Privacy Policy

1. Who we are

This Privacy Policy explains how Idanite LLC ("Idanite," "SendProof," "we," "us," or "our") collects, uses, and shares personal information when you use SendProof, including our app and website at sendproof.app.

2. Information we collect

We collect the following categories of information:

• Account information: name, email address, and account credentials managed through Firebase.
• User content: images and other content you upload as proof for habit decisions.
• Subscription and purchase information: plan, status, and transaction metadata through Apple App Store, Google Play, and RevenueCat. We do not receive full payment card numbers.
• Usage analytics: product usage and interaction events collected through PostHog.
• Technical information: device and log information such as IP address, app version, and diagnostics needed for security and reliability.

3. How we use information

We use personal information to:

• Provide, operate, and maintain SendProof.
• Create and manage your account, coach interactions, and habit verification workflows.
• Process subscriptions and purchases.
• Analyze app performance and improve features.
• Detect abuse, fraud, and security incidents.
• Respond to support and privacy requests.
• Comply with legal obligations and enforce our Terms of Service.

4. Legal bases (EEA/UK users)

Where applicable, we process personal information based on one or more of the following legal bases: performance of a contract, legitimate interests, consent, and compliance with legal obligations.

5. How we share information

We do not sell personal information. We share information only as needed to operate SendProof, including with:

• Authentication provider: Firebase.
• Subscription infrastructure: RevenueCat.
• Platform billing providers: Apple App Store and Google Play.
• Analytics provider: PostHog.
• Authorities, courts, or advisors when legally required or necessary to protect rights, safety, and security.

We do not share personal information for cross-context behavioral advertising.

6. Data retention

• Proof images: automatically deleted once a decision is made on that proof.
• Account data: retained while your account is active, unless deletion is requested sooner.
• Deletion requests: we delete personal information within 30 days of a verified request, subject to legal exceptions.
• Backups and security logs: may be retained for up to 90 days before automatic purge.

7. Your choices and rights

Depending on your location, you may have rights to access, correct, delete, or object to certain processing of your personal information, and to data portability where applicable. You may request account or data deletion by contacting us at contact@sendproof.app.

8. California privacy notice

If you are a California resident, you may have rights under California law, including rights to know, delete, and correct personal information. SendProof does not sell personal information or share personal information for cross-context behavioral advertising.

9. International transfers

SendProof is available globally, so your information may be processed in countries other than your own. Where required, we use appropriate safeguards for international data transfers.

10. Security

We use reasonable technical and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Children's privacy

SendProof is not intended for children under 13. If we learn we collected personal information from a child under 13, we will take steps to delete it.

12. AI training

We do not use user-uploaded content to train AI or machine learning models.

13. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version with a new "Last updated" date and provide additional notice where required by law.

14. Contact us

For privacy questions or requests, contact us at contact@sendproof.app.