Effective Date: April 20, 2025
Last Updated: August 8, 2025
Welcome to Firelog. This Privacy Policy outlines how we collect, use, and protect your personal information when you use the Firelog mobile app, available on both iOS and Android.
By using the app, you agree to the practices described in this policy.
1. Information We Collect
1.1 Information You Provide
When you interact with Firelog, we may collect the following information:
- Your Google Account details used for signing in
- Access credentials for Firebase projects
- Budget thresholds and notification settings you configure
- App preferences and custom settings
1.2 Automatically Collected Information
We also collect data automatically to help improve the app:
- Device information (such as model and OS version)
- App usage statistics (like screen views and tap events)
- Error logs and performance diagnostics
1.3 Google User Data Accessed
To deliver core features, Firelog uses specific Google OAuth scopes. The following data may be accessed:
| Scope | Data Accessed | Purpose |
|---|---|---|
cloud-billing | Billing budgets (amounts, alert rules) | View and manage budgets on your mobile device |
cloud-billing.readonly | Billing account metadata (ID, currency) | Populate billing/project selection options |
firebase | Project settings and usage metrics | Display real-time Firebase project data |
firebase.readonly | Read-only Firestore, Functions, and Auth statistics | Show monitoring dashboards |
openid, email, profile | Your Google email and profile | Link your account and personalize the interface |
We request only the permissions necessary for the features you use. If you disable certain features (like editing budgets), we reduce access to read-only scopes whenever possible.
2. How We Use Your Information
We use the information collected to:
- Authenticate your account and link Google projects
- Display your Firebase and billing data in a mobile dashboard
- Enable you to view and edit Cloud Billing budgets directly in the app
- Send notifications when you reach defined spend thresholds
- Improve app stability, performance, and user experience
- Manage in-app subscriptions via RevenueCat
3. Data Sharing and Disclosure
- We do not sell, rent, or lease your personal information to third parties.
- Data is only shared with essential service providers (see Section 5), and always under strict confidentiality obligations.
- We may disclose information to comply with legal obligations.
- In the event of a merger or acquisition, you will be notified before your data is transferred under a new policy.
4. Data Storage and Security
- Google Credentials: We never store your Google password or refresh tokens.
- Access Tokens: Short-lived tokens and budget data are stored locally on your device using iOS Keychain or Android Keystore, and are cleared after 24 hours or when you sign out.
- Encryption: All communication with our servers is secured using TLS 1.2 or higher.
- Internal Controls: Only authorized personnel can access anonymized analytics, and only when necessary.
5. Third‑Party Services
We rely on the following third-party services:
| Service | Purpose |
|---|---|
| Google Firebase | User authentication and Firebase API access |
| Google Cloud Billing Budget API | Access and manage your billing budgets |
| RevenueCat | Handle subscriptions and in-app purchases |
| Apple App Store / Google Play | App distribution and payment processing |
Each third-party service adheres to its own privacy policies and industry-standard security practices.
6. Your Rights and Choices
- Access and Deletion: You may request a copy of your personal data or ask us to delete it.
- Opt-Out: You can disable non-essential analytics in the app’s Settings.
- Revoke Google Access: To revoke Firelog’s access, visit your Google Account > Security > Third‑party apps.
- Manage Subscriptions: Modify or cancel subscriptions through the app or via the App Store / Google Play.
7. Use of Sensitive Google OAuth Scopes
Firelog uses certain sensitive OAuth scopes defined by Google. We fully comply with Google’s Limited Use policy:
- We access only the data required for each specific feature.
- We never use your Google data for advertising.
- Your data is never shared outside the conditions described in this policy.
- You can revoke access at any time via your Google Account.
8. Policy Updates
We may occasionally update this Privacy Policy. When we do:
- The “Last Updated” date will change
- Any significant updates will be communicated via in-app messages or email
9. Contact Us
If you have questions or concerns about this policy, please reach out through our contact page