Privacy Policy

1. Introduction

Welcome to Fungify ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience on our platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services.

By using Fungify, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, do not download, install, or use our application.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

• Account information (email address, username, profile picture)
• Authentication data (when you sign in with Google or Apple)
• User-generated content (mushroom photos, route data, location information, notes)
• Communication data (support requests, feedback)

2.2 Location Information

Location Services (When in Use): We collect your location data when you actively use the app to:

• Display your current position on maps
• Record mushroom foraging routes
• Tag locations where you find mushrooms
• Navigate to saved locations

Location Services (Always/Background): We may collect location data in the background when:

• You are actively recording a route and the app is running in the background
• The app is tracking your route even when your phone is locked

You can control location permissions through your device settings. Note that disabling location services may limit certain features of the app.

2.3 Camera and Photo Information

We access your device's camera and photo library to:

• Take photos of mushrooms and foraging locations
• Select existing photos from your library to upload
• Save photos taken within the app to your device
• Access photo metadata (location data embedded in photos, if enabled)

Photos you take or upload are stored securely and only shared as you explicitly choose through the app's sharing features.

2.4 Biometric Information

If you choose to use Face ID or other biometric authentication methods, we use your device's biometric data solely for authentication purposes. This data is stored securely on your device and is never transmitted to our servers or third parties.

2.5 Analytics and Tracking Information

We use analytics services (Firebase and Vexo) to collect anonymous usage data, including:

• App usage statistics and performance metrics
• Crash reports and error logs
• Feature usage patterns
• Device information (model, operating system version)

This data is collected in accordance with Apple's App Tracking Transparency framework and Google Play's data safety requirements. You can opt out of tracking through your device settings.

2.6 Notification Data

We may send you push notifications for app updates, route tracking status, and other app-related information. You can manage notification preferences through your device settings.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Create and manage your account
• Process and store your mushroom findings, routes, and location data
• Enable sharing features when you choose to share content
• Send you notifications related to app functionality
• Analyze app usage to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. How We Share Your Information

We respect your privacy and only share your information in the following circumstances:

4.1 With Your Consent

We share your content (photos, routes, locations) only when you explicitly choose to share it through the app's sharing features. Shared content is accessible via unique share links that you control.

4.2 Service Providers

We may share information with third-party service providers who perform services on our behalf, including:

• Supabase: Database and authentication services
• Firebase: Analytics and crash reporting
• Vexo: Analytics services
• Google Maps: Map display and location services
• Vercel: Web hosting and deployment services

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.3 Legal Requirements

We may disclose your information if required by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption of data in transit and at rest
• Secure authentication methods (Google Sign-In, Apple Authentication)
• Biometric authentication options (Face ID) stored locally on your device
• Regular security assessments and updates
• Access controls and authentication requirements

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Your Rights and Choices

You have the following rights regarding your personal information:

6.1 Access and Portability

You can access, update, or delete your account information and content through the app settings or by contacting us.

6.2 Location Permissions

You can control location permissions through your device settings. You can choose to allow location access "When in Use" or "Always," or deny access entirely.

6.3 Camera and Photo Permissions

You can manage camera and photo library access through your device settings. Denying these permissions will limit your ability to take and upload photos.

6.4 Tracking and Analytics

You can opt out of tracking through your device settings. On iOS, you can manage this through Settings → Privacy → Tracking. On Android, you can manage this through your device's privacy settings.

6.5 Account Deletion

You can delete your account at any time through the app settings. When you delete your account, we will delete your personal information and content, except where we are required to retain it for legal purposes.

7. Children's Privacy

Fungify is not intended for children under the age of 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using Fungify, you consent to the transfer of your information to these countries.

9. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. When you delete your account, we will delete your personal information within a reasonable timeframe, except where we are required to retain it for legal purposes.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us through the app's support features or at:

Email: support@fungify.app (or your support email)
App: Use the in-app support features

12. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

• The right to know what personal information we collect, use, and disclose
• The right to delete your personal information
• The right to opt out of the sale of personal information (we do not sell personal information)
• The right to non-discrimination for exercising your privacy rights

13. GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including:

• The right to access your personal data
• The right to rectification of inaccurate data
• The right to erasure ("right to be forgotten")
• The right to restrict processing
• The right to data portability
• The right to object to processing
• Rights related to automated decision-making

To exercise these rights, please contact us through the app's support features.