Privacy Policy

1. What Growly is

Growly is an AI-assisted parenting support app that helps parents and caregivers reflect on everyday parenting moments, receive daily nudges, build parenting plans, view weekly summaries, use optional source references, widgets, and notifications, and manage subscription-based access.

Growly is not a medical, therapeutic, diagnostic, emergency, crisis, child-safety monitoring, legal, or professional healthcare service. Growly does not replace qualified professional advice or emergency support.

2. Information we collect

We collect information you provide, generate, or choose to sync while using Growly. Depending on how you use the app, this may include:

• onboarding answers, such as parenting role, parenting style, selected goals, child age band, and optional child gender;
• reflection inputs, such as selected emotion, typed notes, and optional voice-to-text transcript content if you use voice input;
• AI-assisted coaching responses, follow-up entries, weekly summaries, source references, and feedback ratings;
• account information from Firebase Authentication, such as Firebase user ID, sign-in provider, and email address if provided by Apple or Google;
• subscription and entitlement status from RevenueCat;
• notification preferences, prompt state, widget state, and app usage events;
• technical diagnostics such as app version, platform, configuration status, and bounded error categories.

We do not intentionally collect children's names, precise locations, contacts, photos, health records, or payment card numbers.

3. Optional information

Some information is optional. You may use parts of Growly locally before signing in, child gender may be skipped where the app allows, reflection notes are optional, voice input is optional, notifications and widgets are optional, and source retrieval is optional or feature-dependent. If you choose not to provide optional information, some features may be limited.

4. Local storage and cloud sync

Growly is designed with a local-first architecture. Many app states are stored on your device first, including onboarding progress, reflection state, journey progress, notification prompt state, widget prompt state, and other app preferences.

If you sign in or use backend-backed features, Growly may sync selected information to Firebase Firestore so that account-backed features and continuity can work. Current backend data includes user profile documents, child profile documents, journey checkpoints, reflection documents, source references attached to reflections, and retrieval budget records.

Some processing is temporary or transient. For example, app routing, entitlement checks, local drafts, diagnostic status, and source-retrieval requests may be processed briefly to provide the feature and are not necessarily stored as permanent records.

5. Authentication

Growly supports optional sign-in using Apple Sign In and Google Sign In through Firebase Authentication. The app can begin in a local or anonymous-style state before sign-in. When you sign in, Growly may link your local app state and RevenueCat entitlement state to your Firebase-backed app identity.

Apple or Google may provide us with limited account information, such as an identifier and email address, depending on your provider settings. We use this information to create or access your Growly account and protect account-backed data.

6. Subscriptions and payments

Growly uses RevenueCat to manage subscriptions, entitlement status, free trials, purchase restoration, and paywall access. Purchases are processed by Apple App Store and, when Android launches, may be processed by Google Play. Growly does not receive or store your full payment card details.

RevenueCat may receive purchase receipts, subscriber identifiers, product identifiers, entitlement status, and related subscription metadata so that Growly can determine whether you have access to paid features.

7. AI-assisted reflection and coaching

Growly uses AI-assisted features to generate reflection support, coaching responses, daily or weekly summaries, and related content. The text processed for these features may include your selected emotion, parenting goals, onboarding context, reflection notes, follow-up answers, and app-generated context needed to produce a response.

The current implementation includes native on-device AI provider paths, including Apple Foundation Models on supported iOS devices and Gemini Nano support planned for supported Android devices. Growly may also use server-side Firebase Functions for optional source retrieval and backend-backed features.

Reflection text and generated response data may be stored locally and, when signed in or synced, in Firestore as part of your Growly account data. Optional source references may also be stored with reflections. Do not enter emergency, crisis, medical, legal, or highly sensitive information into Growly.

8. Source retrieval

Growly may provide optional source references for some responses. Source retrieval can involve a Firebase Function and SerpApi for search. Requests are designed to use compact search terms rather than raw long-form journal entries where possible. Retrieved source metadata, such as title, URL, domain, snippet, tier, and publication date, may be stored with a reflection when relevant.

9. Notifications and widgets

Growly may ask for permission to send notifications, including daily nudges, missed-day reminders, and weekly summary prompts. You can control notification permissions in your device settings.

Growly may support widgets. Widget data is intended to show limited app context and prompt state. Widget behavior can involve shared local storage between the app and widget extension on supported platforms.

10. Analytics and diagnostics

Growly uses Firebase Analytics where available to understand app usage, onboarding progress, subscription state, notification state, widget state, account-support actions, and feature performance. Analytics events are designed to avoid raw free-text reflection content and direct private identifiers where possible.

The codebase includes privacy-safe diagnostic logging and bounded error categories. We did not identify a separate Crashlytics, Sentry, or OneSignal SDK in the current implementation. If those services are added later, this policy should be updated before release.

11. Third-party services

Growly currently uses or integrates with the following services and SDKs:

• Firebase Authentication for account sign-in and identity;
• Firebase Firestore for account-backed app data;
• Firebase Functions for backend actions such as account deletion and optional source retrieval;
• Firebase Analytics for usage analytics where available;
• RevenueCat for subscriptions, entitlement checks, free trials, and purchase restoration;
• Apple Sign In and Google Sign In for authentication;
• Apple App Store and, when Android launches, Google Play for purchases and subscription management;
• Apple Foundation Models on supported iOS devices and Gemini Nano paths for supported Android devices;
• SerpApi for optional source-reference search when enabled.

12. How we use information

We use information to provide and improve Growly, personalize onboarding and nudges, generate AI-assisted responses, save reflection and journey progress, manage subscriptions, restore purchases, operate notifications and widgets, provide account support, prevent abuse, debug technical issues, and comply with legal obligations.

13. Data sharing

We do not sell personal information. We share information with service providers only as needed to operate Growly, including the providers listed above. We may also disclose information if required by law, to protect users and the service, or in connection with a business transfer such as a merger, acquisition, or asset sale.

14. Account deletion

You can request deletion in the app from Settings, Account & Support, Delete account. The backend deletion function deletes account-backed Firebase Auth and Firestore records associated with your authenticated user ID, including user, child, journey, reflection, and retrieval budget records. The app also clears certain local account-scoped data from the device after successful backend deletion.

Deleting your Growly account does not automatically cancel an Apple App Store or Google Play subscription. You must cancel active subscriptions through the store account that manages the purchase.

15. Retention

We keep account-backed data for as long as needed to provide Growly, maintain your account, comply with legal obligations, resolve disputes, and enforce agreements. When you delete your account, the deletion flow removes the main account-backed records described above. Some records may remain temporarily in backups, logs, analytics aggregates, store purchase records, or provider systems where deletion is not immediate or where retention is legally or operationally required.

16. Children and family-related information

Growly is designed for parents and caregivers, not for children to use directly. We do not intentionally ask for a child's name, precise location, health record, photo, contact details, or direct account information. Parents and caregivers should avoid entering information that directly identifies a child.

17. Your rights

Depending on where you live, you may have rights to access, correct, delete, restrict, or object to certain processing of your personal information, and to request a portable copy of information where applicable. You may also have the right to withdraw consent where processing is based on consent.

To make a request, contact support@getgrowly.io. We may need to verify your identity before responding.

18. International users

DMD Ltd. is based in Bulgaria. Your information may be processed in Bulgaria, the European Union, the United States, or other locations where our service providers operate. We take steps intended to use service providers and transfer mechanisms appropriate for the nature of the service and applicable law.

19. Security

We use technical and organizational measures intended to protect Growly data, including Firebase security rules, authenticated backend actions, local account-scoped storage, limited diagnostic logging, and service-provider access controls. No app, network, or storage system can be guaranteed to be 100% secure.

20. Policy updates

We may update this Privacy Policy as Growly changes. If changes are material, we will take reasonable steps to notify users, such as updating the effective date, posting the updated policy, or providing in-app notice where appropriate.

21. Contact

For privacy questions or requests, contact DMD Ltd. at support@getgrowly.io.