Privacy Policy

1. Introduction

My Daily Bread ("we," "our," or "us") is committed to protecting your privacy. We strive to collect as little data about you as possible to keep your privacy protected. This Privacy Policy explains how we collect, use, store, and safeguard your information when you use our mobile application ("App").

This policy applies to all users worldwide and complies with applicable privacy laws including the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).

2. Information We Collect

We practice data minimization and only collect information necessary to provide and improve our services.

2.1 Account Information

What we collect:

• Email address (if you sign in with email)
• Name (if provided through Google Sign-In)
• Profile picture (if provided through Google Sign-In)
• Unique user identifier (automatically generated)

How we collect it: Directly from you during account creation or through third-party authentication providers (Google, Apple).

Why we collect it: To create and manage your account, enable cross-device syncing, and provide customer support.

2.2 Usage Data

What we collect:

• Bible reading progress (chapters/verses read, completion status)
• Feature usage (which prayers viewed, devotionals read)
• Session information (app opens, time spent in app)
• Device information (device type, OS version, app version)
• Performance data (crashes, errors, loading times)

How we collect it: Automatically through Firebase Analytics and app functionality.

Why we collect it: To sync your progress across devices, improve app performance, fix bugs, and understand which features are most valuable to users.

2.3 Information We Do NOT Collect

We do not collect or store:

• Location data or GPS coordinates
• Contact lists or phone information
• Browsing history outside the app
• Financial information (payment processing is handled entirely by Apple)
• Precise timestamps of which Bible verses you read
• Search queries or specific content you view

3. How We Use Your Information

We use your information only for the following legitimate purposes:

• Service Delivery: Provide and maintain the app's core functionality
• Cross-Device Sync: Sync your Bible reading progress and preferences across your devices
• Notifications: Send daily devotional reminders (only if you enable notifications)
• Customer Support: Respond to your inquiries and provide technical assistance
• App Improvement: Analyze usage patterns to enhance features and user experience
• Security: Detect and prevent fraud, abuse, and security issues
• Legal Compliance: Comply with applicable laws and regulations

We will never: Sell your personal information, use your data for advertising purposes, or share your information with third parties for their marketing purposes.

4. Data Storage and Security

4.1 Where Your Data is Stored

Your data is stored securely using Firebase (Google Cloud Platform), which may store data in various regions globally. By using the app, you consent to the international transfer of your data as necessary to provide our services.

4.2 Security Measures

We implement industry-standard security measures to protect your information:

• Encryption in transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption
• Encryption at rest: Data stored in our database is encrypted
• Secure authentication: OAuth 2.0 and industry-standard authentication protocols
• Access controls: Strict access controls limit who can access your data
• Regular monitoring: Continuous security monitoring and regular security updates

Note: While we take reasonable measures to protect your data, no internet transmission is completely secure. We cannot guarantee absolute security.

5. Third-Party Services and Data Sharing

5.1 Third-Party Services We Use

We use the following third-party services to provide and improve our app. These services may collect and process data on our behalf:

5.4 Bible Text Source

The Bible text used in the App is the Douay-Rheims Bible (Challoner Revision), a public domain English translation of Scripture published in the 18th century. We do not use any third-party Bible API or service that collects data. The Bible text is stored locally in the App and does not require any data transmission for basic reading functionality.

5.2 When We Share Your Data

We share your data only in the following limited circumstances:

• Service Providers: With third-party services listed above to provide app functionality
• Legal Compliance: When required by law, court order, or government authority
• Safety: To protect the rights, property, or safety of our users or the public
• Business Transfer: In connection with a merger, acquisition, or sale of assets (users will be notified)

We do NOT: Sell your data, share it with advertisers, or use it for third-party marketing purposes.

5.3 App Tracking Transparency

We do not track your activity across other companies' apps or websites for advertising purposes. We do not use third-party advertising SDKs or sell your data to data brokers. As such, we do not request App Tracking Transparency permission.

6. Data Retention

We retain your information only as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active
• Usage Analytics: Aggregated analytics retained indefinitely; individual user data retained for 26 months (Firebase default)
• After Account Deletion: All personal data is permanently deleted within 30 days, except where required by law
• Backup Data: Deleted data may persist in backups for up to 90 days before permanent deletion

7. Your Rights and Choices

You have rights over your personal data. We provide tools within the app to exercise these rights easily.

7.1 Your Privacy Rights

7.2 How to Exercise Your Rights

All privacy controls are available directly in the app—no email requests needed.

What's included in data export: Your export file contains your email address, account creation date, Bible reading progress (books/chapters completed), app preferences, and donation history (dates only, no payment details). The file is generated automatically in JSON format for easy portability.

Need help? For technical issues with in-app features, contact us at TODO-UPDATE-BEFORE-RELEASE@example.com. We will respond within 30 days.

7.3 Additional Rights for EU/UK Users (GDPR)

If you are in the European Union or United Kingdom, you have additional rights under GDPR:

• Right to Data Portability: Use the in-app "Export My Data" feature to receive your data in JSON format (machine-readable and portable to other services)
• Right to Withdraw Consent: Withdraw consent for data processing at any time through app settings
• Right to Lodge a Complaint: File a complaint with your local data protection authority

EU/UK users can contact their local supervisory authority if you believe we have not adequately addressed your privacy concerns. We will cooperate with data protection authorities in resolving complaints.

7.4 Additional Rights for California Users (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• Right to Know: This privacy policy discloses all personal information we collect, use, and share. Use the in-app "Export My Data" feature to access your specific data.
• Right to Delete: Delete your account and all personal information through the app's account settings (certain legal exceptions may apply)
• Right to Opt-Out: We do not sell your personal information, so no opt-out is necessary
• Right to Non-Discrimination: You will not receive discriminatory treatment for exercising your privacy rights

California Disclosure: We do not sell personal information, as defined by CCPA. We have not sold personal information in the past 12 months and have no plans to do so.

7.5 Notification Preferences

Control push notifications through your device settings (iOS Settings → Notifications → My Daily Bread) or in-app preferences.

8. Children's Privacy (COPPA Compliance)

Our app is designed for users of all ages, including children. We are committed to protecting children's privacy and comply with the Children's Online Privacy Protection Act (COPPA).

What We Collect from All Users (Including Children):

• Email address (for account creation and recovery only)
• Bible reading progress (which books/chapters completed)
• Anonymous usage analytics (aggregated, non-identifiable)
• Device type and OS version (for compatibility)

What We Do NOT Collect from Children: We do not collect names, photos, precise locations, contact lists, social security numbers, or any other personal identifiers from children under 13. The Douay-Rheims Bible text is stored locally on the device and is not transmitted to our servers.

Parental Rights: Parents and guardians can review, export, or delete their child's data at any time through the app's privacy controls. For assistance, contact us at TODO-UPDATE-BEFORE-RELEASE@example.com with verification of parental relationship.

9. International Users

Our app is available worldwide. If you access our app from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States and other countries where our service providers operate. By using our app, you consent to the transfer of your information to countries outside of your country of residence, which may have different data protection rules than your country.

We take steps to ensure that your data receives an adequate level of protection in accordance with applicable laws.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

How We Notify You:

• Update the "Last updated" date at the top of this policy
• Post the new Privacy Policy on this page and in the app
• For material changes, we will notify you via email or in-app notification

Continued use of the app after changes take effect constitutes acceptance of the updated policy. If you do not agree to changes, please discontinue use and delete your account.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to all requests within 30 days. For data protection inquiries from EU/UK users, please specify "GDPR Request" in your subject line. For California users exercising CCPA rights, please specify "CCPA Request" in your subject line.