Privacy Policy

Effective date: April 1, 2026 · Last updated: April 1, 2026

CoreFlow (“we,” “our,” or “us”) respects your privacy. This Privacy Policy describes how the CoreFlow mobile application (“App”) collects, uses, stores, and shares information when you use our services.

By using the App, you agree to this Privacy Policy. If you do not agree, please do not use the App.

1. Who we are

CoreFlow is a productivity application. For privacy-related requests, contact us at rahuljindal121@gmail.com. For privacy-related requests, contact us at that address.

2. Information we collect

We design CoreFlow to collect only what is needed to provide productivity features and optional account-based sync.

2.1 Productivity and usage data you provide

Depending on how you use the App, we may process:

Tasks and task-related content — Items you capture, titles, notes, statuses, due dates, and similar fields you enter.
Review sessions — Data associated with your review workflow (for example, items reviewed, completion state, scheduling choices) as implemented in the App.
Preferences — Settings such as display options, notification preferences where offered, and other configuration you choose in the App.

2.2 Authentication data

If you choose to sign in, we use industry-standard sign-in providers:

Google Sign-In — Google processes authentication according to Google’s privacy policy. We receive identifiers and profile information that Google shares with us to create or link your account.
Sign in with Apple — Apple processes authentication according to Apple’s privacy policy. We receive identifiers Apple shares with us to create or link your account.

We do not receive your Google or Apple password.

2.3 Technical and device data

Like most mobile apps, the App and its infrastructure may process limited technical information needed to operate, secure, and improve the service (for example, device type, OS version, app version, and diagnostic logs in connection with crashes or errors). The scope depends on your device, platform (iOS/Android), and whether you use cloud sync.

3. How we store your information

3.1 Local storage

The App stores certain data on your device using mechanisms such as SharedPreferences (and platform-equivalent local storage) so the App can function offline and remember your preferences.

3.2 Cloud storage (optional sync)

If you enable or use features that sync across devices, productivity data and preferences may be stored in Google Firebase, including Cloud Firestore, under your account. Firebase operates as a processor/subprocessor infrastructure provider; Google’s terms and privacy notices apply to their services.

Data may reside in data centers in regions configured for your Firebase project. We aim to use Firebase in line with documented security practices and access controls.

4. How we use information

We use information to:

Provide, maintain, and improve CoreFlow features (capture, organize, review, engage, calendar, streaks, analytics within the App).
Authenticate you and provide optional sync across devices.
Respond to support requests sent to rahuljindal121@gmail.com.
Protect the security and integrity of the App and our users.
Comply with legal obligations.

5. What we do not do

No advertising. We do not show third-party ads in the App as part of the product described in this policy.
No third-party analytics tracking. We do not use third-party analytics SDKs to track you across apps or websites for advertising or behavioral profiling. Product metrics, if any, are limited to what is necessary to operate the service and are not described here as ad-tech or cross-app tracking.

If these practices change materially, we will update this Privacy Policy and, where required, seek your consent or provide notice.

6. Sharing of information

We do not sell your personal information. We may share information only:

With service providers (such as Google/Firebase, Apple, Google authentication) who process data on our behalf to operate the App.
For legal reasons — If required by law, legal process, or to protect rights, safety, and security.
With your direction — When you explicitly request integration or export features that involve third parties.

7. Your rights and choices

7.1 Account deletion

You may request deletion of your account and associated cloud data through Settings in the App where this feature is provided, or by emailing rahuljindal121@gmail.com. Deletion may take a reasonable period to propagate across backups and logs. Some information may be retained where required by law or legitimate business needs (for example, billing records for subscriptions processed by Apple or Google).

7.2 GDPR (European Economic Area, UK, and similar jurisdictions)

If applicable law grants you rights, you may have the right to:

Access — Request a copy of personal data we hold about you.
Rectification — Correct inaccurate data.
Erasure — Request deletion (“right to be forgotten”), subject to exceptions.
Restriction or objection — Request restriction of processing or object to certain processing.
Portability — Receive certain data in a structured, machine-readable format where technically feasible.
Withdraw consent — Where processing is based on consent, withdraw it at any time.
Lodge a complaint — With your local supervisory authority.

To exercise these rights, contact rahuljindal121@gmail.com. We may need to verify your identity before fulfilling requests.

7.3 California and U.S. state privacy rights

Depending on your state of residence, you may have additional rights regarding access, deletion, and opting out of certain processing. Contact rahuljindal121@gmail.com to submit a request. We will not discriminate against you for exercising privacy rights.

8. Children’s privacy

CoreFlow is not directed at children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us information, contact rahuljindal121@gmail.com and we will take steps to delete it.

9. International users

If you use the App from outside the country where our servers or service providers are located, your information may be transferred to and processed in other countries where data protection laws may differ. We take steps designed to provide appropriate safeguards as required by applicable law.

10. Security

We implement technical and organizational measures appropriate to the nature of the data (including authentication, encryption in transit where standard for Firebase and platform APIs, and access controls). No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

11. Retention

We retain information for as long as your account is active or as needed to provide the App, comply with law, resolve disputes, and enforce our agreements. Local data remains on your device until you delete the App or clear data. Cloud data is retained according to your use of sync and deletion requests.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated policy with a new “Last updated” date. If changes are material, we will provide additional notice as required by law (for example, in-app notice or email).

13. Contact

Email: rahuljindal121@gmail.com

For privacy requests, include your account email (if applicable) and a description of your request.

This document is provided for transparency. It is not legal advice; have qualified counsel review before publication if needed.