Privacy Policy

Last Updated: January 27, 2025

Privacy Policy

Last Updated: January 27, 2025
Effective Date: January 27, 2025
Version: 1.0

1. Introduction

Welcome to Laundry Master (“we,” “our,” or “us”). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information. This Privacy Policy explains our practices regarding data collection, usage, and your rights when using our mobile application (“App”).

This Privacy Policy complies with applicable data protection laws, including:

  • GDPR (General Data Protection Regulation) - for users in the European Union
  • CCPA (California Consumer Privacy Act) - for California residents
  • KVKK (Kişisel Verilerin Korunması Kanunu) - for users in Turkey
  • COPPA (Children’s Online Privacy Protection Act) - for children’s privacy

By using Laundry Master, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our App.

Contact Information:

2. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our App.

2.1 Information You Provide Directly

Account Information:

  • Email address (required for account creation)
  • Display name (optional)
  • Authentication credentials (stored securely by Firebase Authentication)

User Content:

  • Clothing item photos (uploaded to Firebase Storage)
  • Care label images (temporarily processed for AI analysis)
  • Clothing item details (name, brand, color, size, category, etc.)
  • Care instructions and fabric composition
  • Wash, drying, and ironing cycle records
  • Machine information (washer/dryer settings)
  • Special notes and tags

Authentication Provider Information: When you sign in using Google Sign-In or Apple Sign-In, we receive:

  • Email address
  • Display name
  • Profile photo URL (if available)

Note: We do not receive or store your passwords from these authentication providers.

2.2 Information Collected Automatically

Device Information:

  • Device ID (for analytics and crash reporting)
  • Device type and model
  • Operating system version
  • App version

Usage Data:

  • App launches, taps, clicks, scrolling information
  • Feature usage statistics
  • Screen views and navigation patterns
  • Time spent in the app
  • Interaction with app features

Diagnostics Data:

  • Crash reports and error logs (Firebase Crashlytics)
  • Performance metrics (launch time, hang rate, energy use)
  • Technical diagnostics related to app functionality

Analytics Data:

  • App usage events
  • Feature usage statistics
  • User behavior patterns
  • Aggregated statistics for service improvement

2.3 Information from Third-Party Services

Firebase Services:

  • User authentication data (Firebase Auth)
  • Database records (Cloud Firestore)
  • Stored images (Firebase Storage)
  • Analytics data (Firebase Analytics)
  • Crash reports (Firebase Crashlytics)
  • Push notification tokens (Firebase Cloud Messaging)

RevenueCat:

  • Subscription purchase history
  • Subscription status and entitlements
  • Customer ID (linked to your Firebase User ID)

Google Gemini AI (Firebase AI Logic):

  • Care label images (processed in real-time, not stored by Google)
  • AI analysis results (stored in your personal wardrobe data)

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 App Functionality

  • Account Management: Create and manage your user account
  • Data Storage: Store your wardrobe data, clothing items, and care instructions
  • AI Processing: Analyze care label images using Google Gemini AI to extract washing instructions and fabric composition
  • Wash Planning: Provide personalized wash recommendations based on your clothing items
  • Notifications: Send you local and push notifications about wash cycles, clothing reminders, and app updates
  • Subscription Management: Process and manage your premium subscription through RevenueCat

3.2 Analytics and Service Improvement

  • Usage Analysis: Understand how users interact with the app to improve features
  • Performance Monitoring: Identify and fix bugs, crashes, and performance issues
  • Feature Development: Plan new features based on usage patterns
  • Service Optimization: Improve app stability, scalability, and user experience

3.3 Security and Fraud Prevention

  • Authentication: Verify your identity and secure access to your account
  • Fraud Detection: Prevent unauthorized access and fraudulent activities
  • Security Monitoring: Monitor for security threats and suspicious activities
  • Audit Logging: Maintain security event logs for compliance and monitoring

3.4 Communication

  • App Updates: Send important notifications about app updates and new features
  • Service Messages: Communicate about your account, subscription, or service changes
  • Support: Respond to your inquiries and provide customer support
  • Legal Requirements: Comply with applicable laws, regulations, and legal processes
  • Protection of Rights: Protect our rights, property, and safety, as well as that of our users

4. AI Processing Disclosure

Our App uses Google Gemini AI (Firebase AI Logic) to analyze care label images and provide intelligent recommendations.

4.1 Care Label Scanning

When you scan a care label:

  • The image is sent to Google’s Gemini AI service for processing
  • AI extracts care symbols (washing, drying, ironing, bleaching instructions)
  • AI identifies fabric composition (e.g., 60% Cotton, 40% Polyester)
  • Processing occurs in real-time
  • Images are not stored by Google - they are processed and immediately discarded
  • Only the extracted information (symbols and fabric data) is stored in your personal wardrobe data

4.2 Stain Removal Guide

Our AI-powered stain removal guide uses Google Gemini AI to:

  • Analyze stain descriptions
  • Provide personalized removal recommendations
  • Generate step-by-step instructions

4.3 Wash Recommendations

AI analyzes your clothing items and machine settings to provide:

  • Optimal wash cycle recommendations
  • Temperature and program suggestions
  • Energy and water usage optimization

Data Retention for AI Processing:

  • Care label images are processed in real-time and not stored by Google
  • AI analysis results are stored in your personal wardrobe data
  • You can delete this data at any time by deleting the associated clothing item

5. Data Storage and Security

5.1 Cloud Storage Infrastructure

Your data is stored securely using Firebase (Google Cloud Platform):

  • Cloud Firestore: NoSQL database for user data, clothing items, and cycle records
  • Firebase Storage: Secure cloud storage for clothing photos
  • Firebase Authentication: Secure user authentication and account management

5.2 Encryption

  • In Transit: All data transmitted between your device and our servers is encrypted using HTTPS/TLS
  • At Rest: All data stored in Firebase is encrypted at rest using industry-standard encryption
  • Local Storage: Sensitive data stored locally uses:
    • iOS: Keychain Services (encrypted)
    • Android: EncryptedSharedPreferences (AES encryption)

5.3 Security Measures

  • Firebase App Check: Protects our APIs from unauthorized access and abuse
  • Firestore Security Rules: Ensures users can only access their own data
  • Storage Security Rules: Restricts file access to authenticated users only
  • Secure Authentication: Uses Firebase Authentication with support for email/password, Google Sign-In, and Apple Sign-In
  • Regular Security Updates: We regularly update our dependencies and security measures

5.4 Data Access Controls

  • Each user can only access their own data
  • Data is isolated by user ID in Firestore
  • Images are stored in user-specific paths in Firebase Storage
  • Security rules prevent cross-user data access

6. Data Sharing and Third-Party Services

We do NOT sell your personal information.

We may share your data with the following service providers who assist us in operating our App:

6.1 Firebase (Google)

Services Used:

  • Authentication, database, storage, analytics, crash reporting, push notifications

Data Shared:

  • User account information
  • Clothing data and photos
  • Usage analytics
  • Crash reports
  • Device tokens for push notifications

Purpose:

  • Core app functionality and infrastructure
  • Analytics and service improvement
  • Error tracking and debugging

Privacy Policy: Firebase Privacy Policy

6.2 Google Gemini AI (Firebase AI Logic)

Services Used:

  • Care label image analysis
  • Stain removal recommendations
  • Wash cycle recommendations

Data Shared:

  • Care label images (processed in real-time, not stored)
  • Stain descriptions and queries

Purpose:

  • AI-powered care label scanning
  • Intelligent recommendations

Privacy Policy: Google AI Privacy Policy

6.3 RevenueCat

Services Used:

  • Subscription management
  • In-app purchase processing

Data Shared:

  • User ID (linked to Firebase User ID)
  • Subscription purchase history
  • Subscription status

Purpose:

  • Process and manage premium subscriptions
  • Restore purchases across devices

Privacy Policy: RevenueCat Privacy Policy

6.4 Google Sign-In / Apple Sign-In

Services Used:

  • User authentication

Data Shared:

  • Email address, display name, profile photo URL (received from provider)

Purpose:

  • Simplified account creation and login

Privacy Policies:

We may disclose your information if required by:

  • Law, regulation, or legal process
  • Government requests or court orders
  • Protection of our rights, property, or safety
  • Protection of our users’ rights, property, or safety

7. Data Retention

We retain your personal information only for as long as necessary to provide our services and comply with legal obligations.

7.1 Retention Periods

User Account Data:

  • Retention: Until account deletion
  • Includes: Email, display name, authentication tokens, account creation date
  • Deletion: Immediate upon user request via “Delete Account” feature

Clothing Data:

  • Retention: Until account deletion
  • Includes: Clothing items, care instructions, fabric composition, images, notes
  • Deletion: Permanent deletion when user account is deleted

Wash/Drying/Ironing Cycles:

  • Retention: 2 years from completion date
  • Includes: Cycle details, timestamps, machine settings
  • Deletion: Automatic deletion via scheduled Cloud Functions (planned)

Images:

  • Retention: Until account deletion
  • Includes: Clothing photos, care label scan images
  • Deletion: Permanent deletion when user account is deleted
  • Storage Location: users/{userId}/clothing/{clothingId}/photo.jpg

Analytics Data:

  • Retention: 1 year, then automatically anonymized
  • Includes: App usage events, feature usage statistics, crash reports, performance metrics
  • Anonymization: Personal identifiers removed after 1 year; aggregated statistics may be retained

Device Tokens (FCM):

  • Retention: Until account deletion or device unregistration
  • Includes: Firebase Cloud Messaging device tokens, device information
  • Deletion: Deleted when user logs out or account is deleted

Audit Logs:

  • Retention: 90 days
  • Includes: Login/logout events, password changes, account deletions, security events
  • Deletion: Automatic deletion via scheduled Cloud Functions (planned)

7.2 Data Deletion

User-Initiated Deletion:

  • You can delete your account at any time via Profile → Privacy & Security → Delete Account
  • Account deletion permanently removes:
    • All Firestore data (clothing, cycles, machines, devices)
    • All Storage images
    • Firebase Auth account
  • Process is irreversible - deleted data cannot be recovered after 30 days

Automatic Deletion:

  • Wash/Drying/Ironing cycles older than 2 years are automatically deleted
  • Audit logs older than 90 days are automatically deleted
  • Analytics data is automatically anonymized after 1 year

Recovery Period:

  • Firebase retains deleted data for up to 30 days
  • Data recovery requests must be made within 30 days of deletion
  • Contact us at benmertmiyim.dev@gmail.com for recovery requests

For detailed information, see our Data Retention Policy.

8. Your Rights (GDPR/CCPA Compliance)

You have the following rights regarding your personal information:

8.1 Right to Access

You have the right to request a copy of your personal data. You can:

  • Export Your Data: Use the in-app “Export Data” feature (Profile → Privacy & Security → Export Data)
  • Format: JSON file containing all your wardrobe data
  • Includes: Clothing items, wash cycles, drying cycles, ironing cycles, machines, device tokens
  • Excludes: Analytics data, audit logs (for privacy)

8.2 Right to Correction

You can update your information at any time:

  • Account Information: Update email, display name via Profile settings
  • Clothing Data: Edit clothing items, care instructions, photos
  • Machine Settings: Update washer/dryer information

8.3 Right to Deletion

You have the right to request deletion of your account and all associated data:

  • How to Delete: Profile → Privacy & Security → Delete Account
  • Process: Requires password confirmation for security
  • What Gets Deleted:
    • All Firestore data (clothing, cycles, machines, devices)
    • All Storage images
    • Firebase Auth account
    • RevenueCat customer data
  • Timeline: Deletion is immediate; data is permanently removed within 30 days

8.4 Right to Data Portability

You can export your data in a machine-readable format:

  • Export Feature: Available in-app (Profile → Privacy & Security → Export Data)
  • Format: JSON file
  • Content: All user-generated data (clothing, cycles, machines)
  • Usage: You can import this data into compatible services

8.5 Right to Opt-Out

You can opt-out of certain data collection:

  • Analytics: Disable analytics in app settings (if available)
  • Push Notifications: Disable push notifications in device settings
  • Local Notifications: Disable in app notification preferences

Note: Some data collection is necessary for app functionality and cannot be opted out of (e.g., authentication, data storage).

8.6 Exercising Your Rights

To exercise any of these rights, you can:

  • In-App: Use the built-in features (Export Data, Delete Account)
  • Email: Contact us at benmertmiyim.dev@gmail.com
  • Response Time: We will respond to your request within 30 days

9. Children’s Privacy

Laundry Master is rated 4+ and is not intended for children under the age of 13.

Our Policy:

  • We do not knowingly collect personal information from children under 13
  • If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately
  • If we discover that we have collected information from a child under 13, we will delete that information promptly

COPPA Compliance:

  • We comply with the Children’s Online Privacy Protection Act (COPPA)
  • We do not collect personal information from children under 13 without verifiable parental consent
  • If you believe we have collected information from a child under 13, contact us at benmertmiyim.dev@gmail.com

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence.

10.1 Data Transfer Locations

  • Firebase Services: Data is stored on Google Cloud Platform servers, which may be located in various countries
  • RevenueCat: Subscription data is processed by RevenueCat, which operates globally
  • Google Gemini AI: AI processing may occur on Google’s global infrastructure

10.2 Data Protection

  • We ensure that appropriate safeguards are in place for international data transfers
  • Firebase (Google) complies with GDPR and other data protection regulations
  • We use standard contractual clauses and other legal mechanisms to protect your data

By using our App, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.

EU Users:

  • Firebase (Google) has implemented GDPR-compliant data processing agreements
  • Your data is protected by EU adequacy decisions and standard contractual clauses

11. Cookies and Tracking Technologies

Laundry Master is a mobile application and does not use traditional web cookies.

11.1 Local Storage

We use local storage on your device to:

  • SharedPreferences (Android): Store app preferences, theme settings, locale preferences
  • SecureStorage (iOS/Android): Store sensitive data (encrypted):
    • iOS: Keychain Services
    • Android: EncryptedSharedPreferences (AES encryption)

11.2 Analytics Tracking

We use Firebase Analytics to track:

  • App usage patterns
  • Feature usage statistics
  • User behavior (anonymized)
  • Performance metrics

Tracking Information:

  • Device ID (anonymized)
  • User ID (linked to your account, can be opted out)
  • App events and interactions

Opt-Out:

  • You can disable analytics tracking in app settings (if available)
  • Analytics data is automatically anonymized after 1 year

11.3 No Third-Party Advertising

  • We do not display third-party advertisements
  • We do not use advertising tracking technologies
  • We do not share data with advertising networks

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.

12.1 Notification of Changes

  • In-App Notification: We will notify you of significant changes via in-app notifications
  • Email Notification: We may send email notifications for material changes
  • Updated Date: The “Last Updated” date at the top of this policy will be revised

12.2 Your Continued Use

  • Your continued use of the App after changes are posted constitutes acceptance of the updated Privacy Policy
  • If you do not agree with the changes, you should stop using the App and delete your account

12.3 Version History

  • Version 1.0 (January 27, 2025): Initial Privacy Policy

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: benmertmiyim.dev@gmail.com
Website: https://laundrymaster.benmertmiyim.dev
Location: Turkey

Response Time: We aim to respond to all inquiries within 30 days.

14. Additional Information

14.1 Data Controller

The data controller for Laundry Master is:

14.2 Data Protection Officer

For GDPR-related inquiries, please contact us at benmertmiyim.dev@gmail.com.

14.3 Supervisory Authority

If you are located in the EU and have concerns about our data practices, you have the right to lodge a complaint with your local data protection supervisory authority.

14.4 California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

To exercise your California privacy rights, contact us at benmertmiyim.dev@gmail.com.

14.5 Turkish Privacy Rights (KVKK)

If you are located in Turkey, you have rights under the Turkish Personal Data Protection Law (Kişisel Verilerin Korunması Kanunu - KVKK):

Your Rights Under KVKK:

  • Right to Learn (Öğrenme Hakkı): Request information about whether your personal data is being processed
  • Right to Access (Erişim Hakkı): Request information about your processed personal data
  • Right to Request Correction (Düzeltme Hakkı): Request correction of inaccurate or incomplete personal data
  • Right to Request Deletion (Silme Hakkı): Request deletion of your personal data under certain conditions
  • Right to Object (İtiraz Hakkı): Object to processing of your personal data
  • Right to Request Restriction (Sınırlandırma Hakkı): Request restriction of processing in certain cases
  • Right to Data Portability (Veri Taşınabilirliği): Request transfer of your personal data to another data controller
  • Right to Complain (Şikayet Hakkı): File a complaint with the Personal Data Protection Authority (KVKK)

Data Controller (Veri Sorumlusu):

Legal Basis for Processing (İşleme Hukuki Sebepleri): Under KVKK Article 5, we process your personal data based on:

  • Explicit Consent (Açık Rıza): For certain data processing activities (e.g., analytics, push notifications)
  • Performance of Contract (Sözleşmenin Kurulması/İfası): To provide app services and manage your account
  • Legal Obligation (Hukuki Yükümlülük): To comply with legal requirements
  • Legitimate Interest (Meşru Menfaat): For service improvement, security, and fraud prevention

Data Processing Purposes (Veri İşleme Amaçları):

  • Account creation and management
  • Providing app services (wardrobe management, care label scanning, wash planning)
  • AI-powered care label analysis
  • Subscription management
  • Analytics and service improvement
  • Security and fraud prevention
  • Legal compliance

Data Retention (Veri Saklama Süreleri): Personal data is retained only for the periods specified in Section 7 of this Privacy Policy, in accordance with KVKK Article 7.

Data Security (Veri Güvenliği): We implement appropriate technical and administrative measures to protect your personal data, as detailed in Section 5 of this Privacy Policy, in compliance with KVKK Article 12.

International Data Transfers (Uluslararası Veri Aktarımları): Your personal data may be transferred to countries outside Turkey (e.g., Firebase servers). We ensure appropriate safeguards are in place, as detailed in Section 10 of this Privacy Policy.

Exercising Your KVKK Rights: To exercise your rights under KVKK, you can:

  • In-App: Use the built-in features (Export Data, Delete Account)
  • Email: Contact us at benmertmiyim.dev@gmail.com
  • Response Time: We will respond to your request within 30 days, as required by KVKK

Complaint to KVKK: If you believe your personal data rights have been violated, you can file a complaint with the Personal Data Protection Authority (Kişisel Verileri Koruma Kurumu):

  • Website: https://www.kvkk.gov.tr
  • Address: Nasuh Akar Mahallesi 1407. Sokak No:4 06520 Balgat/Çankaya/Ankara
  • Phone: +90 312 216 50 00

Under GDPR, we process your personal data based on the following legal bases:

  • Contractual Necessity: Processing necessary to provide our services (account management, data storage, app functionality)
  • Legitimate Interests: Analytics, service improvement, security monitoring, fraud prevention
  • Consent: Where required by law, we obtain your consent before processing (e.g., push notifications)
  • Legal Obligation: Compliance with legal requirements and court orders

Last Updated: January 27, 2025
Effective Date: January 27, 2025
Version: 1.0

© 2025 Laundry Master. All rights reserved.