WordFirst Privacy Policy

Account Information (For Registered Users)

When you create an account with us, we collect:

• Email address (for account authentication and communication)
• Password (encrypted and securely stored)
• Email verification status
• Account creation and last activity timestamps

Authentication Information

• Google Sign-In data (if you choose to sign in with Google): Google user ID, email address, and profile name
• Firebase Authentication tokens for secure session management
• Device registration information for subscription management (limited to 2 devices per subscription)

Subscription and Payment Information

• Subscription status (active, expired, trial)
• Purchase tokens and transaction IDs (handled securely through Google Play Store and App Store)
• Subscription type (annual subscription)
• Payment platform (Google Play or App Store)
• Subscription start and expiry dates
• Free trial usage status

App Usage and Analytics

• Audio usage: Tracks played, duration
• App performance data: Error logs, crash reports, and diagnostic information
• Session data: App launch times and usage duration

Device Information

• Device identifiers: Unique device ID for subscription management
• Device model and operating system version
• App version and build information
• Network connectivity status (to determine online/offline mode)

Technical Information

• IP address (for security and fraud prevention)
• Connection metadata for Firebase services
• App integrity verification data through Firebase App Check and Google Play Integrity

Core App Functionality

• Provide access to Bible text and audio content
• Maintain your reading progress and bookmarks
• Sync your data across authorized devices (for registered users)
• Enable offline reading and audio playback

Account Management

• Create and manage user accounts
• Authenticate users securely
• Verify email addresses
• Manage subscription status and access to premium features

Subscription Services

• Process and validate subscription purchases
• Manage free trial access
• Control access to premium audio content
• Handle subscription cancellations and refunds
• Enforce device limits (maximum 2 devices per subscription)

App Improvement

• Analyze usage patterns to improve the app experience
• Identify and fix technical issues
• Optimize app performance and stability
• Develop new features based on user needs

Security

• Prevent unauthorized access and fraud
• Verify app integrity and prevent tampering
• Secure API communications
• Monitor for suspicious activity

Communication

• Send important account notifications
• Provide customer support
• Notify about subscription status changes
• Share critical security updates

Local Storage (Guest Users)

For users who choose not to create an account:

• Bookmarks, playlists, and preferences are stored locally on your device using SharedPreferences
• This data remains on your device and is not transmitted to our servers
• You can migrate this data to a registered account if you choose to sign up later

Cloud Storage (Registered Users)

For users with accounts:

• Account data is stored securely in Google Cloud Firestore
• Bible text is stored locally in an encrypted SQLite database
• Audio files are stored in Firebase Cloud Storage with private access
• User preferences and app data are synced across your authorized devices

Security Measures

• All data transmission uses encryption (HTTPS/TLS)
• Passwords are hashed and never stored in plain text
• Firebase App Check prevents unauthorized API access
• Google Play Integrity ensures app authenticity
• Server-side purchase validation prevents fraud
• Strict Firebase security rules limit data access to authorized users only

Data Retention

• Account data is retained while your account is active
• Subscription data is retained for tax and legal compliance (typically 7 years)
• Usage analytics are retained for 2 years maximum
• Guest user data is stored only on your device until manually deleted

We Do Not Sell Your Data

Service Providers

We share limited data with trusted service providers who help us operate the app:

Legal Requirements

We may disclose your information if required by law or in good faith belief that such action is necessary to:

• Comply with legal obligations or court orders
• Protect and defend our rights or property
• Prevent fraud or security threats
• Protect user safety

Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction. You will be notified of any such change.

Account Access and Control

• View your data: Access your account information, bookmarks, and preferences
• Update information: Modify your email, password, and app settings
• Delete bookmarks: Remove saved verses and personal notes
• Manage playlists: Create, edit, or delete verse collections

Data Portability

• Export data: Download your bookmarks and notes in a portable format
• Import data: Transfer guest user data to a registered account

Account Deletion

• Delete account: Permanently remove your account and associated data
• Data removal: Most data is deleted within 30 days of account deletion
• Subscription data: May be retained longer for legal and financial compliance

Communication Preferences

• Email notifications: Manage subscription and account-related emails
• Marketing communications: We do not send marketing emails (this is a Bible app, not a marketing platform)

Subscription Management

• Cancel subscription: Manage through Google Play Store or App Store
• Refund requests: Handle through the respective app store
• Device management: Remove authorized devices from your account