Privacy Policy

1. Information We Collect

ViralSpark is available as an iOS app and a web app. What data we collect depends on which platform you use.

iOS App

The iOS app does not require account creation. The following data is stored locally on your device only and never transmitted to our servers:

• Content generation history (last 50 items)
• Subscription status and usage counters
• App preferences and settings

Web App

The web app stores generation history and preferences in your browser's localStorage. When you create an account or sign in with Google, we additionally collect and store the following via Google Firebase:

• Your email address — collected via Firebase Authentication (email/password sign-up or Google Sign-In) for account identification and subscription verification
• A unique user ID (UID) — assigned by Firebase Authentication to identify your account
• Daily usage counts — stored in Firebase Firestore, keyed to your UID, to enforce fair-use limits on the Basic tier
• Subscription status (plan type, renewal date) — stored locally in your browser after Stripe verification

If you sign in via Google, Google may share your name, email address, and profile photo with Firebase Authentication. Your Google account credentials are managed by Google and are never stored on our own servers.

Firebase Authentication uses IndexedDB in your browser to persist your login session across page reloads. We also store lightweight flags in localStorage (login state indicator and email display hint) for UI purposes.

2. How Your Inputs Are Used

When you generate content, your inputs (topics, keywords, tone preferences, content type) are securely transmitted to our AI backend for processing. This data is used solely to produce your content result and is not stored on our servers after processing.

We recommend that you do not include sensitive or personally identifiable information in your generation inputs (e.g. full names, addresses, financial details).

3. Subscription & Payment Data

iOS App (Apple)

In-app purchases on iOS are processed and managed entirely by Apple through the App Store. We do not collect, process, or store any payment card information. Apple is solely responsible for billing, subscription management, and refunds under its own terms and policies. We may receive limited information (such as subscription status or receipt data) for the sole purpose of validating your access to paid features.

Web App (Stripe)

Web subscriptions are processed by Stripe, Inc., a PCI-DSS-certified payment processor. When you subscribe via the web app:

• All payment information (including card details) is collected and processed directly by Stripe. We do not access or store your full payment details.
• Stripe maintains customer records (such as email, subscription status, and billing history) on its own systems in accordance with its policies.
• We receive only limited information necessary to confirm your subscription status (such as your email and active plan) to enable access to paid features.

We are not responsible for payment processing, billing errors, declined transactions, or refunds. Any payment-related issues should be addressed directly with the respective platform provider (Apple or Stripe).

Access to paid features is conditional upon successful payment confirmation from the platform provider.

4. Analytics & Diagnostics

We may use anonymized, aggregated analytics to improve the Service experience. This data:

• Cannot be used to identify you personally
• Does not include your content or generation inputs
• Is used only to diagnose issues and improve performance

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. Data is only shared with the following service providers:

• ViralSpark AI — Our proprietary AI engine powers real-time content generation. Your inputs are processed securely and are not stored after use.
• Google Firebase (Google LLC) — We use Firebase Authentication to manage user accounts and Google Sign-In, and Firebase Firestore to store per-user daily usage data. Your email address and UID are stored in Firebase systems. Firebase is operated by Google LLC and is subject to Google's Privacy Policy.
• Apple — For iOS payment processing and subscription management.
• Stripe, Inc. — For web payment processing and subscription management. Stripe operates as a data processor under their own Privacy Policy.

All third-party providers are contractually required to use your data only to provide their services and not for any other purpose.

6. Data Retention

iOS App: All data is stored locally on your device. Uninstalling ViralSpark removes all locally stored data. We do not maintain server-side user records or generation logs for iOS users.

Web App: Generation history and subscription status are stored in your browser's localStorage and can be cleared by clearing your browser data. Additionally:

• Your Firebase account (email address and UID) is retained until you request deletion. You may request account deletion by contacting us at hello.viralspark@gmail.com.
• Firestore usage data (daily generation counts) is retained for operational purposes and deleted upon account deletion request.
• Your email and subscription record may be retained by Stripe for billing and compliance purposes. You may request deletion of your Stripe data by contacting us.

7. Cookies & Local Storage

The ViralSpark web app uses localStorage and IndexedDB on your device. We do not use tracking cookies, advertising cookies, or cross-site tracking technologies. Specifically:

• localStorage — stores generation history, subscription status, a login state flag, and an email display hint for UI purposes
• IndexedDB — used by Firebase Authentication to persist your login session across browser restarts. This is managed entirely by the Firebase SDK.

You can clear all locally stored data at any time via your browser's storage settings.

8. Children's Privacy

ViralSpark is not directed to children under the age of 13. We do not knowingly collect or solicit personal information from children. If you believe a child under 13 has provided us with personal information, please contact us immediately at hello.viralspark@gmail.com.

9. Your Rights & Data Deletion

You have control over your data and subscriptions as follows:

Local Data

• iOS App: Delete all local data via the "Delete Account" option in Settings, or by uninstalling the app.
• Web App: Clear your browser's localStorage and IndexedDB to remove locally stored data including your session.

Account & Server-Side Data (Web App)

• To delete your Firebase account (email address, UID, and usage data stored in Firestore), contact us at hello.viralspark@gmail.com with the subject "Account Deletion Request". We will process your request within 30 days.
• If you signed in with Google, you may also revoke ViralSpark's access via your Google Account permissions.

Subscriptions

Subscriptions are managed by third-party platforms and can be cancelled at any time:

• iOS App: Manage or cancel via your Apple ID account settings.
• Web App: Manage or cancel through your account dashboard or by contacting support.

We do not manage or control subscription billing, cancellations, or refunds directly.

10. Security

We take reasonable technical measures to protect your data. All communication with our AI backend and payment processors is conducted over encrypted HTTPS connections. Stripe is PCI-DSS Level 1 certified — the highest level of payment security certification. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes through in-app notifications or by updating this page. Continued use of the Service after changes constitutes your acceptance of the updated policy.

12. Contact

For privacy concerns, data requests, or questions about this policy, contact us at hello.viralspark@gmail.com.