Legal

Privacy Policy: Piplu

Last updated 15 July 2026

This Privacy Policy explains what personal data the Piplu mobile app (the "app") processes and how we handle it.

Data controller

Controller: Advia d.o.o.

Privacy contact: maj.valentinc13@gmail.com

Summary

  • The app works entirely on your device. Without signing in, we do not send any personal data anywhere.
  • We do not upload photos or video. The camera is used on-device only for alarm missions (object scan, augmented-reality hunt, a camera gesture game, squat and push-up counting). Captures stay on the device.
  • If you sign in (Google or Apple), we store your progress in the cloud so you don't lose it when changing phones.
  • We do not sell your data and do not use it for advertising.

What we process and why

  1. On-device data (no account): alarms, statistics (streaks, response time, exercise reps), onboarding choices and settings are stored locally on your device. Without sign-in we never receive these.
  2. Account data (only if you sign in via Google or Apple): your email, name and a unique account identifier from the sign-in provider. Purpose: creating your account and storing progress in the cloud.
  3. Cloud progress (signed-in users only): your alarm list, game statistics and onboarding profile are stored in our cloud database (Supabase) so your progress survives reinstalls and device changes.
  4. Camera: used on-device only for missions (object scanner, augmented-reality hunt, a camera gesture game, squat and push-up counting via body-pose detection). We do not store or transmit images or video anywhere.
  5. Diagnostics and crash reports (Sentry): to fix bugs we collect technical data on crashes (device type, OS and app version, error details). Servers are in the EU.
  6. Notifications and alarms: for reliable ringing the app uses notification and alarm permissions. We do not use this for advertising.

Legal basis (GDPR)

  • Account and sync: performance of the service you requested, and your consent at sign-in.
  • Diagnostics and crashes: our legitimate interest in a stable app.

Who we share data with (processors)

We do not sell data. We use trusted providers who process data on our behalf:

  • Supabase: cloud database (account and progress)
  • Google / Apple: sign-in (authentication)
  • Sentry: crash reports (EU servers)
  • Expo (EAS): delivering app updates
  • Google Play / Apple App Store: app distribution

Retention

We keep account data and progress while you have an account. If you delete your account, we delete them. Diagnostic data is kept for a limited time.

Deleting your account and data

You can permanently delete your account and all associated data at any time, in two ways:

  1. From the app (fastest): open Piplu, go to Settings, tap your account, then Delete account. This immediately and permanently removes your account and all data (profile, stats and streak, alarms, progress) from our servers and your device.
  2. Without the app: email us at maj.valentinc13@gmail.com from the address linked to your account, or include the name you signed up with. We verify your identity and complete the deletion within 30 days.

What we may keep briefly: anonymous crash diagnostics (Sentry) with no link to your account, kept only as long as needed for app stability.

Your rights

You may access, correct and delete your data, and object to processing. To delete your account, see "Deleting your account and data" above; for any other request, email the address above. We will handle it within a reasonable time (at most 30 days).

Children

The app is not intended for children under 13, or the age threshold applicable in your country.

International transfers

Some providers may process data outside the EU; where they do, appropriate safeguards apply, for example standard contractual clauses.

Changes

We may update this policy; material changes will be posted here with a new date.

Contact

Advia d.o.o. , maj.valentinc13@gmail.com