PRIVACY POLICY
Last Updated: January 15, 2026
Effective Date: January 15, 2026
1. WHO WE ARE
Data Controller:
Andy Jamerson
Email: andy@betterbrews.app
Website: www.betterbrews.app
This Privacy Policy explains how we collect, use, share, and protect your personal information when you use the BetterBrews mobile application.
We comply with:
πͺπΊ GDPR (EU Regulation 2016/679)
πͺπΈ Spanish LOPDGDD (Organic Law 3/2018)
πΊπΈ CCPA (California Consumer Privacy Act)
2. INFORMATION WE COLLECT
2.1 Account Information
Email address - For login and communication
Username - Your public display name
Password - Encrypted and securely stored
Display name - Optional, for personalization
Profile photo - Optional
Personal tagline - Optional
2.2 Profile Preferences
Coffee preferences - Roast level, origin, brew method
Location - Country and city (optional)
Gear setup - Coffee equipment you own (optional)
Account privacy settings - Public or private profile
2.3 Coffee Journal Data
Coffee ratings - Your scores and reviews
Tasting notes - Flavor profiles and preferences
Brew photos - Photos you upload of your coffee
Coffee history - Coffees you've tried and favorited
2.4 Technical Information
Device identifiers - For session management
Usage analytics - Anonymous app interaction data
Error logs - To improve app stability
2.5 Camera & Photos (Optional)
We request access to your camera and photo library ONLY when you choose to:
Take photos of coffee or brew setups
Scan coffee bags with AI
Upload profile pictures
We never access your camera or photos without your explicit permission.
3. HOW WE USE YOUR INFORMATION
3.1 To Provide Our Service (Contract Performance)
Create and manage your account
Display your coffee journal and ratings
Enable social features (following, sharing)
Sync your data across devices
3.2 With Your Consent
AI Coffee Bag Scanning: When you use the scanning feature, photos are temporarily sent to OpenAI (GPT-4 Vision) to extract coffee information. Images are NOT stored or used for AI training.
Push notifications: If you enable them (optional)
3.3 To Improve Our Service (Legitimate Interest)
Analyze anonymous usage patterns
Fix bugs and improve performance
Develop new features
Prevent fraud and abuse
4. HOW WE SHARE YOUR INFORMATION
4.1 Service Providers
Supabase (Supabase Inc.)
Purpose: Database, authentication, file storage
Location: United States
Protection: GDPR-compliant Standard Contractual Clauses (SCCs)
Privacy: https://supabase.com/privacy
OpenAI (OpenAI, L.L.C.)
Purpose: AI-powered coffee bag scanning (optional feature)
Location: United States
Protection: Standard Contractual Clauses (SCCs)
Important: Images sent to OpenAI are processed temporarily and are NOT stored permanently or used for training AI models
Privacy: https://openai.com/privacy
4.2 Public Information
The following information is publicly visible to other app users:
Username and display name
Profile photo and tagline
Coffee ratings and reviews you publish
Public comments and interactions
You can make your profile private in Settings.
4.3 We Never Sell Your Data
We do NOT sell, rent, or trade your personal information to third parties for marketing purposes.
5. INTERNATIONAL DATA TRANSFERS
Your data may be transferred to and stored in the United States (outside the EEA). These transfers are protected by:
β EU-approved Standard Contractual Clauses (SCCs)
β Additional security safeguards
β Compliance with Schrems II ruling
6. DATA RETENTION
Data TypeRetention PeriodAccount dataWhile your account is activePublic ratings/reviewsIndefinitely (public content)Session data90 daysAI-processed imagesNot stored (processed in real-time only)
After Account Deletion:
Your personal information is deleted within 30 days
Public ratings may remain anonymized (unlinked from your identity)
7. YOUR RIGHTS
You have the right to:
7.1 Access & Control
β Access - Get a copy of your data
β Rectification - Correct inaccurate data
β Deletion - Delete your account and data ("right to be forgotten")
β Restriction - Limit how we process your data
β Portability - Export your data in structured format
β Object - Object to data processing
7.2 How to Exercise Your Rights
In the App:
Settings β Account β Manage Personal Data
Settings β Account β Delete Account
By Email:
Send your request to: andy@betterbrews.app
Include: Your registered email and the right you wish to exercise
We will respond within 30 days
7.3 File a Complaint
If you're in the EU and believe your rights have been violated, you can file a complaint with:
Spanish Data Protection Authority (AEPD)
Web: www.aepd.es
Phone: +34 901 100 099
Your local EU Data Protection Authority
Find yours: https://edpb.europa.eu/about-edpb/board/members_en
8. DATA SECURITY
We protect your data with:
π Encryption - All data transmissions use HTTPS/TLS
π Secure passwords - Hashed with bcrypt
π Access control - Restricted to authorized personnel only
π Regular audits - Security reviews and updates
π Backups - Daily encrypted backups
π Two-factor authentication - Available for your account
Despite our safeguards, no system is 100% secure. We cannot guarantee absolute security.
9. CHILDREN'S PRIVACY
BetterBrews is not intended for children under 16 years old. We do not knowingly collect data from children under 16.
If you're under 16, you need parental consent to use the app.
If we discover we've collected data from a child without consent, we will delete it immediately.
10. CHANGES TO THIS POLICY
We may update this Privacy Policy. Significant changes will be notified via:
In-app notification
Email to your registered address
Notice on www.betterbrews.app
Continued use of the app after changes indicates acceptance.
11. CONTACT US
Questions about this Privacy Policy or your data?
Email: andy@betterbrews.app
Website: www.betterbrews.app
πͺπΊ GDPR (EU) 2016/679 and Spanish LOPDGDD 3/2018 Compliant
Last updated: January 15, 2026
