Privacy Policy

Effective date: 2026-05-10

This privacy policy explains what Cartlet collects, why, and how it's stored.

What we collect

Cartlet only collects what's needed to run the app. Specifically:

• Account info from Google Sign-In (only if you sign in): your Google display name, email address, and profile photo URL. We use these to label you in shared lists and to authenticate you with our backend.
• Your shopping list and recipe data: items, quantities, units, recipe names, ingredient names, and the time each was added. Stored in the cloud (Firebase Firestore) only when you're signed in. Otherwise it stays on your device.
• List membership and invites (only if you share a list): the email addresses you invite, plus the display name / photo / email of people who join your lists, so we can render member avatars.
• Crash reports (Firebase Crashlytics): device model, OS version, stack traces. Used to fix bugs. No personally identifiable content from your lists is included.

We do not collect: location, contacts, photos from your device's gallery, microphone, calendar, or any advertising identifier.

How it's used

• Your list and recipe data is shown only to you and to people you've explicitly invited to a shared list.
• Account info appears only on lists you're a member of.
• Crash data is read by us (the app authors) for debugging.

We do not sell or share your data with third parties for advertising.

Where it's stored

• On your device: Android Room (SQLite) and DataStore preferences.
• In the cloud (signed-in users only): Firebase Firestore, hosted by Google. Data in transit is encrypted via HTTPS. Firestore enforces per-document access rules so only members of a shared list can read it.

Your rights and controls

• Sign out at any time from the account menu. Local data stays on your device but no further sync happens.
• Delete your account and all your data from the in-app help dialog. This permanently:
  • Deletes every shared list you own (other members lose access).
  • Removes you from any shared list you're a member of.
  • Cancels any pending invites you sent.
  • Deletes your Firebase Auth account.
• Export your data: not implemented in-app yet. Email us at the address below if you need a copy.

Data retention

We keep your cloud-side data for as long as your account exists. Once you delete your account, the data is removed promptly and is unrecoverable.

Children

Cartlet is not directed at children under 13. We don't knowingly collect data from anyone under 13.

Contact

Questions or concerns: help@cartlet.app.

Changes

If we change this policy, we'll update the effective date above.