Privacy Policy

Last Updated: November 19, 2025
Effective Date: November 19, 2025

This Privacy Policy describes how Sown ("we," "us," or "our") collects, uses, and protects information when you use our mobile application (the "App"). By using the App, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Information You Provide

Account Information: Email address and authentication credentials (managed via Firebase Authentication)
Payment Information: We use Stripe to process payments. We do NOT store your credit card details on our servers. Stripe securely handles all payment card information.
User Settings: App usage rates, currency preferences.

1.2 Automatically Collected Information

App Usage Data: Time spent on tracked social media applications (Instagram, Youtube, Facebook, Twitter, TikTok, Snapchat, LinkedIn, Reddit)
Usage Statistics: Daily costs, billing history, and transaction logs
Device Information: Operating system version, device type, app version
Log Data: Crash reports, performance data, and error logs

1.3 Android Permissions

Usage Access Permission: Required to track foreground time of social media apps. This data never leaves your device except to sync to your private Firestore account.
Internet Access: Required for authentication, payment processing, and data synchronization
Notifications: Optional, for low balance alerts and daily summaries

2. How We Use Your Information

We use collected information to:

Provide Core Services: Track social media usage and calculate associated costs
Process Payments: Handle balance top-ups securely via Stripe
Account Management: Maintain your user account, preferences, and balance
Service Improvement: Analyze aggregated, anonymized usage patterns to improve the App
Notifications: Send optional alerts about your balance and usage (if enabled)
Legal Compliance: Respond to legal requests and prevent fraud

WE DO NOT:

Sell your personal data to third parties
Use your data for advertising or marketing by third parties
Share your usage data with social media companies

3. Data Storage and Security

3.1 Storage Location

Your data is stored on Google Firebase (Firestore and Authentication) with servers located in the United States
Usage statistics are synced from your device to your private Firestore database
Payment data is handled exclusively by Stripe and never stored on our servers

3.2 Security Measures

Encryption: All data transmitted between your device and our servers uses industry-standard TLS/SSL encryption
Authentication: Firebase Authentication with secure token-based access
Access Control: Only you can access your usage data through authenticated requests
Payment Security: PCI DSS compliant payment processing through Stripe
Data Isolation: Each user's data is isolated in separate database collections

3.3 Data Retention

Active Accounts: Data is retained as long as your account remains active
Account Deletion: Upon account deletion, all personal data is permanently deleted within 30 days
Financial Records: Transaction records may be retained for up to 12 months for accounting and tax compliance purposes, even after account deletion
Legal Holds: Data may be retained longer if required by law or legal process

4. Data Sharing and Disclosure

We share your information only in the following limited circumstances:

4.1 Service Providers

Firebase/Google Cloud: For authentication, database, and cloud functions
Stripe: For payment processing (subject to Stripe's Privacy Policy)

4.2 Legal Requirements

We may disclose your information if required to:

Comply with valid legal process (subpoena, court order, warrant)
Protect our rights, property, or safety
Investigate fraud or security issues
Enforce our Terms of Service

4.3 Business Transfers

If Sown is acquired or merged with another company, your data may be transferred to the new entity. You will be notified of any such change.

WE WILL NEVER:

Sell your data to data brokers or advertisers
Share your usage patterns with employers or educational institutions
Provide social media companies with your tracking data

5. Your Privacy Rights

5.1 Access and Control

You have the right to:

Access: View all data we have collected about you
Export: Download a copy of your data in machine-readable format
Correct: Update or correct inaccurate information
Delete: Permanently delete your account and all associated data (subject to legal retention requirements)
Opt-Out: Disable notifications at any time through app settings

5.2 California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

Right to know what personal information is collected
Right to know if personal information is sold or disclosed
Right to opt-out of sale of personal information (we do not sell data)
Right to deletion
Right to non-discrimination for exercising your rights

5.3 European Privacy Rights (GDPR)

If you are in the European Economic Area, you have rights under the General Data Protection Regulation:

Right to access, rectification, and erasure
Right to restrict processing and data portability
Right to object to processing
Right to withdraw consent
Right to lodge a complaint with a supervisory authority

5.4 How to Exercise Your Rights

To exercise any of these rights, contact us at: hello@sownapp.com

We will respond within 30 days.

6. Children's Privacy

Sown is NOT intended for users under 18 years of age. We do not knowingly collect personal information from children under 18. If we discover that a child under 18 has provided us with personal information, we will delete it immediately. If you believe a child has provided us with information, contact us at hello@sownapp.com.

7. International Data Transfers

If you access the App from outside the United States, your information may be transferred to, stored, and processed in the United States. By using the App, you consent to this transfer. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

8. Third-Party Services

The App integrates with:

8.1 Firebase (Google)

Purpose: Authentication, database, cloud functions
Privacy Policy: https://firebase.google.com/support/privacy

8.2 Stripe

Purpose: Payment processing
Privacy Policy: https://stripe.com/privacy

These services have their own privacy policies. We are not responsible for their privacy practices.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be effective immediately upon posting in the App. Material changes will be notified via:

In-app notification
Email notification (if you have provided an email address)

Your continued use of the App after changes constitutes acceptance of the updated policy.

10. Limitation of Liability

                TO THE MAXIMUM EXTENT PERMITTED BY LAW:
                We provide the App "AS IS" without warranties of any kind
We are not liable for any data breaches or unauthorized access caused by third-party service providers (Firebase, Stripe)
We are not responsible for data loss due to device failure, uninstallation, or service interruption
Our total liability for any claims related to privacy shall not exceed the amount you have paid us in the preceding 12 months (or $100, whichever is less)

            

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices:

Email: hello@sownapp.com
Support: hello@sownapp.com
Response Time: Within 24 hours

12. Consent

BY USING SOWN, YOU ACKNOWLEDGE THAT:

✓ You have read and understood this Privacy Policy
✓ You have read and understood our Terms of Service
✓ You agree to the collection and use of information as described
✓ You are at least 18 years of age
✓ You consent to international data transfers to the United States

If you do not agree, do not use the Service.