Legal

Privacy Policy

Effective Date: May 23, 2026 Morrison United LLC / Syncrobyte Labs

01 Overview

Syncrobyte Labs, operated by Morrison United LLC ("we," "us," or "our"), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile applications, web applications, and website located at syncrobytelabs.com (collectively, the "Services").

Please read this policy carefully. By using any of our Services, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our Services.

// Note

This policy applies to all apps and services developed and published by Syncrobyte Labs / Morrison United LLC, both current and future, unless a specific app provides its own supplemental privacy notice.

02 Information We Collect

We collect information in the following ways depending on how you interact with our Services:

Information You Provide Directly

  • Account Information: If an app requires account creation, we may collect your name, email address, username, and password (stored securely via Firebase Authentication).
  • User-Generated Content: Any notes, entries, settings, or other content you create and store within our apps.
  • Communications: If you contact us for support or feedback, we retain those communications.
  • Email Address: If you sign up for launch notifications on our website.

Information Collected Automatically

  • Device Information: Device model, operating system version, unique device identifiers (e.g., Vendor ID on iOS), and platform type.
  • App Usage Data: Features used, screens visited, session duration, crash logs, and performance diagnostics collected via Firebase Analytics and Firebase Crashlytics.
  • IP Address and General Location: Approximate geographic region derived from IP address for analytics and fraud prevention.
  • Firebase Cloud Messaging (FCM) Token: A device-specific token used solely to deliver push notifications you have opted into.
  • Purchase and Subscription Data: Subscription status, purchase history, trial eligibility, and entitlements managed through RevenueCat. We do not collect or store your payment card details — those are handled entirely by Apple App Store or Google Play.

Information Stored in Firestore

Our apps use Google Cloud Firestore as a database backend. Depending on the app, Firestore may store your account profile, app preferences, synced content, and other data necessary for app functionality. All Firestore data is associated with your user account and is protected by Firebase security rules.

03 Third-Party Services

Our Services integrate the following third-party platforms. Each has its own privacy policy, which we encourage you to review:

Service Provider Purpose Data Involved
Firebase Authentication Google LLC Secure sign-in and account management Email, UID, auth tokens
Firebase Analytics Google LLC Anonymous usage analytics and event tracking Device info, events, session data
Firebase Crashlytics Google LLC Crash reporting and app stability monitoring Crash logs, device info, app state
Cloud Firestore Google LLC Cloud database for storing user and app data Account data, app content, preferences
Firebase Cloud Messaging Google LLC Delivery of push notifications FCM device token
RevenueCat RevenueCat, Inc. Subscription management, purchase validation, and entitlement tracking Device ID, App Store/Play transaction receipts, subscription status
Apple App Store Apple Inc. App distribution and in-app purchase processing Payment info handled solely by Apple
Google Play Google LLC App distribution and in-app purchase processing Payment info handled solely by Google

Google's privacy policy is available at policies.google.com/privacy. RevenueCat's privacy policy is available at revenuecat.com/privacy.

04 Push Notifications

Our apps may request permission to send you push notifications via Firebase Cloud Messaging (FCM). Push notifications may be used to deliver:

  • Reminders and alerts you have configured within the app
  • Important account or security notices
  • App updates, new feature announcements, or promotional messages (where permitted)

To deliver push notifications, your device's FCM registration token is stored on our servers and associated with your account. This token does not identify you personally — it identifies your device for the purpose of message routing.

Opting Out

You can disable push notifications at any time through your device's system settings (iOS: Settings → Notifications → [App Name]; Android: Settings → Apps → [App Name] → Notifications). You may also manage notification preferences within individual apps where available. Disabling notifications does not affect your ability to use the app.

05 Purchases & Subscriptions

Some of our apps offer in-app purchases or subscription plans. All payment transactions are processed exclusively by Apple App Store or Google Play. We never receive, store, or process your payment card information.

We use RevenueCat to manage subscription entitlements across platforms. RevenueCat receives:

  • Your anonymized or pseudonymous user ID
  • Purchase receipts issued by Apple or Google (used only for validation)
  • Subscription status, expiration dates, and trial eligibility
  • Device type and operating system version

RevenueCat does not receive your name, email address, or payment card details. For full details, review RevenueCat's privacy policy at revenuecat.com/privacy.

Subscription Cancellations & Refunds

All subscription cancellations and refund requests are handled directly by Apple or Google through their respective platforms. We do not issue refunds independent of platform policies.

06 How We Use Your Data

We use the information we collect to:

  • Provide, operate, and maintain our Services and their features
  • Create and manage your user account
  • Sync your data across your devices via Firestore
  • Process and validate in-app purchases and subscriptions via RevenueCat
  • Deliver push notifications you have opted into via Firebase Cloud Messaging
  • Monitor app performance, diagnose crashes, and fix bugs via Firebase Crashlytics
  • Understand how our apps are used in aggregate via Firebase Analytics to improve features
  • Respond to your support requests and communications
  • Send you service-related emails (account confirmations, security alerts)
  • Comply with legal obligations and protect against fraudulent or unlawful activity

We do not sell your personal information to third parties. We do not use your data for behavioral advertising.

07 Data Sharing & Disclosure

We do not sell, trade, or rent your personal information. We may share your information only in the following limited circumstances:

Service Providers

We share data with the third-party services listed in Section 3 solely to operate our Services. These providers are contractually bound to use your data only as directed by us and in accordance with their privacy policies.

Legal Requirements

We may disclose your information if required to do so by law, court order, or governmental authority, or if we believe in good faith that such disclosure is necessary to protect the rights, property, or safety of Syncrobyte Labs, our users, or the public.

Business Transfers

If Morrison United LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email or prominent notice within our Services before your data becomes subject to a different privacy policy.

With Your Consent

We may share information for any other purpose with your explicit consent.

// Important

We never sell your personal data. We never share your data with advertisers or data brokers.

08 Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our Services. Specifically:

  • Account data in Firebase Authentication and Firestore is retained until you delete your account.
  • Analytics and crash data collected by Firebase is retained for up to 14 months by default per Google's standard retention settings.
  • FCM tokens are retained as long as you have an active installation of the app with notifications enabled. Tokens are invalidated and removed when you uninstall the app or revoke notification permissions.
  • RevenueCat subscription records are retained for as long as necessary to validate entitlements and comply with our obligations to Apple and Google.
  • Support communications are retained for up to 3 years unless you request earlier deletion.

Upon account deletion, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal, tax, or regulatory purposes.

09 Security

We take the security of your data seriously and implement appropriate technical and organizational measures, including:

  • Data transmission encrypted in transit via TLS/HTTPS
  • Firebase Security Rules restricting Firestore and Storage access to authenticated users
  • Firebase Authentication handling credential storage with industry-standard hashing
  • RevenueCat's secure receipt validation infrastructure
  • Regular review of access controls and security configurations

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. In the event of a data breach that affects your rights or freedoms, we will notify affected users as required by applicable law.

10 Children's Privacy (COPPA)

// COPPA Notice

Our Services are not directed to children under the age of 13 (or under 16 in certain jurisdictions). We do not knowingly collect personal information from children under these ages.

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at support@syncrobytelabs.com. We will promptly investigate and, where confirmed, delete such information from our systems.

Where an app is designed for or likely to be accessed by minors, we will implement age-appropriate measures and obtain verifiable parental consent as required by the Children's Online Privacy Protection Act (COPPA) and applicable laws.

11 GDPR — EU & UK Users

If you are located in the European Economic Area (EEA) or United Kingdom, the General Data Protection Regulation (GDPR) and UK GDPR apply to your personal data. This section supplements the rest of this policy.

Legal Basis for Processing

We process your personal data on the following legal bases:

  • Contract performance: Processing necessary to deliver the Services you have requested (e.g., storing your data in Firestore, managing your subscription).
  • Legitimate interests: Analytics and crash reporting to improve app stability and user experience, provided these interests are not overridden by your rights.
  • Consent: Push notifications and any optional data collection — you can withdraw consent at any time.
  • Legal obligation: Where processing is required to comply with applicable law.

International Data Transfers

Our third-party service providers (Google/Firebase, RevenueCat) may process your data in the United States and other countries outside the EEA. We rely on Standard Contractual Clauses (SCCs) and other appropriate safeguards, as provided by Google and RevenueCat, for such transfers.

Your GDPR Rights

You have the right to:

  • Access the personal data we hold about you
  • Rectification of inaccurate or incomplete data
  • Erasure ("right to be forgotten") of your personal data
  • Restriction of processing in certain circumstances
  • Data portability — receive your data in a structured, machine-readable format
  • Object to processing based on legitimate interests
  • Withdraw consent at any time for consent-based processing, without affecting prior lawful processing

To exercise these rights, contact us at support@syncrobytelabs.com. We will respond within 30 days. You also have the right to lodge a complaint with your local supervisory authority.

12 CCPA — California Users

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) grants you additional rights regarding your personal information.

Categories of Personal Information Collected

In the past 12 months, we may have collected the following categories of personal information: identifiers (e.g., email, device ID), internet or electronic network activity (e.g., app usage data), commercial information (e.g., purchase history), and inferences drawn from the above to create a user profile for service delivery.

We Do Not Sell or Share Your Personal Information

We do not sell your personal information to third parties, and we do not share your personal information with third parties for cross-context behavioral advertising. As such, there is no opt-out needed for a "sale" of your data.

Your CCPA Rights

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you.
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any CCPA rights.

To submit a request, contact us at support@syncrobytelabs.com with the subject line "CCPA Request." We will verify your identity before processing your request and respond within 45 days.

13 Your Rights & Choices

Regardless of your location, you have the following options regarding your data:

  • Account Deletion: Delete your account through in-app settings (where available) or by emailing support@syncrobytelabs.com. We will delete your data within 30 days.
  • Push Notifications: Opt out at any time through your device's system notification settings.
  • Analytics Opt-Out: On iOS, you can limit ad tracking and analytics through Settings → Privacy & Security → Tracking. On Android, you can reset or opt out of your Advertising ID in your device settings.
  • Access & Portability: Request a copy of the personal data we hold about you by emailing support@syncrobytelabs.com.
  • Correction: Update inaccurate account information directly within the app or by contacting us.

14 Website & Cookies

Our website at syncrobytelabs.com may collect the following information:

  • Email addresses submitted via our "Get Notified" form, used only to send launch announcements.
  • Standard web server logs including IP address, browser type, referring URL, and pages visited, retained for up to 90 days for security and diagnostic purposes.

Cookies

Our website currently uses minimal or no tracking cookies. Any cookies set are strictly functional (e.g., remembering form state). We do not use advertising cookies or cross-site tracking technologies on our website. We may load fonts from Google Fonts, which may set its own cookies subject to Google's privacy policy.

You can control cookies through your browser settings. Disabling cookies may affect certain website functionality.

15 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will:

  • Update the "Effective Date" at the top of this page
  • Notify you via a prominent in-app notice or email where required by law
  • For significant changes, request renewed consent where legally required

Your continued use of our Services after any changes constitute your acceptance of the updated Privacy Policy. We encourage you to review this page periodically.

16 Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

✉️
Syncrobyte Labs / Morrison United LLC

Email: support@syncrobytelabs.com

Please include "Privacy" in the subject line for faster routing.

We are committed to resolving complaints promptly. If you are an EU/UK resident and are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.