Privacy Policy
App Name: Labeeb - AI Productivity Planner
Last Updated: May 16, 2026
- Email address for Firebase Authentication.
- Email verification status to determine whether certain account-sensitive or AI-powered features can be used.
- User ID generated by Firebase Authentication.
- Profile information you choose to provide, such as name, profession, age group, work style, goals, interests, and preferred AI language.
- Last active timestamp used for account activity, notification eligibility, and retention decisions.
1.2 Task and Productivity Data
- Task titles, notes, categories, subtasks, due dates, reminders, notification settings, and completion status stored in Firebase Firestore.
- Progress, XP, streaks, achievements, and related productivity statistics used to provide app functionality.
- AI parsing requests and generated task outputs sent to the backend and Google Gemini API when you use AI features.
- Voice and audio input: when you use voice-to-task features, the app records audio to process it through the AI service. We do not intentionally retain voice recordings on our servers after processing.
- AI output ratings and feedback: if you choose to rate an AI output, we may store the rating and related input/output task context to improve AI quality. We keep a limited number of low-rated feedback records per user.
- AI credit usage data: AI credit counters, earned ad credits, usage period keys, and related quota information may be stored in Firebase Firestore.
1.3 Device, Security, and Abuse Prevention Data
- Device tokens for Firebase Cloud Messaging push notifications.
- Request metadata such as timestamps, authentication status, and rate-limit information for security, abuse prevention, and service reliability.
- Login and account security signals provided by Firebase Authentication, including failed attempt handling and abuse protection responses.
1.4 Analytics and Crash Data
- App usage statistics collected via Firebase Analytics.
- Crash reports collected via Firebase Crashlytics.
- Performance metrics collected via Firebase Performance Monitoring.
1.5 Advertising Data
- Advertising identifier for ad delivery and personalization via Google AdMob where permitted.
- Ad engagement data collected by Google AdMob.
1.6 Subscription and Purchase Data
- Purchase history and entitlement status processed through RevenueCat and Google Play.
- Subscription tier and premium status stored to provide premium features and enforce feature limits.
2.1 Core App Functionality
- To authenticate your account and provide access to your tasks.
- To verify email ownership before enabling selected risky or costly features.
- To sync your tasks and preferences across devices.
- To send push notifications for task reminders and coaching notifications.
- To provide AI-powered task parsing, AI suggestions, AI reports, and productivity insights.
- To track progress, XP, achievements, streaks, and task completion.
2.2 Security, Rate Limiting, and Abuse Prevention
- To enforce fair-use limits and AI credit limits.
- To prevent automated abuse, credential attacks, spam, and attempts to bypass limits.
- To protect backend APIs, Firestore data, and account deletion flows.
2.3 Analytics and Improvement
- To understand usage patterns and improve the app.
- To diagnose crashes and performance issues.
- To improve AI output quality using optional user feedback ratings.
2.4 Advertising and Subscription Management
- To display ads through Google AdMob for eligible users.
- To process and manage subscriptions, purchases, and entitlements through Google Play and RevenueCat.
3. Data Storage, Security, and Retention
3.1 Data Storage
- User account data: stored in Firebase Authentication.
- App data: stored in Firebase Firestore.
- Push notification tokens: stored in Firebase Firestore and Firebase Cloud Messaging.
- Analytics, crash, and performance data: stored by Firebase services.
- Subscription and purchase data: processed by Google Play and RevenueCat.
- Backend processing: hosted on Railway and used to process authenticated API requests.
3.2 Data Security
- Data is encrypted in transit using HTTPS/TLS.
- Firebase and other third-party providers apply their own security controls.
- Firestore access is controlled by Firebase Security Rules.
- Backend APIs validate Firebase ID tokens for protected requests.
- We may use rate limits and abuse-prevention controls to protect the service.
3.3 Data Retention
- Tasks with due dates older than approximately 6 months may be automatically deleted.
- Free accounts that have been inactive for approximately 1 year may be permanently deleted, including the Firebase Auth account, tasks, AI feedback, device tokens, and user profile data.
- Active premium users are excluded from automated inactive free-account deletion while premium access remains active.
- AI feedback records are stored only when you voluntarily submit a rating and may be limited to a small number of records per user.
- Voice recordings are used for processing and are not intentionally retained on our servers after transcription or task extraction.
- Analytics, crash, advertising, and subscription data are retained according to the policies of Firebase, Google, AdMob, RevenueCat, and Google Play.
- You can delete your account and associated app data from within the app at any time.
4. Third-Party Services
We use the following third-party services:
4.1 Firebase and Google
- Firebase Authentication for account authentication and email verification.
- Firebase Firestore for app data storage.
- Firebase Cloud Messaging for push notifications.
- Firebase Analytics for app analytics.
- Firebase Crashlytics for crash reporting.
- Firebase Performance Monitoring for performance monitoring.
- Google Gemini API for AI task parsing and AI-generated productivity features.
- Google AdMob for advertising.
- Google Play for app distribution and in-app purchase billing.
4.2 RevenueCat
- Subscription and entitlement management.
4.3 Railway
5. Data Sharing
We do not sell your personal data. We may share data with:
- Service providers such as Google, Firebase, Gemini, RevenueCat, AdMob, Google Play, and Railway as necessary to provide app functionality.
- Legal authorities when required by law.
- Business partners in the event of a merger, acquisition, or similar transaction, with appropriate notice where required.
6. Your Rights and Choices
You may have the right to:
- Access your personal data.
- Correct inaccurate data.
- Delete your account and associated app data.
- Opt out of personalized advertising where supported.
- Request export of your data where technically available.
- Withdraw consent where processing is based on consent.
You can delete your account from Settings > Delete Account. If you cannot access the app, contact us using the email below.
7. Children’s Privacy
Labeeb is not intended for children under 13. We do not knowingly collect personal information from children under 13.
8. International Data Transfers
Your data may be transferred to and processed in countries other than your country of residence, including the United States and other countries where our service providers operate.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify users of significant changes by posting the updated policy and, where appropriate, by in-app notice.
For questions about this Privacy Policy or your data, contact us at:
Additional Disclosures
Google Play Data Safety
This app may collect, process, or share data for:
- App functionality: authentication, cloud sync, notifications, AI features, task management, and subscriptions.
- Analytics: app usage, crash reporting, and performance monitoring.
- Advertising or marketing: ad delivery and personalization where permitted.
- Security and compliance: abuse prevention, rate limiting, account verification, and fraud prevention.
California Consumer Privacy Act (CCPA)
If you are a California resident, you may have additional rights, including the right to know, delete, correct, and opt out of certain data practices. We do not sell personal data.
General Data Protection Regulation (GDPR)
If you are in the European Union or a similar jurisdiction, you may have rights to access, rectify, erase, restrict, object to processing, and port your data, and to lodge a complaint with a supervisory authority.
Version: 1.1
Effective Date: May 16, 2026