Privacy Policy

Last updated: March 4, 2026

MVAT Studio ("we", "us", "our") operates the MVAT Focus mobile application (the "App"). This Privacy Policy explains how we collect, use, and protect your information.

1. Information We Collect

Account Data

When you sign in with Google or Apple, we receive:

• Your email address
• Your display name (if provided by the identity provider)
• A unique user identifier from the identity provider

If you continue without an account, we create an anonymous Firebase Auth session with no personal information.

Timer & Usage Data

• Focus session durations and completion status
• Timer settings (focus, short break, long break durations)
• Session history (stored in Firestore for signed-in users, or locally for anonymous users)

Purchase Data

• Subscription status (free or premium tier)
• Purchase receipts from Apple App Store or Google Play (processed server-side for validation)
• If using Stripe: a Stripe customer ID linked to your Firebase account (we never see or store full payment card details)

2. How We Use Your Information

• To provide and maintain the App
• To sync your timer data across devices (signed-in users)
• To process and validate subscription purchases
• To manage your account and respond to deletion requests

We do not sell your personal information. We do not use your data for advertising.

3. Third-Party Services

The App uses the following third-party services that may collect data according to their own privacy policies:

• Firebase Authentication (Google LLC) — user identity and session management
• Cloud Firestore (Google LLC) — timer data and user profile storage
• Apple Sign-In (Apple Inc.) — iOS authentication
• Google Sign-In (Google LLC) — authentication
• Stripe (Stripe, Inc.) — payment processing for web-based purchases
• Apple App Store / Google Play — in-app purchase processing

4. Data Storage & Security

Your data is stored in Google Cloud (Firebase) servers located in the United States. We use Firebase Security Rules to ensure users can only access their own data. All data is transmitted over HTTPS/TLS.

5. Data Retention

We retain your data for as long as your account is active. Timer history for free-tier users is limited to 7 days. You can request deletion of your account and all associated data at any time (see below).

6. Account Deletion

You can delete your account directly from the App: Settings → Delete Account. This permanently removes:

• Your Firebase Auth account
• All Firestore data (timer history, settings, profile)
• Any active Stripe subscriptions (cancelled immediately)

Deletion is irreversible. Processing completes within 30 days.

7. Children's Privacy

The App is not intended for children under 13. We do not knowingly collect personal information from children under 13.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of changes by updating the "Last updated" date. Continued use of the App after changes constitutes acceptance.

9. Contact

If you have questions about this Privacy Policy, contact us at: privacy@mvat.ai