Privacy Policy

1. Who We Are

The Famino application ("App") is provided by:

Daniel Prause
Email: info@vendolino.de

(Hereinafter referred to as "we", "us", or "our")

2. Information We Collect

Famino is a family organization app designed to help families plan their daily lives together — with a shared calendar, task management, and expense tracking. To provide you with these services, we collect and process the following types of information:

2.1 Account Information (Google Sign-In)

• Information: Your name, email address, Google User ID, and profile picture as provided by Google.
• Purpose: To create and manage your user account, authenticate you, and personalize your experience.

2.2 Family and Member Data

• Information: Family name, family ID, member IDs, roles (owner/parent/child), invitation codes, calendar colors, display names.
• Purpose: To organize the family structure, assign content, and manage permissions.

2.3 Child Accounts (Without Email)

• Information: Child's name, associated parent account (managedByUserId).
• Purpose: To enable children to participate without their own email address. Child accounts are managed by the creating parent.
• Note: Child accounts have no independent login capability and can only be used through the managing parent.

2.4 Calendar Events

• Information: Title, description, start/end time, assigned family members, recurrence rules, reminder settings, optional image attachments, private flag.
• Purpose: Shared scheduling within the family.

2.5 Tasks

• Information: Title, description, due date, priority, status, assigned members, task list assignment, optional image attachments, comments (Premium only).
• Purpose: Shared task management.

2.6 Expenses

• Information: Amount, description, category, date, creating member, recurring expenses (Premium only), budget data (Premium only).
• Purpose: Shared expense tracking and budget management.

2.7 Image Attachments

• Information: Images you attach to tasks or calendar events (Premium only). Images are compressed client-side before upload (max 1200px, 70% JPEG quality, target size <100KB).
• Storage: Firebase Storage.
• Purpose: Visual supplementation of tasks and events.

2.8 Device Calendar Access

• Information: When you enable device calendar import, the App reads events from your selected local calendars (e.g., Google, Samsung, iCloud).
• Purpose: To display external calendar entries within Famino.
• Storage: Device calendar events are not stored in our cloud. They are processed and displayed locally only.

2.9 Camera Access

• Information: Access to your device camera for taking photos for image attachments and for scanning printed event cards.
• Purpose: (a) Creating photo attachments for tasks and calendar events; (b) scanning printed event cards (invitations, notices, tickets) to pre-fill a new event, see section 2.15.
• Storage: Image attachments are compressed and uploaded to Firebase Storage. Event-card scan photos are not stored by us — they are sent once for structured extraction and then discarded server-side (details in 2.15).

2.10 Notifications (Push Notifications)

• Information: Firebase Cloud Messaging token (FCM token), notification preferences.
• Purpose: Reminders for events and tasks, family notifications.

2.11 Subscription and Purchase Data

• Information: Information about your chosen subscription plan (Free/Premium), validity period, trial status (Free Trial). Actual payment details are processed exclusively by the Google Play Store or Apple App Store — we do not store your credit card information.
• Purpose: To manage your access to Premium features.

2.12 Bonus Time / Referral System (Android)

• Information: Referral code, referrer user ID, number of successful referrals, bonus expiration date, Play Store Install Referrer data.
• Purpose: To manage the referral program and grant bonus Premium days.

2.13 Usage and Diagnostic Data (Firebase)

• Information: Anonymized or pseudonymized usage statistics, device information, and crash reports through integrated Firebase services (Firebase Crashlytics, Firebase Performance Monitoring).
• Purpose: To analyze app usage for improving user experience, diagnosing and fixing errors.

2.14 Local App Settings

• Information: Onboarding status, device calendar settings, display preferences, widget data.
• Storage: SharedPreferences on your device.
• Purpose: To personalize your user experience.

2.15 Event Card Scan (Premium feature)

• Information: A single photo of a printed event card (invitation, notice, ticket, etc.) that you choose to capture.
• Purpose: Automatically extract title, date, time, location and description so we can pre-fill a new calendar event for your review.
• How the photo is processed: The photo is compressed on your device and sent over an encrypted connection (HTTPS) to our Cloud Function scanEventCard (Firebase, Region europe-west1). The Cloud Function forwards the image to our sub-processor Mistral AI SAS (France, EU) to perform OCR and structured extraction. The structured result (event fields) is returned to the app.
• No persistent storage of the photo: We do not save the photo in Firebase Storage, Firestore, or anywhere else on our side. Mistral AI processes the image on request and does not retain it for training purposes.
• Processing location: Exclusively within the European Union.
• What we log: Only non-content telemetry (your user ID, app locale, request duration, model confidence score, image size in kB). We explicitly do not log the photo, the extracted text, or any of the event fields.
• Access control: This feature is only available to Premium users. Usage is rate-limited (30 scans per user per hour) to prevent misuse.
• Legal basis (GDPR): Art. 6 (1) (b) GDPR — processing is necessary to provide the Premium feature you requested.
• Your control: You decide every time whether to scan a card; you can always enter events manually instead.

2.16 Receipt Scan (Premium feature)

• Information: A single photo of a printed receipt, invoice or bill that you choose to capture, plus the list of your own expense category IDs and names (read server-side from your family's data, so we can suggest a matching category).
• Purpose: Automatically extract amount, date, merchant, suggested category and short description so we can pre-fill a new expense for your review.
• How the photo is processed: The photo is compressed on your device and sent over an encrypted connection (HTTPS) to our Cloud Function scanReceipt (Firebase, Region europe-west1). The Cloud Function reads your family's expense category list from Firestore, forwards the image together with the list of category names/IDs to our sub-processor Mistral AI SAS (France, EU) for OCR and structured extraction, and returns the structured result (expense fields + selected category ID or null) to the app.
• No persistent storage of the photo: We do not save the photo in Firebase Storage, Firestore, or anywhere else on our side. Mistral AI processes the image on request and does not retain it for training purposes.
• Processing location: Exclusively within the European Union.
• What we log: Only non-content telemetry (your user ID, app locale, request duration, model confidence score, image size in kB, category count, whether a category was matched). We explicitly do not log the photo, the merchant name, the amount, or any of the extracted expense fields.
• Access control: This feature is only available to Premium users. Usage is rate-limited (30 scans per user per hour) to prevent misuse.
• Legal basis (GDPR): Art. 6 (1) (b) GDPR — processing is necessary to provide the Premium feature you requested.
• Your control: You decide every time whether to scan a receipt; you can always enter expenses manually instead.

3. How We Use Your Information

• To provide, operate, and maintain the Famino App and its features
• To authenticate you and manage your account
• To manage your subscription and provide access to Premium features
• To synchronize your family data via Firebase
• To enable shared calendar, task, and expense management
• To send push notifications (reminders, family notifications)
• To provide the Home Screen Widget (Android)
• To manage the referral/bonus time system
• To improve the App, diagnose technical issues, and ensure stability
• To personalize your experience (e.g., settings, calendar colors)

4. How We Share Your Information

We do not sell your personal information. We only share your information with third parties in the following circumstances:

4.1 Service Providers (Google/Firebase)

We use Google Firebase services for backend infrastructure:

Google processes your data on our behalf as a service provider. For in-app purchases, Google Play Billing / Apple In-App Purchase is used. We do not receive or store your full payment card details.

More information: Google Privacy Policy

4.2 Family Members

Data such as calendar events, tasks, and expenses are shared within your family. All members of your family can see this content (unless marked as private). You control family membership through invitations and family settings.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect our rights, prevent fraud, or protect the safety of users.

4.4 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of such a transaction.

4.5 Mistral AI (Event Card Scan & Receipt Scan)

When you actively use the Premium "Scan event card" feature (section 2.15) or the Premium "Scan receipt" feature (section 2.16), a single photo — and, in the case of receipts, also your family's expense category names and IDs — is transmitted to Mistral AI SAS, 15 Rue des Halles, 75001 Paris, France, which acts as our sub-processor for OCR and structured extraction. Processing takes place exclusively within the EU. Mistral does not retain the photo for training. No photo is sent to Mistral outside of these explicit user actions.

More information: Mistral AI Privacy Policy

5. Data Storage and Security

5.1 Cloud Storage (Google Firebase)

Your data is stored on Google Firebase servers (Cloud Firestore, Firebase Authentication, Firebase Storage). Data transfer is encrypted (HTTPS/TLS).

5.2 Local Storage

Onboarding status, device calendar settings, and app preferences are stored locally in SharedPreferences, protected by your operating system's security mechanisms.

5.3 Image Attachments

Images are compressed client-side and transferred encrypted (HTTPS) to Firebase Storage. Storage security rules ensure that only authenticated users can access images.

5.4 Your Responsibility

While we strive to protect your information, no security system is impenetrable. You are responsible for safeguarding your Google account credentials.

6. Data Retention and Deletion

• Account data is retained as long as your account is active.
• Family data (calendar, tasks, expenses) is retained as long as the family exists. When a family is deleted, all associated data is completely removed.
• Child accounts without email are completely removed when the family is deleted.
• Invitations expire automatically after 7 days.
• Referral bonuses are checked daily and expired bonuses are cleaned up.
• Expired Free Trials are captured by the daily cleanup function.

7. Your Rights and Choices

• Access: You can view most of your data directly within the App.
• Correction: You can correct and update your data directly within the App.
• Deletion: You can delete individual records within the App. For complete account deletion, please contact us.
• Manage Permissions: Control camera, calendar, and notification access through your device settings.
• Manage Subscription: Manage your subscription through the Google Play Store or Apple App Store.
• Leave Family: You can leave a family at any time (except as owner).
• Disable Device Calendar: Disable device calendar import at any time in App settings.
• Log Out: Log out through the App's menu at any time.

To exercise these rights, please contact us at info@vendolino.de.

8. Third-Party Services

• Google Firebase: Firebase Privacy and Security
• Google Sign-In: Google Privacy Policy
• Google Play Billing / Apple In-App Purchase: Payment processing for Premium subscriptions
• Play Install Referrer API (Android): Detection of referral codes during app installation
• Mistral AI (France, EU): Sub-processor for the event-card scan and receipt scan features (only invoked when you use them). Mistral AI Privacy Policy

9. Children's Privacy

Famino allows the creation of child accounts within a family. These are managed by a parent and do not require a separate email address or direct data collection from the child.

Famino is not intended for use by persons under the age of 13 without parental supervision. We do not knowingly collect personal information from children under 13 without parental consent.

If you are a parent or guardian and believe that your child has provided us with personal information without your knowledge, please contact us at info@vendolino.de.

10. International Data Transfers

Since we use Google Firebase, your data may be processed on servers located outside your country of residence. Google Firebase operates a global infrastructure with security certifications. Data processing is carried out in compliance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR), where applicable.

The event-card scan feature (section 2.15) and the receipt scan feature (section 2.16) are both processed exclusively within the European Union by our sub-processor Mistral AI (France).

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the date at the top of this policy and, in some cases, by displaying a notification within the App.