Privacy policy

Last updated: 2026-05-11

This policy explains what personal data Koave ("the App") collects, why, who it's shared with, and how you can exercise your rights as a user (GDPR).

1. Data controller

The data controller for personal data collected via the App is:

• Rodolphe Daimez, individual
• Address: Le Hameau Pied, 50680 Saint-Andre-de-l'Epine, France
• Data contact: rodolphe.daimez@gmail.com

2. Data collected

Identification data

• Email address (required for authentication)
• First name / pseudonym
• Profile photo (optional)
• Unique user ID (Firebase UID)

Content data

• Household data: tasks, shopping lists, expenses, calendar, recipes
• Family members linked to your household
• Photos uploaded for profile or recipes

Technical data

• Device info (OS version, language, app version)
• Crash reports (Firebase Crashlytics)
• Anonymous usage analytics (Firebase Analytics)

3. Purposes and legal basis

Data is collected for the following purposes:

• Provide the App's features (legal basis: contract)
• Improve the App and fix bugs (legal basis: legitimate interest)
• Comply with legal obligations (legal basis: legal obligation)
• Send transactional emails (legal basis: contract)

4. Recipients of data

Your data is shared only with the following processors:

• Google Firebase (Authentication, Firestore, Storage, Cloud Functions, Analytics, Crashlytics) : EU region (europe-west1)
• Google Gemini AI (recipe photo scanning, optional) : your recipe photos are sent to Gemini and not stored on Google servers beyond processing
• Apple App Store / Google Play for distribution only

Transfers outside the EU

Some processors (Google) may transfer data outside the EU. These transfers are governed by EU Standard Contractual Clauses, which provide an adequate level of data protection under GDPR.

5. Retention period

Your data is kept as long as your account is active. If you delete your account, all personal data is removed within 30 days (except anonymized logs kept up to 13 months for anti-fraud).

6. Your rights

Under GDPR, you have the following rights on your data:

• Right of access
• Right to rectification
• Right to erasure
• Right to restrict processing
• Right to data portability
• Right to object
• Right to withdraw consent at any time

How to exercise your rights

Email us at rodolphe.daimez@gmail.com with your request. We respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority (in France: CNIL).

7. Account deletion

You can delete your account at any time from the App: Settings → Account → Delete my account. Deletion is instant and irreversible. See Delete my account for full details.

8. Security

Data is encrypted in transit (HTTPS/TLS) and at rest (Google Cloud). Authentication uses Firebase Auth with email + password or OAuth (Google, Apple).

9. Children

The App is intended for families with children. Parental accounts are required to create child profiles. We do not collect data directly from children without parental consent.

10. Cookies and trackers

The App does not use cookies (it's a native app). It uses Firebase Analytics with anonymous device identifiers. You can opt out in Settings → Privacy.

This website (koave.app) does not use any analytics cookies.

11. Changes to this policy

This policy may be updated. Significant changes will be notified in-app or by email. The "last updated" date at the top reflects the most recent revision.

Authoritative version

The authoritative version of this policy is the French original at /fr-FR/privacy.html. In case of discrepancy, the French version prevails.