This Privacy Policy explains how the Alcophone mobile application (“App”), operated by SafeMetrics4U (“we”, “us”, “our”), collects, uses, and protects your information. By using the App, you agree to the practices described below.

Alcophone is built with a local-first architecture. Your personal and health-related data — including all alcohol consumption records — stays on your device. We do not operate user accounts, cloud sync, or any first-party server that stores your personal information.

1. Data Controller

SafeMetrics4U is the data controller for the personal data processed through the App.
Contact: safemetrics4u@protonmail.com | alcophone.app/contact

2. Data We Collect

2.1 Data stored locally on your device

The following data is stored exclusively on your device and is never transmitted to us or any third party:

• Personal profile: weight, height, age, gender, and country/region selection (for legal BAC limit display).
• Drink history: beverage name, volume, alcohol content, timestamp, category, and icon.
• App data: favorite drinks, BAC session data, achievement progress, goal settings, calorie data, notification preferences, and other app settings.

Age verification stores only a boolean flag — your birth month and year are discarded immediately after verification and are never saved.

2.2 Anonymous analytics (transmitted to Google)

If analytics is enabled, the App sends the following anonymous data to Google via Firebase Analytics:

• App interactions (e.g., which features you use, buttons you tap, and how you navigate through the App) — no personal or health data is included.
• Screen views (which screens you open within the App).
• Three anonymous user properties: premium status, trial status, and days since install.

Firebase Analytics may also process your IP address for geographic analytics (e.g., country-level usage statistics). IP addresses are not stored by Firebase Analytics in their raw form.

This data is anonymous and cannot be used to identify you personally.

2.3 Crash reports (transmitted to Google)

The App uses Firebase Crashlytics to collect anonymous crash reports. These include:

• Stack traces and error information.
• Device model, OS version, and app version.
• General device state at the time of the crash.

Crash reports do not contain personal data, drink history, or health information. They are used solely to identify and fix stability issues.

2.4 Server-side trial validation (transmitted to Google Cloud)

To prevent trial abuse, the App stores a minimal trial record on Google Cloud (Firebase Firestore):

• Anonymous identifier: An automatically generated anonymous ID (Firebase Anonymous Auth). This is not linked to your name, email, phone number, or any other personal information.
• Trial timestamps: When the trial started and when it expired.
• Platform: Android or iOS.

This data is used exclusively to verify trial eligibility. It is not affected by the analytics opt-out toggle — it is a core part of the App’s functionality, not telemetry.

Because this record is anonymous and is not linked to your name, email, or any other personal identifier, it cannot be matched back to you individually. See Section 6 for how it is retained and deleted.

2.5 Advertising data (collected by Google)

Free-tier users see advertisements served by Google AdMob. Before ads are displayed, you may be shown a consent prompt (UMP) in accordance with applicable regulations. When ads are served, Google may collect:

• Device advertising identifier (GAID).
• IP address.

This data is collected and processed by Google under its own privacy policy. Premium users do not see ads and no advertising data is collected for them.

2.6 Data we do NOT collect

Alcophone does not collect, store, or transmit:

• Your name, email address, phone number, or physical address.
• Location or GPS data.
• Contacts, photos, or files from your device.
• Payment or financial information (purchases are handled entirely by Google Play / Apple App Store).
• Your actual alcohol consumption data (this stays on your device only).

3. Legal Basis for Processing (UK GDPR / EU GDPR)

If you are located in the United Kingdom or European Economic Area, we process your data under the following legal bases:

Data Category	Legal Basis	GDPR Article
Analytics & crash reports	Consent (opt-in for UK; opt-out for other regions)	Art. 6(1)(a)
Trial validation record	Legitimate interest (preventing trial abuse)	Art. 6(1)(f)
Advertising data (AdMob)	Consent (via Google UMP consent flow)	Art. 6(1)(a)
Local health-related data	N/A — data never leaves device	—

Regarding health data (Article 9): Alcohol consumption data could be classified as health data under Article 9 of UK GDPR. However, this data is stored exclusively on your device and is never transmitted to us or any third party. We do not process this data — you do, locally on your device. No Article 9 legal basis is required for data that the controller never receives.

You may withdraw consent for analytics, crash reporting, or advertising at any time without affecting the lawfulness of processing based on consent before its withdrawal.

4. How We Use Your Data

• Local data: Used solely within the App on your device to calculate BAC estimates, display your drink history, track achievements, and provide app functionality. We never access this data.
• Analytics: Used in aggregate to understand app interactions, screen views, and feature usage patterns to improve the App. No individual user data is reviewed.
• Crash reports: Used to identify and fix bugs and stability issues.
• Trial validation: Used to enforce the one-trial-per-user policy.
• Advertising: Used by Google to serve relevant ads to free-tier users.

5. Third-Party Services & International Data Transfers

The App integrates with the following Google services:

• Firebase Analytics — Anonymous usage events and screen views. User control: opt-out toggle in Settings (opt-in for UK users).
• Firebase Crashlytics — Anonymous crash reports and device diagnostics. User control: opt-out toggle in Settings (opt-in for UK users).
• Firebase Anonymous Auth — Generates an anonymous ID for trial validation. No personal information is involved.
• Firebase Firestore — Stores the anonymous trial eligibility record on Google Cloud.
• Firebase Remote Config — Fetches read-only configuration (e.g., promotional pricing). No data is sent from the App.
• Google AdMob — Serves advertisements to free-tier users. Subject to Google’s ad consent flow and Google’s Privacy Policy.
• Google Play Billing — Processes in-app purchases. Transactions are handled entirely by Google Play.

We do not sell, rent, or share your data with any third parties beyond the services listed above.

6. Data Retention & Deletion

Local data

All local data is retained on your device until you delete it. There is no automatic expiration. You can delete all locally stored data at any time:

• In-app: Settings > Privacy & Legal > Erase All Data (two-step confirmation).
• Uninstall: Removing the App from your device also deletes all local data.

For more details, see our Data Deletion page.

Server-side trial record

The anonymous trial validation record is retained on Google Cloud to prevent trial abuse. It contains only an automatically generated anonymous identifier and timestamps — no name, email, or other personal information.

Because this record is not linked to any personal identifier, we cannot locate or match it to a specific individual from an email or other contact request (UK GDPR Art. 11 and equivalent provisions in other jurisdictions). It holds no data capable of identifying you, is used solely to enforce one-trial-per-user eligibility, and cannot be linked to you once the App is uninstalled.

Analytics & crash data

• Firebase Analytics: Data retained for 14 months (Google’s default retention period), then automatically deleted.
• Firebase Crashlytics: Crash data retained for 90 days (Google’s standard policy).
• You can stop future collection at any time via the opt-out toggles in Settings.

Advertising data

Advertising data retention is governed by Google’s privacy policy. You can reset your advertising identifier through your device settings.

7. Data Storage & Security

• All personal and health data is stored on your device only, using standard local storage.
• Security-sensitive data (trial state, purchase verification) is stored in your device’s hardware-backed secure storage.
• Critical app state is protected with cryptographic integrity checks (HMAC) to prevent tampering.
• Server-side data (anonymous trial record) is stored on Google Cloud (Firebase Firestore) and protected by Firebase security rules that restrict access to the authenticated anonymous session only.
• No cloud backup of app data is performed by us. Standard device backup behavior (Android/iOS) may apply.

8. Your Rights by Jurisdiction

8.1 United Kingdom (UK GDPR, Data Protection Act 2018, PECR)

UK users have the following rights under UK GDPR:

• Right of access (Art. 15): Request a copy of your personal data.
• Right to rectification (Art. 16): Request correction of inaccurate data.
• Right to erasure (Art. 17): Request deletion of your data (see Section 6).
• Right to restrict processing (Art. 18): Request limitation of processing.
• Right to data portability (Art. 20): Receive your data in a structured format.
• Right to object (Art. 21): Object to processing based on legitimate interest.
• Right to withdraw consent: Withdraw consent at any time via Settings toggles.

To exercise your rights or make a complaint, contact us via the details in Section 1. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

• Website: ico.org.uk
• Helpline: 0303 123 1113

8.2 Australia (Privacy Act 1988, Australian Privacy Principles)

Australian users have rights under the Australian Privacy Principles (APPs):

• APP 12: Right to access your personal information.
• APP 13: Right to request correction of your personal information.
• Right to make a complaint about privacy handling.

Alcophone does not disclose personal information to overseas recipients, except for anonymous analytics/crash data transmitted to Google’s US servers (see Section 5).

To make a privacy complaint, contact us first via the details in Section 1. If unsatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

• Website: oaic.gov.au
• Phone: 1300 363 992

8.3 Canada (PIPEDA)

Canadian users have the following rights under the Personal Information Protection and Electronic Documents Act:

• Right to access your personal information.
• Right to challenge the accuracy of your information.
• Right to withdraw consent for collection, use, or disclosure.
• Right to know why your information is collected and how it is used.

Alcohol consumption data is recognized as sensitive information under PIPEDA. This data is stored exclusively on your device and is never collected by us.

To exercise your rights or make a complaint, contact us via the details in Section 1. You may also file a complaint with the Office of the Privacy Commissioner of Canada (OPC):

• Website: priv.gc.ca
• Phone: 1-800-282-1376

8.4 India (Digital Personal Data Protection Act 2023)

Indian users will have rights under the DPDP Act once its substantive provisions come into force (expected 2027):

• Right to access information about processing.
• Right to correction and erasure of personal data.
• Right to grievance redressal.
• Right to nominate.

Until the DPDP Act is fully enforced, we voluntarily provide:

• Transparency about data practices (this policy).
• Clear information on how anonymous server-side data is retained and deleted (see Section 6).
• Local data deletion (Settings > Privacy & Legal > Erase All Data).

Once the Data Protection Board of India (DPB) is operational, complaints may be directed there.

8.5 United States

US users have the following controls:

• Opt out of analytics: Settings > Privacy & Legal > Analytics toggle.
• Opt out of crash reporting: Settings > Privacy & Legal > Crash Reporting toggle.
• Manage ad consent: When prompted by the consent dialog, or through your device’s ad settings.
• Delete all local data: Settings > Privacy & Legal > Erase All Data.
• Server-side data: Our only server-side data (anonymous analytics, crash reports, and the trial record) is not linked to your identity. You can stop collection via the toggles above; this data auto-expires and cannot be matched back to you on request (see Section 6).
• Manage notifications: Each notification category can be toggled individually in Settings.

California residents: Under the CCPA/CPRA, we do not sell or share personal information for cross-context behavioral advertising. The anonymous analytics and crash data we collect does not constitute a “sale” under CCPA.

8.6 All users

Regardless of your jurisdiction, you can always:

• Opt out of analytics and crash reporting via Settings toggles.
• Manage advertising consent via the consent dialog or device settings.
• Delete all local data via Settings > Privacy & Legal > Erase All Data.
• Stop server-side analytics and crash collection via the Settings toggles; the remaining anonymous server-side data is not linked to your identity and auto-expires (see Section 6).
• Manage notification preferences in Settings.

9. Age Requirements

Alcophone is intended for users of legal drinking age in their jurisdiction. The App verifies age during onboarding using the minimum legal drinking age for the selected country:

• United States: 21 years
• Canada: 18 or 19 years (varies by province)
• Australia: 18 years
• United Kingdom: 18 years
• India: 21 years (varies by state; some states prohibit alcohol)

The App blocks access for users below the legal drinking age in their selected country. We do not knowingly collect data from anyone below the applicable minimum age. No COPPA-regulated data is collected.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page reflects the most recent revision. For material changes that affect your rights, we will provide notice through the App. Continued use of the App after changes constitutes your acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy or wish to exercise your data rights, you can reach us:

• Email: safemetrics4u@protonmail.com
• Via the contact form at alcophone.app/contact

We aim to respond to all data rights requests within 30 days (or within the timeframe required by your local law).

12. Governing Law & Jurisdiction

This Privacy Policy is governed by the laws of Hungary. Any dispute arising from or related to this Privacy Policy or the data practices described herein shall be subject to the exclusive jurisdiction of the courts of Hungary, to the extent permitted by applicable law.

Nothing in this section limits any statutory rights you may have under the laws of your country of residence, including but not limited to:

• UK GDPR and the Data Protection Act 2018 (United Kingdom)
• The Privacy Act 1988 (Australia)
• PIPEDA (Canada)
• The Digital Personal Data Protection Act 2023 (India)
• CCPA/CPRA (California, United States)