Ding! ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we handle information when you use our mobile application. Our core philosophy is to minimize data collection and ensure that your personal information remains on your device whenever possible.
To ensure secure access and verify your identity, we use Firebase Phone Authentication.
- Verification: When you sign up, you provide your phone number to receive a one-time verification code (SMS).
- Processing: This process is handled directly by Google Firebase.
- Privacy: We do not store your raw phone number in our primary cloud database; we only use it for the initial authentication and to generate your unique user Hash.
Our app requires access to your contact list to identify which of your friends are already using Ding!.
- Privacy-First Processing: We do not upload your raw contact list (names or plain phone numbers) to our servers.
- Local Hashing: Phone numbers are processed locally on your device using a one-way cryptographic hash. Only these anonymous hashes are sent to our servers to perform a match with existing users.
- No Raw Data Storage: Your original phone numbers and contact names never leave your device and are never stored on our cloud servers.
To enable the app's functionality (sending "Dings" and managing groups), we use Google Firebase as our cloud provider:
- Anonymous Identifiers: We do not store raw phone numbers in our cloud database. We only store cryptographic Hashes (unique user IDs) and FCM Tokens (required to deliver push notifications).
- Group Management: Group structures and memberships are managed using these anonymous hashes.
- Security: All cloud data is encrypted in transit and protected by strict Firebase Security Rules.
We use a local SQLite database on your device to store:
- Contact names and profile photos.
- App preferences and message history. This data is 100% local. It stays on your physical device, is not accessible by us or any third party, and is never uploaded to the cloud.
We use the following third-party services for the app to function:
- Google Firebase: For secure authentication, cloud database management (Firestore), and delivery of push notifications (FCM).
- Google Play Services: For security and app integrity.
You can delete your account at any time within the app settings. Upon account deletion, your associated Hash and FCM Token will be permanently removed from our Firebase cloud database. Since we do not store your contacts on our servers, there is no contact data to delete from our side.
Our services do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children.
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.
If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us at: yuhu@mmoreram.com