Privacy Policy for New Year's Inspirations

Last Updated: December 29, 2025

Effective Date: December 29, 2025

1. Introduction

Welcome to New Year's Inspirations ("we," "our," or "us"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information. This Privacy Policy explains our data practices for the New Year's Inspirations mobile application (the "App").

By using our App, you agree to the collection and use of information in accordance with this policy. If you do not agree with our practices, please do not use the App.

2. Information We Collect

2.1 Personal Information You Provide

Email Address

• What we collect: Your email address for authentication purposes

• Why we collect it: To create and secure your account using passwordless authentication

• Legal basis (GDPR): Contractual necessity and your consent

• How long we keep it: Until you delete your account or request data deletion

2.2 User-Generated Content

Resolutions and Tasks

• What we collect: Your New Year's resolutions, tasks, notes, progress updates, and completion status

• Why we collect it: To provide core App functionality, enable progress tracking, and sync your data across devices

• Storage location: Cloud Firestore (Google Cloud Platform)

• Legal basis (GDPR): Contractual necessity

• How long we keep it: Until you delete your account or request data deletion

User Preferences

• What we collect: Theme settings, notification preferences, and other customization choices

• Why we collect it: To personalize your App experience

• Storage location: Local device storage and Cloud Firestore for cross-device sync

• Legal basis (GDPR): Legitimate interest in providing customized services

• How long we keep it: Until you delete your account or request data deletion

2.3 Automatically Collected Information

Device Information

• What we collect: Device type, operating system version, unique device identifiers, app version

• Why we collect it: To ensure App compatibility, troubleshoot issues, and improve performance

• Legal basis (GDPR): Legitimate interest in maintaining and improving our services

• How long we keep it: Aggregated anonymously after 90 days

Usage Data

• What we collect: App usage patterns, feature interactions, session duration

• Why we collect it: To understand how users interact with the App and improve functionality

• Legal basis (GDPR): Legitimate interest in service improvement

• How long we keep it: Aggregated anonymously after 90 days

3. How We Use Your Information

We use the collected information for the following purposes:

• Account Management: Creating, maintaining, and securing your account

• Service Delivery: Providing App features including resolution tracking, task management, and progress visualization

• Notifications: Sending local reminders and notifications based on your preferences

• Synchronization: Syncing your data across devices using Cloud Firestore

• Feature Functionality: Enabling shake detection for random resolution suggestions

• Social Sharing: Facilitating the sharing of your progress and resolutions when you choose to do so

• App Improvement: Analyzing usage patterns to enhance features and user experience

• Technical Support: Troubleshooting issues and providing customer support

• Security: Detecting and preventing fraud, abuse, and security incidents

4. Data Sharing and Third-Party Services

4.1 Firebase (Google Cloud Platform)

We use Firebase services as our data processor for:

• Firebase Authentication: Passwordless email authentication

• Cloud Firestore: Secure cloud storage for your resolutions, tasks, and preferences

Data Processor Details:

• Service Provider: Google LLC

• Location: Data may be processed in the United States and other Google data center locations

• Purpose: Authentication and data storage services

• Security: All data is encrypted in transit (HTTPS/TLS) and at rest

• Data Processing Agreement: Firebase Data Processing and Security Terms apply

Firebase does not use your data for advertising or share it with third parties beyond service provision. For more information, see Firebase Privacy and Security.

4.2 Data We Do NOT Share

We do not:

• Sell your personal information to third parties

• Share your data with advertisers

• Use third-party analytics services (we do not currently implement Google Analytics, Firebase Analytics, Crashlytics, or similar tools)

• Share your content without your explicit action (e.g., when you use sharing features)

4.3 Legal Requirements

We may disclose your information if required by law, legal process, or governmental request, or when we believe disclosure is necessary to:

• Comply with legal obligations

• Protect our rights, property, or safety

• Prevent fraud or security issues

• Protect the rights and safety of our users

5. Data Storage and Security

5.1 Security Measures

We implement industry-standard security measures to protect your data:

• Encryption in Transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption

• Encryption at Rest: Data stored in Cloud Firestore is encrypted at rest

• Access Controls: Strict Firestore Security Rules limit data access to authenticated users and their own data

• Authentication Security: Firebase Authentication handles secure passwordless login

• Regular Security Reviews: We periodically review and update our security practices

5.2 Data Retention

• Active Accounts: Your data is retained as long as your account is active

• Deleted Accounts: When you delete your account, your data is marked for deletion and removed within 30 days

• Backup Retention: Backup copies may persist for up to 180 days in Firebase systems before complete removal

• Anonymized Data: We may retain anonymized, aggregated usage statistics indefinitely for analytical purposes

5.3 International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States, where Google operates Firebase infrastructure. These countries may have different data protection laws than your country. We ensure appropriate safeguards are in place through:

• Firebase's compliance with the EU-U.S. Data Privacy Framework

• Standard Contractual Clauses (SCCs) as approved by the European Commission

• Google's commitment to GDPR compliance

6. Your Privacy Rights

6.1 Rights Under GDPR (EU Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights:

Right to Access

• You can request a copy of the personal data we hold about you

Right to Rectification

• You can update or correct your personal information directly in the App or by contacting us

Right to Erasure ("Right to be Forgotten")

• You can request deletion of your account and all associated data

Right to Data Portability

• You can request your data in a structured, machine-readable format

Right to Restriction of Processing

• You can request that we limit how we use your data

Right to Object

• You can object to our processing of your data for specific purposes

Right to Withdraw Consent

• You can withdraw your consent at any time where we rely on consent as the legal basis

Right to Lodge a Complaint

• You can file a complaint with your local data protection authority

6.2 How to Exercise Your Rights

To exercise any of these rights, please contact us at: privacy@hopefull.ie

We will respond to your request within 30 days. To protect your privacy, we may need to verify your identity before fulfilling your request.

6.3 Account and Data Deletion

You can delete your account and all associated data at any time:

Option 1: In-App Deletion (Recommended)

• Navigate to Settings or Account section in the app

• Select "Delete Account"

• Confirm your decision

• Your account and all data will be deleted immediately

Option 2: Web Request

• Visit our account deletion page: https://hopefull.ie/account-deletion.html

• Follow the instructions to delete your account via the app or email

Option 3: Email Request

• Send an email to privacy@hopefull.ie with subject "Account Deletion Request"

• Include the email address associated with your account

• We will process your request within 48 hours

When you delete your account, all your personal data (email, resolutions, tasks, preferences) will be permanently removed within 30 days. Backup copies may persist for up to 180 days in Firebase systems before complete removal.

6.4 In-App Data Management

You can also manage your data directly within the App:

• View and edit your resolutions, tasks, and preferences at any time

• Delete individual items without deleting your entire account

• Export your data (contact us for assistance)

• Adjust notification preferences in App settings

7. Children's Privacy

The App is not intended for children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@hopefull.ie, and we will delete such information promptly.

8. Device Permissions

The App requests the following device permissions:

Permission Purpose Required/Optional Internet Sync data with Cloud Firestore, authenticate users Required Notifications Send local reminders for your resolutions and tasks Optional (you control this in settings) Sensors (Accelerometer) Detect shake gestures for random resolution suggestions Optional (feature can be disabled) Storage Save screenshots when you use the sharing feature Optional (only when you share) Network State Check connectivity status for sync operations Required

You can manage most permissions through your device settings. Denying optional permissions will limit certain features but will not prevent core App functionality.

9. Cookies and Tracking

The App does not use cookies for tracking. Firebase Authentication may use local storage and session tokens to maintain your logged-in state, but these are essential for App functionality and do not track your behavior across other apps or websites.

We do not currently use:

• Third-party advertising networks

• Analytics cookies or tracking pixels

• Cross-app or cross-site tracking technologies

10. Social Sharing Features

When you use the App's sharing features to share your progress or resolutions:

• Screenshot Capture: The App may capture a screenshot of your selected content

• Your Control: You choose what, when, and where to share (via your device's native sharing options)

• No Automatic Sharing: We never share your content without your explicit action

• Third-Party Platforms: Once you share to a third-party platform (e.g., social media), that platform's privacy policy applies

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or App features. When we make significant changes:

• We will update the "Last Updated" date at the top of this policy

• We will notify you through the App or via email (if you've provided one)

• Continued use of the App after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically. Previous versions are available upon request.

12. Data Protection Officer

For GDPR compliance purposes, you can contact our Data Protection Officer at: privacy@hopefull.ie

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@hopefull.ie

Response Time: We aim to respond to all inquiries within 48 hours and fulfill data requests within 30 days as required by GDPR.

14. Jurisdiction and Governing Law

This Privacy Policy is governed by the data protection laws applicable to your location:

• For EEA users: General Data Protection Regulation (GDPR)

• For UK users: UK GDPR and Data Protection Act 2018

• For California users: California Consumer Privacy Act (CCPA)

• For all other users: Applicable local data protection laws

15. Your Consent

By using the New Year Resolutions App, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your information as described herein.

Summary of Key Points:

✅ We only collect data necessary for App functionality ✅ Your email is used solely for authentication ✅ Your resolutions and tasks are stored securely in Firebase ✅ We never sell your data or use it for advertising ✅ You can delete your account and data at any time ✅ All data is encrypted in transit and at rest ✅ You have full rights to access, correct, and delete your information ✅ We comply with GDPR, CCPA, and international privacy laws

Thank you for trusting New Year Resolutions with your goal-setting journey! 🎉

This privacy policy was last updated on December 29, 2024.