Download on the App Store Get it on Google Play
Download on the App Store Get it on Google Play

Privacy Policy

How we collect, use, and protect your information

Effective Date: April 20, 2025

Last Updated: August 8, 2025

This Privacy Policy explains how Firelog ("we", "us", or "our") collects, uses, and protects your information when you use the Firelog mobile application (the "App"). By using the App you agree to the practices described below.

1. Information We Collect

1.1 Information You Provide

  • Google Account information when you sign in
  • Firebase project access credentials
  • Budget settings and thresholds you create or edit inside the App
  • App usage preferences and settings

1.2 Information Automatically Collected

  • Device information (e.g., model, operating‑system version)
  • App usage statistics (e.g., screens visited, tap events)
  • Error logs and performance data

1.3 Google User Data We Access

To provide its core features, the App needs the following Google OAuth scopes and data:

Scope Data Accessed Why We Need It
https://www.googleapis.com/auth/cloud-billing Cloud Billing budget objects (amounts, alert rules) Display your existing budgets and allow you to create or update them from your phone.
https://www.googleapis.com/auth/cloud-billing.readonly Billing‑account metadata (ID, currency) Populate project/billing‑account pickers.
https://www.googleapis.com/auth/firebase Firebase project settings & usage metrics Show real‑time usage and configuration.
https://www.googleapis.com/auth/firebase.readonly Firestore/Functions/Auth statistics Read‑only monitoring dashboards.
openid, email, profile Your Google email address and basic profile Associate your projects with the correct user account and personalise the UI.

We request only the permissions necessary for the features you use. If you disable a feature (e.g., budget editing) we restrict the scope request to the corresponding read‑only variant whenever possible.

2. How We Use Your Information

We use the collected information to:

  • Authenticate you and link your Google projects to the App
  • Display Firebase and Cloud Billing data in a mobile‑friendly dashboard
  • Allow you to view and modify Cloud Billing budgets directly in the App
  • Send critical notifications about spend thresholds you configure
  • Improve App stability, performance, and user experience
  • Process and manage in‑app subscriptions via RevenueCat

3. Data Sharing, Transfer & Disclosure

  • We do not sell, rent, or lease your information to third parties.
  • We share data only with service providers that enable core functionality (listed in Section 5) and only under strict confidentiality obligations.
  • We may disclose information if required by law or valid legal process.
  • In the event of a merger or acquisition, you will receive prior notice before your data is transferred and becomes subject to a different policy.

4. Data Storage & Security

  • Google Credentials: We never store your Google password or refresh token on our servers.
  • Access Tokens: Short‑lived OAuth access tokens and Cloud Billing budget data are stored locally on your device using the iOS Keychain / Android Keystore and are automatically purged after 24 hours or when you sign out.
  • Encryption: All network traffic is protected with TLS 1.2+.
  • Internal Controls: Only authorised personnel with a need‑to‑know may access aggregated, anonymised analytics.

5. Third‑Party Services

Service Purpose
Google Firebase Authentication and Firebase API access
Google Cloud Billing Budget API Retrieve and update Cloud Billing budgets
RevenueCat Subscription and purchase management
Apple App Store / Google Play App distribution and payment processing

Each third‑party service is bound by its own privacy commitments and meets or exceeds industry security standards.

6. Your Rights & Choices

  • Access & Deletion: You may request a copy of the personal information we hold about you or ask us to delete it.
  • Opt‑Out: You can disable non‑essential analytics in the Settings screen at any time.
  • Revoke Google Access: Visit Google Account › Security › Third‑party apps with account access to revoke Firelog's OAuth permissions, including Cloud Billing.
  • Subscription Management: Cancel or modify your subscription from within the App or via the platform store (App Store / Google Play).

7. Sensitive Google OAuth Scopes

Firelog uses Google‑defined sensitive scopes (listed in Section 1.3). We follow Google's Limited Use requirements:

  1. We only access the data needed for the feature you invoke.
  2. Your Google data is never used for advertising.
  3. We never share or transfer Google data except as outlined in this policy.
  4. You can revoke access at any time (see Section 6).

8. Changes to This Policy

We may update this Privacy Policy periodically. We will post any changes in the App and update the "Last Updated" date above. Material changes will be announced via in‑App notification or email.

9. Contact Us

If you have questions or concerns about this Privacy Policy, please use the contact form on our website.