🏋️ Aura Flow - Privacy Policy

Last Updated: December 4, 2025

1. Introduction

Welcome to Aura Flow ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile fitness application.

2. Information We Collect

Personal Information You Provide

Account Information: Email address, password (encrypted)
Profile Data: Name, age, weight, height, target weight, fitness goals
Health & Fitness Data: Workout logs, exercise records, meal plans, dietary preferences, progress tracking
Preferences: Religion-based dietary restrictions, budget preferences, fitness goals

Automatically Collected Information

Device Information: Device ID (for single-device login enforcement)
Usage Data: App interactions, features used, session duration
Technical Data: Operating system, app version, device type

3. How We Use Your Information

We use your information to:

Provide personalized meal plans based on your dietary preferences, religion, and budget
Generate customized workout recommendations based on your fitness goals
Track your fitness progress and achievements
Authenticate your account and ensure security
Enforce single-device login policy to protect your account
Improve app functionality and user experience
Provide customer support when requested

4. Data Storage and Security

Where We Store Your Data

Firebase Cloud Firestore: Secure cloud database hosted on Google Cloud Platform
Firebase Authentication: Industry-standard authentication service
Local Device Storage: Cached data on your device for offline functionality

Security Measures We Implement

✅ HTTPS encryption for all data transmission
✅ Firestore security rules ensuring users can only access their own data
✅ Single-device login enforcement - prevents unauthorized access
✅ Password encryption using Firebase Authentication
✅ Email verification during account creation
✅ Automatic session timeout for inactive accounts

5. Data Sharing and Disclosure

⚠️ We DO NOT sell, trade, or rent your personal information to third parties.

We may share your information only in these limited circumstances:

Service Providers: Firebase/Google Cloud Platform (for hosting, authentication, and database services)
Legal Requirements: If required by law, court order, or to protect our legal rights
Safety & Protection: To prevent fraud, abuse, or security issues

6. Your Privacy Rights

You have the following rights regarding your personal data:

✅ Right to Access: View all your personal data stored in the app
✅ Right to Update: Modify your profile information at any time
✅ Right to Delete: Request deletion of your account and all associated data
✅ Right to Export: Request a copy of your data in a portable format
✅ Right to Object: Opt-out of certain data processing activities

How to Exercise Your Rights

View/Update Data: Access your profile within the app settings
Delete Account: Contact us at the email below or use the in-app delete option
Export Data: Email us to request a copy of your data

7. Data Retention

Active Accounts: Data retained as long as your account is active and you use the app
Inactive Accounts: Data may be deleted after 24 months of complete inactivity
Deleted Accounts: All personal data permanently deleted within 30 days of deletion request
Legal Obligations: Some data may be retained longer if required by law

8. Children's Privacy

Aura Flow is intended for users aged 13 and above. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it immediately. If you believe your child has provided us with personal information, please contact us.

9. Third-Party Services

Our app integrates with the following third-party services:

Google Firebase: Authentication, cloud database, and hosting
📄 Firebase Privacy Policy
Capacitor: Mobile app framework (open source, no data collection)
📄 Capacitor Website

These services have their own privacy policies, and we encourage you to review them.

10. International Data Transfers

Your data may be stored and processed on servers located in different countries through Google Cloud Platform. We ensure appropriate safeguards are in place to protect your data in accordance with this privacy policy and applicable data protection laws.

11. Cookies and Tracking

Aura Flow does not use cookies for tracking or advertising purposes. We only use local storage on your device to:

Remember your login session
Cache data for offline functionality
Store your app preferences

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal reasons. We will notify you of any material changes by:

Updating the "Last Updated" date at the top of this policy
Providing an in-app notification for significant changes
Sending an email notification (if email notifications are enabled)

Your continued use of the app after changes constitutes acceptance of the updated policy.

13. Contact Us

📧 Questions about your privacy or this policy?

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: contact@dephins.com

App Name: Aura Flow

Developer: Aura Flow Team

Response Time: We aim to respond within 48 hours

14. Your Consent

By creating an account and using Aura Flow, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.