Privacy Policy

PreConnect respects your privacy. This page explains how we collect and use information when you use our service.

Information We Collect

We collect information necessary to provide the service, including data stored in your browser (cookies, localStorage), and analytics information (Google Analytics). We do not sell personal information.

Google account data (what we access)

When you sign in with Google (Google Identity Services / Firebase Authentication. We receive a limited set of profile information from Google with your consent. The most common fields include:

• Basic profile information: name, email address, profile photo (if available)
• A unique Google identifier (sub) contained in the ID token (used to identify your account)
• An ID token (JWT) issued by Google used to authenticate you with our backend services

We only request the following Google scopes for sign-in: openid,profile, and email. We do not request access to other Google APIs (Drive, Calendar, Contacts, Gmail, etc.).

How we use Google data

We use the Google data described above to:

• Authenticate you and establish a persistent session.
• Display your profile information (name, avatar, email) within the app.
• Associate and restore saved application state (called "snapshots") across devices when you choose to save or restore your data.
• Deliver and troubleshoot account-specific features (for example, restoring local settings or preferences you previously saved).

Data we store or persist

Your profile information (name, email, photo URL) is stored in your browser (localStorage) to make the site responsive and available offline. You can enable client-side encryption of this profile data using a passphrase in account settings; when enabled, the profile stored locally is encrypted with a key derived from your passphrase and never leaves your device in plain text.

The app can also save an application snapshot (a copy of selected localStorage keys) to a server-side store so you can restore it on another device. Snapshots intentionally exclude authentication tokens (we exclude stored ID tokens and secret material when building the snapshot). Snapshots are associated with your Google account identifier so they can be restored only by you.

Ads

We use Google AdSense to display advertising on this site. Google and other third-party vendors may use cookies, device identifiers, and other signals (including IP address and browser/user agent) to serve and personalize ads based on your past activity on this site and across the web. Ads may also be served non-personalized (contextual) if you opt out of personalized advertising or if your region restricts personalized ads.

Google outlines its data use for ads in the Google Ads policies. You can control or opt out of personalized advertising at Google Ads Settings, via YourAdChoices, or through device-level controls such as the browser or mobile OS privacy settings.

Data sharing and third parties

We may share or send data to the following third parties for the purposes listed below:

• Google / Firebase: authentication and identity verification (ID tokens), and Firebase services used by the app.
• Google Analytics: aggregated usage and performance analytics to improve the service.
• Google AdSense: advertising delivery and (if enabled) ad personalization.
• Cloud provider / database (e.g., Cloudflare D1 or hosting provider): if you save a snapshot, a copy of selected localStorage keys and non-sensitive profile fields will be stored on our backend so you can restore it. Snapshots do not include ID tokens or secret credentials.

We do not sell your personal information to third parties.

Storage, security, and protection

All data in transit between your device and our servers (and Google/Firebase services) is transmitted using HTTPS/TLS. Data stored by third-party services (for example, Firebase or our hosting provider) is protected by those providers' security controls, including access controls and encryption at rest. You can further protect your local profile data by enabling client-side encryption (passphrase-protected) in the app.

Data retention & deletion

We retain account profile information (name, email, public photo URL) while your account exists and while you continue to use the service. Snapshots you explicitly save will be retained until you choose to remove them. If you need your account data removed, contact us at the email below.

If you cannot access the app but need your data removed, contact us at [email protected] with the subject line "Data Deletion Request" and include the email address associated with your account. We will respond with next steps and will remove your data from our systems within 30 days where feasible; deletion from backups may take longer.

You can also revoke the app's access to your Google account by visiting your Google Account permissions page: myaccount.google.com/permissions.

Contact & more information

Data Controller

The data controller responsible for processing your personal data for this service is Sabbir Bin Abbas (PreConnect). You can contact the controller at [email protected].

Legal basis for processing

Where applicable (for users in the European Economic Area and other jurisdictions), we rely on the following legal bases for processing personal data: user consent for authentication, performance of a contract to provide our service, legitimate interests for site analytics and security, and compliance with legal obligations where required.

Automated decision-making

We do not use automated decision-making or profiling that produces legal effects or similarly significant effects for users. Some features (for example, saved UI preferences) may use simple heuristics and stored settings but do not constitute automated decision-making under data protection laws.

Children's privacy

Our service is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe we may have collected information from a child, please contact us at [email protected].

Security contact

If you discover a security vulnerability or need to notify us about a data breach, please contact [email protected] and include details to help us reproduce the issue. We will acknowledge within a reasonable timeframe and coordinate remediation.

Changes to this policy & effective date

We may update this privacy policy from time to time. The effective date of the current policy is shown by the "Last updated" date at the bottom of this page. Significant changes will be communicated to users where feasible.

Data export / portability

If you would like a copy of your personal data in a commonly used machine-readable format, contact [email protected] with the subject "Data Export Request" and we will provide instructions or a data export within a reasonable timeframe.

If you have questions about the data we collect or how we handle Google user data, please contact us at [email protected]. If you are concerned about Google's handling of data for Ads or Analytics, please consult Google's privacy pages linked elsewhere on this policy.

We also publish an ads.txt file (located at /ads.txt) to authorize our account with ad networks. This file is informational and does not itself render ads on this page.

Data Processing & Agreements

Where we rely on third-party services (for example, Firebase, Google Analytics, or our hosting provider) those providers act as data processors. We rely on their contractual commitments for security and data processing. You can review relevant third-party policies here:

• Firebase / Google Cloud Platform — Google Cloud Data Processing and Security Terms
• Google Analytics — Google Analytics Data Retention & Controls
• AdSense / Ads — Google Ads policies

Cookies & Local Storage

We use cookies and localStorage to provide the core functionality of the app and to remember user preferences. Cookies used by the site include:

• Session / authentication cookies — used by Firebase/Google to keep you signed in. You can revoke access via your Google Account permissions page.
• Preference cookies — store UI preferences and local feature toggles (stored in localStorage).
• Analytics cookies — Google Analytics cookies used to collect aggregated usage and performance metrics. These are configurable via Google's ad and tracking controls.

To opt out of Google Analytics collection for this browser, you can install the Google Analytics opt-out browser add-on. For ad personalization controls see Google Ads Settings.

Resources & links

Helpful references and external documentation referenced in this policy:

• Google Identity Services — developers.google.com/identity
• Firebase Authentication docs — firebase.google.com/docs/auth
• OpenID Connect / ID token details — openid-connect
• OAuth2 / OpenID scopes reference — oauth2 scopes
• MDN: localStorage — MDN localStorage
• MDN: Cookies — MDN cookies
• HTTPS/TLS overview — MDN TLS
• IAB Tech Lab ads.txt — iabtechlab.com/ads-txt

Your rights

Depending on your jurisdiction, you may have rights such as the right of access, correction, erasure (right to be forgotten), restriction of processing, data portability, the right to object to certain processing, and the right to withdraw consent where applicable. To exercise any of these rights, contact us at [email protected] and include the email associated with your account and a short description of your request.

International transfers

Our services and third-party processors may transfer and store information outside of your country of residence. When transfers occur, we rely on appropriate safeguards as provided by the processor (for example, Standard Contractual Clauses or other mechanisms provided by Google/Firebase). If you need details about the specific transfers or safeguards in place, contact us and we will provide them on request.

Retention summary

Summary of typical retention periods:

• Profile details (name, email, photo): retained while the account exists.
• Snapshots (user-saved): retained until user requests deletion.
• Analytics data: retained according to Google Analytics retention settings.

Quick links

• Revoke app access (Google permissions): myaccount.google.com/permissions
• Google Ads controls: adssettings.google.com
• Google Analytics opt-out: Analytics opt-out
• Firebase Data Processing Terms: cloud.google.com/terms/data-processing-terms

Last updated: September 30, 2025