Café Inn Privacy Policy

Effective date: April 8, 2026

This Privacy Policy explains how Café Inn ("Café Inn," "we," "us," or "our") collects, uses, discloses, and protects personal data when you use the Café Inn mobile app, website, and related services (collectively, the "Service").

If you do not agree with this Privacy Policy, do not use the Service.

1. Scope

This Privacy Policy applies to information we collect:

• when you create or use a Café Inn account;
• when you record, upload, rate, react to, or share coffee entries;
• when you subscribe to paid features;
• when you contact us, request support, or send feedback;
• when you use our app, website, notifications, or related tools.

If we launch new features in the future, such as additional social features, commerce tools, partnerships, business features, community tools, or new analytics and personalization tools, we may update this Privacy Policy before those features are made available or materially change how data is used.

2. Information We Collect

Information you provide directly

We may collect:

• account information, such as your sign-in provider, email address or provider identifier received from Apple or Google, and your account ID;
• profile information, such as username, full name, biography, avatar, and linked sign-in methods;
• coffee entry data, such as nickname, coffee type, preparation details, add-ons, notes, photos, shop name, address, city, country, coordinates, price, currency, and timestamps;
• community activity, such as ratings, emoji reactions, leaderboard participation, views associated with your account, and feedback you submit;
• subscription-related information, such as entitlement status and purchase state returned by the app store and subscription provider;
• communications, such as support emails, bug reports, survey responses, and other messages you send to us.

Information we collect automatically

When you use the Service, we may automatically collect:

• device and app information, such as app version, build number, operating system, platform, and device characteristics;
• log, diagnostics, and crash data;
• usage and analytics data, such as screens viewed, actions taken, feature engagement, referral or sharing events, and aggregate product metrics;
• push notification data, including device tokens and notification delivery metadata;
• approximate technical and network data that service providers may generate when requests are made to their systems.

Information from third parties

We may receive information from:

• Apple or Google when you sign in or link accounts;
• app stores and our subscription provider for billing, product, and entitlement status;
• analytics, crash-reporting, mapping, hosting, database, authentication, and messaging providers that support the Service;
• other users, for example when they rate, react to, or view content you posted.

3. How We Use Information

We use personal data to:

• create and manage accounts and profiles;
• operate the coffee logging, feed, leaderboard, recap, and community features;
• display your public content to other users according to the Service design and your visibility choices;
• process reactions, ratings, notifications, subscription access, and support requests;
• personalize language, content ordering, recommendations, and feature availability;
• improve performance, reliability, safety, moderation, fraud prevention, and abuse detection;
• measure product usage, troubleshoot issues, and develop current and future features;
• comply with legal obligations and enforce our Terms of Use.

4. What Other Users Can See

Because Café Inn includes social and discovery features, some information may be visible to other users or the public.

Depending on how the Service is configured, the following may be visible to other users:

• your username, display name, avatar, and biography;
• public coffee entries and related metadata, such as coffee type, notes, photos, timestamps, and cafe information;
• your ratings, reactions, leaderboard placement, recap statistics, and similar engagement signals;
• aggregate activity associated with your account, such as top entries, favorites, or community stats.

Photos stored for public entries and avatars may be publicly accessible by URL where the Service relies on public storage delivery.

You should not post sensitive personal data, precise private location details, financial account information, health information, or other content you do not want shared.

5. Legal Bases for Processing

If you are in the European Economic Area, United Kingdom, or a similar jurisdiction, we generally rely on one or more of the following legal bases:

• contract, where processing is necessary to provide the Service you requested;
• legitimate interests, such as product improvement, security, fraud prevention, moderation, analytics, and business operations;
• consent, where required, including for certain push notifications or optional permissions;
• legal obligation, where processing is required by law.

6. How We Share Information

We may share information:

• with vendors and infrastructure providers that help us provide the Service, including hosting, database, authentication, storage, push messaging, analytics, crash reporting, subscriptions, mapping, customer support, and email providers;
• with app stores and payment platforms to manage subscriptions, purchases, and refunds;
• with other users and the public, where your content, profile, or activity is public or intended for community features;
• with professional advisers, auditors, insurers, or acquirers in connection with business operations or a transaction;
• with regulators, law enforcement, courts, or other third parties when required by law or to protect rights, safety, and the integrity of the Service.

We do not sell your personal data for money. We may use service providers that process data on our behalf for analytics, infrastructure, and product operations.

7. Third-Party Services We Use

The Service may rely on third-party providers, including providers for:

• authentication and backend infrastructure;
• push notifications and cloud messaging;
• subscriptions and in-app purchases;
• analytics and product measurement;
• crash reporting and error monitoring;
• maps, place search, and geolocation support;
• app store distribution, review prompts, and update checks;
• support email composition or sharing tools.

Those providers process information under their own terms and privacy disclosures where applicable.

8. Retention

We keep personal data for as long as reasonably necessary to:

• provide the Service;
• maintain records of subscriptions, abuse prevention, disputes, and compliance;
• preserve backups and logs for security and operational continuity;
• enforce our agreements.

We may retain de-identified or aggregated information for analytics, product planning, and benchmarking.

When you delete content, some residual copies may remain in backups, logs, caches, or system records for a limited period. When you delete your account, we will delete or de-identify associated personal data unless retention is required for legal, security, fraud-prevention, or legitimate business reasons.

9. Your Choices and Rights

Depending on your jurisdiction, you may have the right to:

• access, correct, update, or delete your personal data;
• request a copy of your data;
• object to or restrict certain processing;
• withdraw consent where processing is based on consent;
• lodge a complaint with a data protection authority.

You can also:

• edit your profile and content in the app;
• disable push notifications through your device or app settings;
• manage or cancel subscriptions through the relevant app store account;
• request account deletion through the Service where available or by contacting us.

We may need to verify your identity before completing certain requests.

10. International Transfers

The Service and our providers may process information in countries other than your own. Those countries may not provide the same level of data protection as your home jurisdiction.

When required, we use appropriate safeguards for cross-border transfers, such as contractual protections or reliance on other lawful transfer mechanisms.

11. Security

We use reasonable technical and organizational measures designed to protect personal data. No system is completely secure, and we cannot guarantee absolute security.

You are responsible for safeguarding your device, account credentials, and access to sign-in providers you use with Café Inn.

12. Children

The Service is not directed to children under 13, and in some jurisdictions you must be older to use the Service or purchase subscriptions. If we learn that we collected personal data from a child who was not permitted to use the Service, we may delete that information and terminate the account.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version, update the effective date above, and provide additional notice where required.

14. Contact Us

If you have questions or requests about this Privacy Policy, contact:

• Email: info@cafe-inn.com
• Website: https://cafe-inn.com