Last Updated: October 28, 2025This Privacy Policy describes how Birdex (“we”, “our”, “us”, or “the App”) collects, uses, and protects your information when you use the Birdex mobile application for iOS. By using Birdex, you agree to the terms described here. If you do not agree with this Policy, please do not use the App.1. Introduction
Birdex is committed to protecting your privacy. This Policy explains what data we collect, how we use it, and your rights.2. Information We Collect
When you create an account using Apple Sign-In, we collect your Apple ID identifier, email address (if shared), and display name. We do not store your Apple ID password — authentication is handled securely by Apple.When you log bird sightings, we collect the bird species, count, date and time, location (only when you grant permission), optional notes, and optional photos.We only collect location data when you actively log a sighting and have granted permission. We never track your background location. This data is used only to display where you spotted birds.If you upload photos, they are compressed, securely stored via Supabase Storage, and only visible to you. We never access photos outside of Birdex or share them with others.We automatically collect technical information for diagnostic purposes, including crash reports (via Sentry), anonymized device model, iOS version, and app performance metrics.We also store your progress data such as XP, level, seeds (in-game currency), card collection, badges, streaks, and avatar choices.We do not collect contacts, calendar data, health data, payment data, advertising identifiers, or background location.3. How We Use Your Information
We use your information to provide and improve Birdex, authenticate your account, track sightings, calculate rewards, and display your collection and progress. We may also use anonymized data to improve stability and performance. We do not sell or share your information for marketing or advertising purposes.4. Data Storage and Security
Your data is stored securely on Supabase servers (PostgreSQL and Supabase Storage). We use HTTPS/TLS encryption in transit, encryption at rest, strict access controls, and regular security updates. You can request deletion of your data at any time (see Section 11).5. Third-Party Services
We use Supabase for database, authentication, and file storage; Sentry for crash reporting; and Apple for Sign-In. Each service processes limited data necessary for functionality. No advertising, analytics, or social media integrations are used.6. Data Sharing and Disclosure
We do not sell, rent, or trade your personal data. We only share information with our service providers (Supabase, Sentry) to deliver app functionality, or when required by law. Birdex is currently a single-player experience — your sightings and data are never made public.7. Your Rights
You can access and view your data within the app, correct your profile information, and request account deletion or data export. You can manage permissions such as location, camera, and photos in iOS Settings > Birdex. You may withdraw consent by deleting the app or requesting account deletion.8. Children’s Privacy
Birdex is not intended for children under 13 years old. We do not knowingly collect personal data from minors. If you believe your child has provided data, please contact us for immediate removal.9. International Data Transfers
Your data may be transferred to servers outside your home country. We comply with applicable laws (including GDPR) and use appropriate safeguards to protect your information.10. Regional Privacy Rights
If you live in California, you may request access, deletion, or confirmation that your data is not sold under the California Consumer Privacy Act (CCPA).
If you are in the European Economic Area or the UK, you have the right to access, correct, delete, or restrict processing of your data under GDPR. You can withdraw consent at any time.
Our legal basis for processing includes your consent, contractual necessity, and legitimate interest to operate Birdex securely.11. Contact Us
If you have questions or wish to exercise your privacy rights, contact us at:
Email: [email protected]
We will respond within 30 days or as required by law.12. Policy Updates
We may update this Policy from time to time. Changes will appear in the app and by updating the “Last Updated” date. Your continued use of Birdex after updates means you accept the revised Policy.13. Data Integrity and Architecture
Birdex uses a secure, server-authoritative design. All data and game logic are handled by Supabase server functions, preventing client-side tampering and ensuring consistency and fairness.14. Data Encryption
All communication between Birdex and our servers is encrypted using HTTPS/TLS. Authentication tokens are cryptographically validated. We do not use custom encryption beyond industry standards.15. Your Consent
By using Birdex, you consent to the data collection and processing described in this Privacy Policy. You may withdraw consent at any time by deleting your account or contacting us.16. Disclaimer
Although we apply strong security measures, no system is 100% secure. We are not responsible for unauthorized access caused by device loss, third-party service breaches, or unforeseen incidents.17. Governing Law
This Privacy Policy is governed by the laws of England and Wales. Any disputes will be handled in the courts of England and Wales.18. Summary• We never sell your data
• We don’t run ads or trackers
• Location is only used when logging sightings
• Photos are private and only visible to you
• Apple Sign-In only, no passwords stored
• Secure Supabase backend and Sentry diagnostics
• You can access, delete, or export your data anytimeThank you for using Birdex.