Privacy Policy

Last updated: April 2026

Tiny Marks ("the app", "we") is a habit accountability app. This policy explains what we collect, how we use it, and what rights you have. We try to keep this plain; if anything is unclear, email us.

Summary

What we collect

Account data

User content

What we do not collect

How we use it

Only to provide the app's core functionality: syncing your data across your devices, letting your partner see shared content in your space, and keeping you signed in. We do not use your data for advertising, training models, or any purpose unrelated to the app.

Third-party services

We use Firebase (operated by Google) to store and sync your data and handle authentication. Firebase processes the data listed above only to provide storage, auth, and sync. Firebase does not sell this data, and we do not use Firebase Analytics or Firebase Ads. See Firebase's privacy documentation for details.

We use Apple Sign In and Google Sign In to authenticate users. These providers receive a sign-in request from the app; we receive back your email and a user ID.

Data storage and location

Your data is stored on Google Cloud Platform (Firebase's infrastructure). Data may be processed in the United States or other regions where Google operates. We use HTTPS/TLS for all network traffic.

Retention

We keep your data while your account is active. When you delete your account (see below), all your content is permanently removed within 30 days.

Your rights

Deleting your account

Open the app → Profile → Settings → Delete Account. This removes all your data from our systems. The action cannot be undone.

If you can't access the app, email us at sky.stevenwang@gmail.com and we'll delete your account manually.

Accessing or exporting data

Email us and we'll send you a copy of your data within 30 days.

Correcting data

You can edit or delete any content directly in the app.

Children

Tiny Marks is not directed to children under 13. We do not knowingly collect data from children under 13. If you believe a child has created an account, contact us and we will delete it.

Security

We use Firebase's built-in security (Firestore Security Rules) to ensure only you and your partner can access data in your space. Transport is secured with HTTPS/TLS. No system is perfectly secure; if a breach occurs, we will notify affected users.

Changes to this policy

If we make material changes, we will update the "Last updated" date above and, for significant changes, notify you in the app. Continued use of the app after a change means you accept the revised policy.

Contact

Questions or concerns? Email sky.stevenwang@gmail.com.