Privacy Policy

Last updated: May 9, 2026

1. Introduction

Mosaic Days ("we", "the Service") is built around a local-first principle: the vast majority of your data lives on your device and never reaches our servers. This Privacy Policy explains exactly what we collect, what we don't, and how the limited cloud-side data is handled.

2. Local-First Architecture

Most modules — including bookkeeping, budgets, to-dos, business cards, quotations, photos, diary, mood diary, pets, travel planning, retro camera, etc. — store all data locally (Realm / AsyncStorage / device file system). This data is NOT uploaded, NOT mirrored, and NOT readable by us.

The only module that synchronizes user content to our cloud database is Saved Places (Map Collection), in order to enable sharing and cross-device usage. See Section 3.2.

3. Information We Collect

3.1 Account Information (Cloud)

If you choose to register an account (required only for cloud-synced features), we collect:

• Email address, display name, authentication identifier (Google / Apple sign-in)
• Entitlement state (free / ad-unlock / annual / lifetime)
• Monetization counters: ad-watch count, daily-unlock state, points and trial-period status
• Push notification token and notification preferences (when enabled)
• Device brand, model and OS version (sent alongside the push token)

3.2 Saved Places Cloud Data

When you use the Saved Places module, the following data is uploaded and stored in our cloud database, linked to your account:

• Place name, address, coordinates, category and tags
• Notes, photos and ratings you attach to a place
• Collections (groupings) and sharing settings
• Visit records you choose to log

3.3 Locally Stored Data (NOT Uploaded)

The following data stays on your device only and is never sent to our servers:

• Transactions, budgets, wishlist items, financial insights, asset/wealth records
• To-dos, diary, mood diary entries, pet records
• Business cards, quotations, clients, products, company profile
• Photos, retro-camera shots, receipt gallery images
• Travel plans, bills, keyboard phrases
• Voice recordings (transcribed locally with whisper.rn)
• Receipt OCR text (recognized locally with Google ML Kit on-device)
• Geofence settings, cooldown timers and notification logs

3.4 Automatically Collected Information

• Device brand, model, OS version and app version
• IP address and approximate location derived from it
• Advertising identifier (IDFA on iOS, AAID on Android) collected by Google Mobile Ads (AdMob)
  • On iOS 14.5+, IDFA is only available if you grant permission via the App Tracking Transparency prompt. If you decline, only non-personalized ads are shown.
• Ad interaction signals (impressions, clicks, view duration)
• Basic API request logs on our backend for security and abuse prevention

4. Location Information

Location features (Saved Places, location-aware bookkeeping reminders, geofencing) are opt-in. When enabled:

• GPS coordinates and motion-sensor data are processed on-device
• Coordinates of Saved Places you create are uploaded to our cloud (Section 3.2)
• Geofence settings, cooldown windows and notification logs are stored locally and not uploaded
• You can disable location features at any time

5. Third-Party Services

We do NOT sell your personal data. The Service uses the following third-party components:

• Google Sign-In / Apple Sign-In — authentication only
• Google Mobile Ads (AdMob) — see Section 5.1 below
• Apple In-App Purchase / App Store Server API — processes lifetime and annual subscription payments
• React Native Maps (Google Maps on Android, Apple Maps on iOS)
• Google ML Kit Text Recognition — processed entirely on-device
• whisper.rn — voice-to-text, processed entirely on-device
• Zeabur — hosting provider for backend API and Saved Places database

5.1 Advertising (Google AdMob) and App Tracking Transparency

The Service displays rewarded ads through Google AdMob to support free access. Watching ads is voluntary; subscribers (annual / lifetime) never see ads.

What AdMob collects:

• Advertising identifier (IDFA on iOS, AAID on Android)
• IP address and approximate location
• Device type, OS version, language, time zone
• Ad impressions, clicks, view duration and rewards earned

App Tracking Transparency (iOS 14.5+):

The first time you tap "watch ad to unlock", we show a brief explanation, followed by Apple's standard tracking permission dialog. Your choice controls whether AdMob receives your IDFA:

• Allow Tracking → personalized ads
• Ask App Not to Track → non-personalized ads only; the app continues to work normally

You can change this choice at any time in iOS Settings → Privacy & Security → Tracking.

AdMob's data practices are governed by Google's Privacy Policy and Google Ads Technology Policy. We do not have access to or control over the data Google collects directly.

6. Device Permissions

• Location (foreground / background) — Saved Places, geofencing, location-aware reminders
• Camera — receipt scanning, business card scanning, retro camera, photo capture
• Microphone — voice bookkeeping (audio is processed locally)
• Photo library — selecting and saving images
• Notifications — reminders, geofence alerts, daily review
• Motion sensors — for movement-state detection
• Tracking (iOS) — ad personalization (you may decline)

7. Data Security

• Network requests use HTTPS / TLS
• Passwords are hashed; we do not store plaintext credentials
• The vast majority of personal data never leaves your device
• We apply access controls and review backend security periodically

8. Your Rights

• Access — view what we hold about your account
• Correction — update inaccurate account information
• Deletion — cloud-stored Saved Places will be permanently removed within 30 days
• Portability — export local data via in-app export tools
• Withdraw consent — disable location, notifications or any optional feature at any time

9. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us and we will remove it.

10. International Data Transfer

Cloud data may be stored on servers in regions outside your country. By using cloud-synced features, you consent to such transfers.

11. Data Retention

• Local data: stays on your device until you delete it or uninstall the app
• Account and Saved Places: retained while your account is active; permanently removed within 30 days of account deletion
• Backend request logs: retained for a short window for security/abuse purposes
• Longer retention applies only where required by law

12. Policy Changes

We may update this Privacy Policy from time to time. Material changes will be communicated via the app or this website. Continued use after changes constitutes acceptance.

13. Contact Us

• Email: [email protected]