DocWallet app icon
DocWallet
Privacy Policy (GDPR)
Home Terms Account Deletion

Privacy Policy (GDPR)

Effective Date: [YYYY-MM-DD]
Controller: [Company/Developer Name from Play Console]
Contact: motuspotentia@gmail.com

This Privacy Policy explains how DocWallet (“we”, “us”, “our”) collects, uses, shares, and protects personal data when you use the DocWallet mobile application (the “App”). It also describes your rights under the General Data Protection Regulation (GDPR) and similar laws.

In plain language: DocWallet helps you scan/store documents and save sensitive numbers. Some data is stored on your device, some in our backend (Firebase/Firestore), and some in your own Google Drive (if you enable backup/sync).

1. What DocWallet Does

DocWallet provides document storage tools and a Numbers Vault for sensitive numbers (for example: IDs, account numbers, PINs, and other private notes). You can optionally save scans and backups to your personal Google Drive.

2. Data We Collect

We collect only what is needed to operate DocWallet.

2.1 Account & Authentication

  • Google account sign‑in information provided via Google Sign‑In (e.g., email, name, Google user ID/UID).

2.2 User Content

  • Documents/scans and related metadata you save in the App (e.g., title, category, timestamps).
  • Numbers Vault entries (stored encrypted).

2.3 Device & App Data (Minimal)

  • App configuration and preferences (e.g., onboarding acceptance, settings).
  • On‑device encrypted keys stored in secure storage (for Vault encryption).
  • Basic diagnostics (such as crash/performance reports) when enabled by your platform settings.

3. Where Data Is Stored

  • On‑device: encrypted keys, cached content, and local files (if you choose offline storage).
  • Firebase/Firestore: user content metadata and encrypted Numbers Vault entries.
  • Your Google Drive: optional backups of your content (e.g., Vault backup file) and scans saved to your Drive (if enabled).

4. Legal Bases for Processing (GDPR)

We process personal data under the following legal bases:

  • Contract necessity (Article 6(1)(b)) — to provide core app functionality.
  • Consent (Article 6(1)(a)) — for Google Sign‑In and Drive sync/backup when you enable these features.
  • Legitimate interests (Article 6(1)(f)) — security, integrity, and basic operational functionality.

5. How We Use Your Data

  • Authenticate you and link your content to your account.
  • Store and sync your documents and Numbers Vault entries.
  • Provide backup and restore features (including saving to your Google Drive when you enable it).
  • Secure your data using encryption (Numbers Vault).
  • Respond to support requests and enforce these policies where necessary.

6. Sharing & Third Parties

We use trusted service providers to run DocWallet:

  • Google Firebase (Authentication, Firestore) for sign‑in and storage of metadata/encrypted vault data.
  • Google Drive API for backups and saving to your own Drive account (if enabled).

We do not sell your data.

7. International Transfers

Firebase and Google services may process data on servers outside your country. These providers use recognized safeguards (such as Standard Contractual Clauses and other mechanisms) where required.

8. Security

We use encryption for sensitive data (Numbers Vault), access controls, and secure storage to protect your information. No system is 100% secure, but we take reasonable measures to protect your data.

9. Data Retention

  • We retain account-related data and Firestore content only as long as needed to provide the service and meet legal/security obligations.
  • You control content stored in your Google Drive. You can delete those files anytime from Google Drive.
  • We delete data associated with your DocWallet account when you request deletion (see Section 11).

10. Your Rights (GDPR)

You may have the right to:

  • Access your data
  • Correct inaccurate data
  • Delete your data (right to erasure)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent (where processing is based on consent)

To exercise these rights, contact us using the details in Section 12. We may ask you to verify your identity before responding.

11. How to Request Account Deletion

You can request deletion of your DocWallet account and the data we control in any of these ways:

If you signed in with Google, you can also follow Google’s standard procedures to disconnect an app and remove its access:

  • Go to your Google Account → SecurityThird‑party access (or “Your connections to third‑party apps & services”).
  • Find DocWallet and choose Remove Access.
  • Optionally delete any DocWallet files from your Google Drive.
What deletion covers: We delete your account record and any data stored in our Firebase/Firestore backend that is linked to your account (such as metadata and encrypted Vault entries). Files stored in your Google Drive remain under your control and should be deleted by you if you want them removed.

12. Contact

If you have questions, requests, or concerns about privacy, contact:

13. Children’s Privacy

DocWallet is not intended for children under 13. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us so we can delete it.

14. Updates

We may update this policy. If we make material changes, we’ll update the Effective Date and provide notice in‑app or on this page.

Back to Home View Terms & Conditions