Privacy policy.

What we collect

• Your email when you join the waitlist or sign up.
• Your check-ins (cafe, drink, optional photo, vibe tags).
• Your location, only while the app is in use or you've checked in.
• Friendships you create on the app.

What we don't collect

• Anonymous tracking pixels. Tracking cookies. Behavior across other sites.
• Your contacts in plaintext. (We hash phone numbers on-device to find friends, then discard the hashes.)
• Your background location. Geofence detection runs locally on your device for "online at cafe" presence; the result (entered/exited) is what we receive, not a continuous trail.

Analytics on the website

We use Cloudflare Web Analytics. It's cookie-free, IP-anonymized, and does not require a consent banner under GDPR. We see aggregate traffic patterns — no individual visitors are identifiable.

Where your data lives

On Google Cloud (Firebase Firestore, US region). Encrypted at rest and in transit. We retain check-in data and account data for as long as your account exists; deleted accounts are anonymized within 30 days of deletion (your check-ins remain as aggregate stats, your account is removed).

Your rights

You can delete your account from inside the app. You can request a data export by emailing privacy@coffeebud.app. We respond within 30 days.

Contact

Questions? Email privacy@coffeebud.app.

This page is a summary in plain language. Full legal text matches the version filed with the App Store on launch. We'll update this page with material changes and post a notice on the home page.