11. Regional Privacy Notices

Residents of certain jurisdictions (including, where applicable, the European Economic Area, United Kingdom, California, and other U.S. states with privacy statutes) may have additional rights and disclosures under local law. We will apply jurisdiction-specific rights and limitations where legally required.

12. Children’s Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe that a child under 13 has provided personal information through the Service, contact us so we can investigate and take appropriate remedial action.

13. International Use and Cross-Border Transfers

Calm Tails is currently operated from Canada and may expand to additional regions. Your information may be processed, transferred to, or stored in jurisdictions other than your own, including jurisdictions whose data-protection frameworks may differ from those in your location. Where required, we apply reasonable legal and contractual safeguards for cross-border processing.

14. Do Not Track

Because there is no universally accepted standard for browser- or device-level "Do Not Track" signals in mobile contexts, the Service may not respond to such signals in a standardized manner.

15. Changes to This Privacy Policy

We may revise this Privacy Policy from time to time to reflect legal, technical, or operational developments. Any updates become effective upon posting unless otherwise required by law. The "Last updated" date indicates the most recent revision date.

16. Contact

For privacy inquiries, rights requests, or complaints, contact: [email protected].