Language

Privacy Policy

Last updated: November 9, 2025

Couple Check-In ("the Application") is committed to protecting your privacy and personal data. This privacy policy explains how we collect, use, share, and protect your information in compliance with the General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (FADP).

1. Data Controller

...

...

Data Protection Officer: ...

2. Data We Collect

We collect the following data when you use the Application:

Account Data

Email address (via Google Sign-In)
Name (via Google Sign-In)
Unique user identifier (Firebase Authentication)

Profile Data

Couple status (paired or unpaired)
Couple identifier
Creation and update timestamps

User-Generated Content

Answers to reflection questions (strictly private, never shared with your partner)
Action items created during sessions (shared with your partner)
Custom questions and categories (shared with your couple)

Usage Data

Scheduled and completed sessions
Session progress
Answer counts per session (not content)
Creation/modification timestamps
Push notification tokens (FCM)
Analytics data (metadata only, never personal content)

Technical Data

Device type and iOS version
Crash reports and error logs (Firebase Crashlytics)
App performance data

3. How We Use Your Data

We use your personal data to:

Provide and maintain the Application's features
Authenticate you and manage your account
Sync your data across your devices
Enable pairing with your partner
Store your private answers (accessible only by you)
Share action items with your partner (only)
Send push notifications (session reminders, action notifications)
Improve the Application via anonymized analytics
Detect and fix technical errors
Comply with legal obligations

4. Legal Basis for Processing (GDPR)

We process your personal data based on the following:

Consent (Art. 6(1)(a) GDPR)

You consent to processing by creating an account and using the Application.

Contract Performance (Art. 6(1)(b) GDPR)

Processing is necessary to provide the Application's services.

Legitimate Interests (Art. 6(1)(f) GDPR)

Improving the Application, error detection, and security.

5. Privacy-First Design

Couple Check-In is designed with privacy as a priority:

Your answers to questions are strictly private - your partner can NEVER see them
Answer access is protected by Firebase security rules (owner-only)
Analytics NEVER collect answer content or personal data
Notification tokens are removed on sign-out
All data is encrypted in transit (HTTPS/TLS)
Data at rest is stored in secure Firebase data centers (europe-west region)

6. Data Sharing

We never sell your data. We share limited data with:

Google Firebase (Data Processor)

Services: Authentication, Database (Firestore), Analytics, Crash Reporting, Cloud Messaging

Location: European data centers

Apple Inc.

Services: App Store distribution, Push notifications (APNs)

Your Partner (within the Application only)

Session metadata (dates, statuses)
Action items created (titles and descriptions)
Custom questions and categories
NOT your answers - they remain strictly private

7. Data Retention

Active Accounts

We retain your data as long as your account is active.

After Account Deletion

When you request account deletion:

All your personal data is deleted within 30 days
A 30-day grace period allows for potential recovery
After 30 days, deletion is permanent and irreversible
Anonymized analytics data may be retained per Firebase's policy (14 months)

8. Your Rights (GDPR)

You have the following rights regarding your personal data:

Right of Access (Art. 15)

Request a copy of your personal data.

Right to Rectification (Art. 16)

Correct inaccurate or incomplete data.

Right to Erasure (Art. 17)

Request deletion of your data ("right to be forgotten").

Right to Data Portability (Art. 20)

Receive your data in a structured, machine-readable format.

Right to Restriction (Art. 18)

Request limitation of processing of your data.

Right to Object (Art. 21)

Object to processing of your data.

Withdraw Consent

Withdraw your consent at any time (without affecting prior lawful processing).

How to Exercise Your Rights

In-App: Go to Settings → Export My Data or Delete My Account

By Email: Contact us at ...

We will respond to your request within 30 days.

9. Data Security

We implement appropriate security measures:

Encryption in transit (TLS/HTTPS)
Firebase Authentication for secure account management
Firestore security rules (owner-only access for answers)
Regular security audits
Data storage in certified data centers (Firebase/Google Cloud)
Data minimization - we only collect what's necessary

10. Children's Privacy

The Application is intended for users aged 16 and older. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with data, contact us at ... and we will delete it.

11. International Data Transfers

Your data is stored primarily in European Firebase data centers. If data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place (EU Standard Contractual Clauses, adequacy decisions).

12. Changes to This Policy

We may update this privacy policy periodically. We will notify you of any significant changes via the Application or email. Continued use of the Application after changes constitutes acceptance of the new policy.

13. Filing a Complaint

If you believe your data protection rights have been violated, you have the right to file a complaint with your local data protection authority:

Switzerland: Federal Data Protection and Information Commissioner (FDPIC) - https://www.edoeb.admin.ch/
EU/EEA: Your national data protection authority - https://edpb.europa.eu/about-edpb/board/members_en

14. Contact Us

For any questions about this privacy policy or to exercise your rights:

Email: ...

...

We commit to responding within 30 days.