1. Introduction

Welcome to brevv ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application brevv ("the App").

By using brevv, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

Account Information:

Email address

Name (optional)

Password (encrypted)

Authentication provider (Google, Apple, or Email)

Coffee and Brewing Data:

Coffee bean information (name, origin, roaster, roast level, process, tasting notes)

Brewing equipment details (brewer type, grinder model, filter type)

Brew parameters (grind size, water temperature, brew time, coffee/water ratios)

Brew ratings and feedback

Personal brewing preferences

Tasting notes and observations

User-Generated Content:

Photos of coffee bags, beans, and brewing equipment

Custom notes and annotations

Measurement preferences (metric/imperial)

2.2 Information Collected Automatically

Usage Data:

App features accessed and usage patterns

Session duration and frequency

Interaction with AI recommendations

Crash reports and error logs

Device performance metrics

Device Information:

Device type and model

Operating system version

Device identifiers

App version

Language preference

Time zone

Camera and Photo Access:

Photos captured through the app for coffee bag scanning

Images selected from your photo library

Camera metadata (when available)

2.3 Information from Third-Party Services

Firebase Services:

Authentication data (Google Sign-In, Apple Sign-In)

Anonymous analytics data

Crash and performance data

Cloud storage metadata

AI Services:

Data sent to Google Gemini for brewing recommendations

Search queries sent to Google Search for bean information

Processed image data for bag label recognition

3. How We Use Your Information

We use your information to:

3.1 Provide and Improve Services

Create and manage your account

Store and organize your coffee and brewing data

Generate personalized brewing recommendations

Scan and process coffee bag labels

Sync your data across devices

Enable search and filtering of your data

3.2 AI-Powered Features

Analyze your brewing patterns and preferences

Generate customized brewing guides

Provide recipe adjustments based on your feedback

Extract information from coffee bag photos

Search for bean information online

3.3 Communication

Send important service updates

Notify you of new features

Respond to your support requests

Send push notifications (with your permission)

3.4 Analytics and Improvements

Understand how users interact with the App

Identify and fix bugs and crashes

Improve app performance and user experience

Develop new features based on usage patterns

3.5 Security and Compliance

Detect and prevent fraud or abuse

Enforce our Terms of Service

Comply with legal obligations

Protect our rights and property

4. How We Share Your Information

4.1 Third-Party Service Providers

We share data with trusted third-party services:

Firebase (Google):

Authentication and user management

Cloud storage for photos and data

Real-time database for brew records

Analytics and crash reporting

Cloud functions for backend processing

Google Gemini:

Brewing parameters for AI recommendations

Bean information for recipe generation

User preferences for personalization

Note: We do not share photos with Gemini unless necessary for specific features

Google Search:

Bean names and origins for information lookup

Search queries for coffee-related data

Apple Sign-In:

Authentication tokens

User identifier (when using Apple Sign-In)

4.2 We Do NOT Sell Your Data

We never sell your personal information to third parties

We do not share your data for advertising purposes

Your brewing data remains private and is not shared with coffee companies or roasters

4.3 Legal Requirements

We may disclose your information if required to:

Comply with legal obligations

Respond to lawful requests from authorities

Enforce our Terms of Service

Protect our rights, safety, or property

Investigate fraud or security issues

4.4 Business Transfers

If brevv is acquired or merged with another company, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Storage and Security

5.1 Storage Location

Your data is stored in Firebase Cloud services

Server locations may vary based on Firebase's infrastructure

Photos are stored in Firebase Cloud Storage

Structured data is stored in Firebase Firestore

5.2 Security Measures

We implement industry-standard security measures:

Encryption in transit (HTTPS/TLS)

Encryption at rest for sensitive data

Secure authentication (Firebase Auth)

Regular security audits

Access controls and monitoring

5.3 Data Retention

Active account data is retained as long as your account is active

Deleted accounts: data is permanently removed within 30 days

Crash reports and analytics: retained for up to 90 days

Backup data: retained for up to 30 days for recovery purposes

6. Your Privacy Rights

6.1 Access and Control

You have the right to:

Access your personal data through the app

Update or correct your information

Export your data (brewing history, beans, setups)

Delete your account and all associated data

6.2 Privacy Settings

You can control:

Push notification preferences

Camera and photo library access

Measurement units and preferences

Data sync settings

6.3 Account Deletion

You can delete your account at any time through Settings

Account deletion is permanent and irreversible

All your data will be permanently deleted within 30 days

Some data may be retained for legal compliance (e.g., transaction records)

6.4 Regional Privacy Rights

For EU/UK Users (GDPR):

Right to access your data

Right to rectification

Right to erasure ("right to be forgotten")

Right to data portability

Right to restrict processing

Right to object to processing

Right to withdraw consent

For California Users (CCPA):

Right to know what data is collected

Right to delete personal information

Right to opt-out of data sales (we don't sell data)

Right to non-discrimination

For Other Regions:

We comply with applicable local privacy laws

Contact us to exercise your privacy rights

7. Children's Privacy

brevv is not intended for children under 13

We do not knowingly collect data from children under 13

If we discover we have collected data from a child under 13, we will delete it immediately

Users between 13-18 should have parental consent

8. Cookies and Tracking

8.1 Mobile App

We do not use traditional web cookies in the mobile app

We use device identifiers for analytics and crash reporting

Firebase may use similar technologies for its services

8.2 Analytics

Firebase Analytics tracks anonymous usage patterns

Crashlytics collects crash and error data

You can opt-out of analytics through device settings

9. Third-Party Links and Services

The App may link to third-party websites or services

We are not responsible for third-party privacy practices

Review third-party privacy policies before sharing information

Third-party services have their own data collection practices

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own

We ensure appropriate safeguards for international transfers

By using brevv, you consent to such transfers

We comply with applicable data transfer regulations (e.g., Standard Contractual Clauses)

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time

Material changes will be notified through the App or email

Continued use after changes constitutes acceptance

Previous versions are available upon request

Last updated date is always displayed at the top

12. Data Breach Notification

In the event of a data breach:

We will notify affected users within 72 hours

Notifications will include the nature of the breach and steps to take

We will notify relevant authorities as required by law

We will take immediate action to mitigate the breach

13. Do Not Track

Our App does not respond to Do Not Track (DNT) signals

Third-party services may have their own DNT policies

You can control tracking through device settings

14. Your Consent

By using brevv, you consent to:

Collection and use of information as described in this policy

Processing of your data by third-party services

International data transfers

Use of AI services for recommendations

You can withdraw consent by:

Deleting your account

Uninstalling the app

Contacting us to exercise privacy rights

15. Contact Us

For privacy-related questions or requests, please contact us:

Email: support@brevv.app

Website: https://brevv.app

16. Specific Feature Privacy Details

16.1 Camera and Photo Access

Camera is used only for scanning coffee bags

Photos are stored securely in your account

We do not access other photos on your device

You can deny camera access, but scanning features won't work

16.2 AI Recommendations

Brewing data is sent to Google Gemini for processing

Data is not stored by Gemini beyond processing

Recommendations are based on your personal brewing history

You can disable AI features through settings

16.3 Cloud Sync

Data syncs automatically across your devices

Sync can be disabled in settings

Offline mode: data stored locally until sync is enabled

Conflicts are resolved automatically (latest version wins)

16.4 Push Notifications

Used for brew reminders and updates

Can be disabled in device settings

We don't send marketing notifications

Notification data is not stored long-term

17. Data Accuracy

You are responsible for the accuracy of information you provide

We are not liable for decisions based on incorrect data

Review and update your information regularly

Contact us to correct errors we control

18. Automated Decision-Making

AI recommendations do not involve legally significant automated decisions

AI outputs are suggestions, not binding decisions

You have full control over following or ignoring recommendations

Human review is available for disputed AI outputs