Privacy Policy

Last updated: [Insert Date]

This Privacy Policy describes how Suga Count ("we", "us", "our") collects, uses, and protects your information when you use the Suga Count mobile application ("App"), available globally, including in the EU and USA.

1. Data We Collect

1.1 Account & Authentication Data

When you create or log in to an account, we collect:

  • Email address (email/password registration)
  • Google account information (if you choose Google Sign-In)
  • Apple account information (when Apple Sign-In is enabled)
  • Authentication tokens generated by Supabase

Passwords are never stored in plain text. Supabase hashes passwords using industry-standard Argon2id.

1.2 Sugar Tracking & Usage Data

To provide core features of the App, we collect:

  • Logged sugar intake items and categories
  • Daily Sugar Score
  • Onboarding answers and preferences
  • History of streaks and tracking activity

This data is stored securely in Supabase Postgres and locally in SQLite for offline functionality.

1.3 Device & Technical Data

We automatically collect:

  • Device type and OS
  • App version
  • Crash logs and performance data
  • Push notification tokens (Firebase Cloud Messaging)

1.4 Subscription & Transaction Data

If you purchase a subscription:

  • Payments are processed by Google Play or Apple App Store
  • We receive subscription status and entitlement information from Superwall
  • We do not store credit card details

2. How We Use Your Data

  • Create and manage your account
  • Provide sugar tracking features
  • Sync your data securely
  • Calculate your Sugar Score
  • Send reminders and notifications
  • Improve app performance and security
  • Process subscription access

We do not sell your data.

3. Legal Basis for Processing (GDPR)

  • Contractual necessity - providing the App features
  • Legitimate interest - security, analytics
  • Consent - notifications

4. Data Storage & Protection

Supabase stores your cloud data in secure Postgres databases. Local data is stored in protected device storage via SQLite. All communication uses TLS encryption.

5. Data Sharing

We share limited information with:

  • Supabase (authentication, database)
  • Google (OAuth provider)
  • Apple (OAuth provider)
  • Firebase Cloud Messaging (push notifications)
  • Superwall (subscription logic)
  • App Store + Play Store (billing)

We never sell or rent your personal data.

6. Push Notifications

You may disable notifications at any time in device settings.

7. Your Rights

You have the right to access, correct, export, or delete your data.

You can delete your account directly inside the App.

When you request account deletion:

  • Your Supabase account and all cloud data are deleted immediately
  • Your local SQLite data is also deleted immediately

8. Data Retention

Data is retained only while your account is active. If you delete your account, all associated cloud and local data is removed instantly.

9. Age Requirements

You must be at least 13 years old (or minimum legal age in your country) to use Suga Count.

10. International Transfers

Supabase may process data in the EU or USA depending on your project region.

11. Changes

We may update this Privacy Policy. The revision date will always be shown at the top.

12. Contact

Email us at: [email protected]


Back to Home