This privacy policy applies to the Coffee Scouters app (hereby referred to as "Application") for mobile devices that was created by Andrei Talpos (hereby referred to as "Service Provider") as a Commercial service. This service is intended for use "AS IS".
Account Information
When you create an account, we collect:
• Email address
• Name and username
• Apple ID (if you use Sign in with Apple, stored as a SHA-256 hash)
• Profile picture (optional)
• Subscription tier and status (free, trial, premium)
Location Data
The Application collects your device's location to provide core features:
• Precise location (GPS coordinates) when you use the app to find nearby coffee shops
• Coarse location (city/state) for general area recommendations
• Check-in location data (shop location + timestamp) when you check in
• Shop visit history (which shops you've viewed or visited)
Location data is used for:
• Displaying nearby coffee shops on the map
• Providing directions to shops
• Personalized recommendations based on your preferences
• Analytics to improve shop recommendations and app performance
Device Information
We automatically collect certain device information:
• Device ID (hashed with SHA-256 for trial fraud prevention)
• Device model and manufacturer
• Operating system version
• IP address
• Push notification tokens (for sending notifications)
• App version and build number
• Time spent in the app and usage patterns
User-Generated Content
Content you create and upload includes:
• Reviews (text, ratings from 1-5 stars)
• Review photos (uploaded to our cloud storage)
• Vibe assessments (noise level, workspace quality, natural lighting, etc.)
• Shop suggestions and recommendations you submit
• Favorite shops list
• Check-in history (shop + timestamp)
• Search queries and filter preferences
Usage Data
We track how you use the Application:
• Features you access (Explore, Daily Brew, Search, etc.)
• Shops you view, favorite, or visit
• Time spent viewing shop details
• Navigation patterns within the app
• Filters and preferences you select
Payment Information
For subscriptions processed through Apple In-App Purchase:
• Subscription type (monthly or annual)
• Purchase history and transaction IDs
• Trial usage status
• Renewal status
Note: Apple processes all payments. We do not receive or store your credit card information.
Trial Abuse Prevention Data
To enforce our one-trial-per-user policy, we collect:
• Device ID (hashed with SHA-256 encryption)
• Apple ID (if using Sign in with Apple, hashed with SHA-256)
• Trial claim timestamp
This data is stored indefinitely to prevent multiple trial claims from the same device or Apple account. Hashed identifiers cannot be reversed to identify you personally.
We use the information we collect to:
• Provide and maintain the Application's core features
• Process subscriptions and manage your account
• Send push notifications (with your consent)
• Prevent fraud and enforce trial eligibility
• Display community impact metrics (Angel House donations)
• Respond to customer support inquiries
• Improve the Application's features and performance
• Analyze usage trends and user preferences
• Ensure security and prevent abuse
• Comply with legal obligations
Service Providers
We share your information with third-party service providers who help us operate the Application:
Supabase (Backend Infrastructure)
Supabase hosts all backend data and services, including:
• User accounts and profiles
• Reviews, ratings, and photos
• Check-in history and favorites
• Authentication services
• Photo storage in cloud buckets
Photos uploaded to Supabase Storage are accessible via public URLs for display within the Application.
Privacy Policy: https://supabase.com/privacy
Mapbox (Mapping Services)
Mapbox receives location data to display maps and provide directions:
• Your current GPS coordinates
• Shop locations you view
• Map interactions (zoom, pan, etc.)
Privacy Policy: https://www.mapbox.com/legal/privacy
Apple (In-App Purchases & Authentication)
Apple processes:
• Subscription purchases and renewals
• Payment processing (credit card information goes only to Apple)
• Apple Sign-In authentication
• Push notifications via Apple Push Notification Service
Privacy Policy: https://www.apple.com/legal/privacy/
Facebook (Authentication - Optional)
If you choose to sign in with Facebook, Facebook processes your authentication:
• Basic profile information (name, email)
• Facebook account ID
Privacy Policy: https://www.facebook.com/about/privacy
Google Places API (Shop Data Enrichment)
We use Google Places API to enhance coffee shop information (hours, contact info, etc.). No personal user data is shared with Google for this purpose.
Trial Abuse Prevention Database
Device IDs and Apple IDs (both SHA-256 hashed) are stored in dedicated fraud prevention tables:
• device_trials table: Hashed device IDs + trial claim timestamps
• apple_id_trials table: Hashed Apple IDs + trial claim timestamps
This data is used solely to enforce one trial per user/device and is never shared with third parties.
Legal Disclosures
We may disclose your information:
• As required by law, such as to comply with a subpoena or similar legal process
• When we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request
• With trusted service providers who work on our behalf, do not have independent use of the information, and have agreed to adhere to this privacy policy
Angel House Support
A portion of subscription revenue from Coffee Scouters supports Angel House (www.angelhouse.me), a charitable organization that builds orphanages for children in India. Community impact metrics showing the collective contribution of all Coffee Scouters subscribers may be displayed within the Application. This includes:
• Aggregated subscription counts (not individual user data)
• Total donations made to Angel House
• Number of Angel Houses built or supported
• Number of children helped
No personally identifiable information is shared with Angel House or displayed publicly in impact metrics.
What We Send
With your permission, we send push notifications for:
• New reviews on coffee shops you've favorited
• Daily Brew recommendations (personalized shop suggestions)
• Check-in reminders
• App updates and new feature announcements
• Community impact milestone updates
Data We Collect
For push notifications, we store:
• Device push notification token
• Notification preferences (which types you've enabled)
• Delivery status (whether notifications were received and opened)
How to Opt Out
You can disable push notifications:
• In iOS Settings: Settings > Coffee Scouters > Notifications
• In the app: More > Settings > Notifications
Disabling notifications does not affect your account or access to features.
Active Accounts
We retain your data for as long as your account is active and you continue using the Application.
Deleted Accounts
When you delete your account:
• Profile data (email, name, username): Deleted within 30 days
• Reviews: Anonymized (username replaced with "Former User") but review text/ratings remain visible
• Photos: Deleted from cloud storage within 30 days
• Check-in history: Anonymized (identifying information removed, aggregate occupancy data retained)
• Favorites list: Deleted within 30 days
• Hashed device/Apple IDs: Retained indefinitely for fraud prevention (cannot be reversed to identify you)
• Payment records: Retained for 7 years as required by law and Apple policies
Backup Retention
Data may persist in backups for up to 90 days after account deletion. Backups are automatically purged on a rolling schedule and are not accessible for normal operations.
All Users
You have the right to:
• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data (subject to legal retention requirements)
• Opt out of push notifications
• Uninstall the Application to stop all data collection
California Residents (CCPA)
If you are a California resident, you have additional rights:
• Right to Know: Request disclosure of what personal information we collect, use, disclose, and sell
• Right to Delete: Request deletion of your personal information (subject to exceptions)
• Right to Opt-Out: We do not sell your personal information
• Right to Non-Discrimination: You will not be discriminated against for exercising these rights
How to Exercise Your Rights
To exercise any of these rights, contact us at:
• Email: coffeescouters@proton.me
• Subject line: "Privacy Request - [Your Right]" (e.g., "Privacy Request - Data Deletion")
We will respond to your request within 30 days. We may ask for verification of your identity before processing your request.
Permanent Account Deletion
You can permanently delete your Coffee Scouters account and all associated data at any time. Once deleted, your account cannot be recovered.
Option 1: Delete in the App (Recommended)
The fastest way to delete your account:
1. Open the Coffee Scouters app
2. Go to Settings (bottom navigation)
3. Scroll to the Account section
4. Find the Danger Zone at the bottom
5. Tap "Delete Account"
6. Confirm deletion
Your account will be deleted immediately.
Option 2: Email Request
If you cannot access the app, email us at:
• Email: support@coffeescouters.com
• Subject: "Account Deletion Request"
• Include: Your registered email address and username
We will process your request within 48 hours.
Complete Account Deletion Instructions
For detailed step-by-step instructions, visit our dedicated Account Deletion page.
What Gets Deleted
When you delete your account, we permanently remove:
• Personal information (name, email, profile photo)
• All user-generated content (reviews, ratings, photos)
• Saved data (favorites, check-in history)
• Subscription information
• Account settings and preferences
Note: Some data may remain in backups for up to 30 days before permanent deletion.
Subscription Cancellation
Important: Deleting your account does NOT cancel your Google Play subscription. You must cancel it separately in the Google Play Store to avoid future charges.
Technical Security Measures
The Service Provider is concerned about safeguarding the confidentiality of your information. We implement industry-standard security measures:
• Data encrypted in transit using TLS/SSL (HTTPS)
• Data encrypted at rest using AES-256 encryption
• Password hashing using bcrypt (passwords are never stored in plain text)
• SHA-256 hashing for device identifiers and Apple IDs (irreversible, protects privacy)
• Regular security audits and vulnerability assessments
Access Controls
• Role-based access control (admin, developer, user roles)
• Multi-factor authentication for administrative access
• Row-level security (RLS) policies in database (users can only access their own data)
Photo Security
• Photos stored in secure cloud storage with public URLs (required for display)
• Content moderation for inappropriate content
• Automated malware scanning on upload
• CORS restrictions to prevent unauthorized access
Incident Response
In the event of a data breach:
• We will notify affected users within 72 hours
• Notification will be sent via email to your registered address
• We will investigate and remediate the incident
• We will report to relevant authorities as required by law
The Service Provider does not use the Application to knowingly solicit data from or market to children under the age of 13.
The Application does not address anyone under the age of 13. The Service Provider does not knowingly collect personally identifiable information from children under 13 years of age. In the case the Service Provider discover that a child under 13 has provided personal information, the Service Provider will immediately delete this from their servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact the Service Provider (support@coffeescouters.com) so that they will be able to take the necessary actions.
Coffee Scouters is operated from the United States. Your data is stored on servers located in the United States (via Supabase infrastructure). If you are accessing the Application from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers and service providers are located. By using the Application, you consent to the transfer of your information to the United States and other countries where we operate.
You can stop all collection of information by the Application easily by uninstalling it. You may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network. You can also request deletion of your account and data by contacting us at coffeescouters@proton.me.
This Privacy Policy may be updated from time to time for any reason. The Service Provider will notify you of any material changes to the Privacy Policy by:
• Posting the new Privacy Policy on this page
• Updating the "Effective Date" below
• Sending email notification for significant changes (when appropriate)
• Displaying an in-app notification for sign ificant changes
You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.
This privacy policy is effective as of 2025-01-06
By using the Application, you are consenting to the processing of your information as set forth in this Privacy Policy now and as amended by us.
If you have any questions regarding privacy while using the Application, or have questions about the practices, please contact the Service Provider via email at coffeescouters@proton.me.
For Privacy-Related Requests:
• Data access requests
• Data deletion requests
• Data correction requests
• CCPA rights requests
• General privacy questions
Email: support@coffeescouters.com with subject "Privacy Request"