Privacy Policy

JoLloRa ("we," "our," or "us") respects your privacy and is committed to protecting it.

This Privacy Policy explains what information we collect, how we use it, how we share it, and what choices and rights you have in relation to your information.

For the purposes of applicable data protection laws, including the GDPR where applicable, JoLloRa is the data controller for the personal data described in this policy.

2.1 Information You Provide

• Account Information: your email address and password when you create or use an account.
• User Content: stories you generate, save, edit, or share through the app.
• Preferences: your selected language, content preferences, story settings, theme selections, and age settings.
• Support and Contact Information: your name, email address, and any message you send to us through our contact form or support channels.

2.2 Information Collected Automatically

• Usage Data: information about how you use the app, including feature usage, interactions, session activity, and general engagement.
• Device and Technical Information: device type, operating system, app version, language, approximate technical diagnostics, and unique app or device-related identifiers where required to operate the service.
• Crash and Performance Data: crash logs, diagnostics, and performance information used to maintain and improve reliability.
• Push Notification Tokens: device tokens or messaging identifiers used to deliver notifications, where you have enabled notifications.

2.3 Information from Third Parties and Service Providers

• Supabase: authentication, database, and storage services.
• Mixpanel: product analytics and usage measurement.
• Sentry: crash reporting, diagnostics, and performance monitoring.
• Google / Gemini: AI content generation used to create stories from prompts and preferences you provide.
• RevenueCat: subscription and entitlement management.
• Google Play / Apple App Store: processing subscriptions and in-app purchases through platform billing systems.
• Expo / Firebase Cloud Messaging: push notification delivery and related messaging infrastructure.
• Firebase Cloud Functions: backend function execution including contact form processing or related service actions.
• Firebase App Check: app integrity and API protection. App Check is used to verify requests come from a genuine app instance and is not used to build advertising profiles.
• Resend: email sending for support and contact workflows where applicable.

We do not sell your personal information. We do not serve personalized ads and we do not use advertising identifiers for ad targeting.

• Create, authenticate, and manage your account
• Generate, save, sync, and display your stories
• Personalize app features based on your selected preferences
• Process subscriptions, purchases, and entitlements
• Deliver push notifications, reminders, and service-related updates where enabled
• Improve app functionality, safety, reliability, and UX
• Analyze product usage and app performance
• Respond to support requests and contact inquiries
• Prevent abuse, fraud, and unauthorized access
• Comply with legal obligations and enforce our terms

• Contract necessity: to provide the app, account, subscriptions, story generation, and related features
• Legitimate interests: to improve the app, secure the service, prevent abuse, and troubleshoot issues
• Consent: where required, including certain analytics, notifications, or similar features
• Legal obligations: where processing is necessary to comply with applicable law

JoLloRa may offer paid subscriptions or in-app purchases. When you purchase a subscription or other digital service, payment is processed by the relevant platform provider, such as Google Play or Apple, and subscription status may be managed through RevenueCat. We do not store full payment card details.

When you generate stories, your prompts, preferences, and related inputs may be sent to third-party AI service providers in order to generate content and return results to you. We use this information only to provide the requested story generation features and improve the reliability of the service.

We do not sell, trade, or rent your personal information. We may share information with service providers that help us operate the service, including:

• Supabase for authentication, storage, and database services
• Mixpanel for analytics
• Sentry for crash reporting and monitoring
• Google / Gemini for AI story generation
• RevenueCat for subscription management
• Google Play / Apple for in-app payment processing
• Expo / Firebase Cloud Messaging for push notification delivery
• Firebase Cloud Functions for backend task execution
• Resend for email delivery where applicable

We may also disclose information if required by law, legal process, or to protect rights, users, safety, and the security of our services.

If you allow notifications, we may send you service-related alerts, reminders, updates, or promotional messages depending on your settings. You can manage notification preferences in the app where available, and you can also disable notifications from your device settings at any time.

We use reasonable technical and organizational safeguards to protect your information, including encryption in transit (such as HTTPS/TLS), access controls, and app integrity protections such as Firebase App Check.

No method of transmission, storage, or security system is completely secure, and we cannot guarantee absolute security.

We retain information for as long as necessary to provide the app, maintain your account, comply with legal obligations, resolve disputes, and enforce our agreements.

• Account and story data may be retained while your account is active
• Contact form submissions may be retained for support and record-keeping purposes
• Crash, diagnostic, and analytics information may be retained according to operational needs and provider retention settings
• When account deletion is requested and approved, we delete or anonymize information within a reasonable period unless we must keep certain data for legal, security, fraud prevention, billing, or compliance reasons

• Access, correction, and deletion
• Restriction, portability, and objection where applicable
• Withdrawal of consent where processing is based on consent

You may request deletion of your account and associated personal data through our contact form. You may also use any in-app account deletion method where available.

JoLloRa is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe a child has provided us with personal information, please contact us through our contact form so we can review and delete the data where appropriate.

Your information may be processed in countries other than your own. Where required by law, we take appropriate steps to ensure that international transfers are subject to appropriate safeguards.

We may update this Privacy Policy from time to time. When we do, we will post the updated version here and update the Last Updated date above. Where required, we may also provide additional notice within the app or by other appropriate means.

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please use our contact form.