Privacy Policy for Deela

Last Updated: December 18, 2025

1. Introduction

Welcome to Deela! Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application, Deela (“App”). By using the App, you agree to the terms of this Privacy Policy.

2. Information We Collect

We collect the following types of information:

2.1 Personal Information

When you create an account, we collect:

• Name (first and last name)
• Email address
• Phone number (for account verification via SMS)
• Profile picture (optional, uploaded by you)
• Physical address (for calculating distances to items)

2.2 Item Information

When you upload an item for donation or request, we collect:

• Photos of the item (up to 3 images)
• Item title and description
• Item category (Food or Object)
• Pickup availability (time preferences)
• Expiration date (for food items)
• Approximate location (to show distance to other users)

2.3 Location Data

• We collect your approximate location (city/neighborhood level) to:
  • Calculate distances between you and available items
  • Show you relevant nearby listings
  • Display your general area to other users (not your exact address)
• We do NOT track your location in the background
• Location is only accessed when you use the app
• You can disable location access in device settings (may limit functionality)

2.4 Communications Data

• Messages exchanged between users through our in-app messaging system
• Messages are stored on secure servers and reviewed only if reported for violations
• Message notifications (when new messages arrive or item status changes)

2.5 Usage Data

• Device information (operating system version, device model)
• App usage analytics (screens visited, features used)
• Crash reports and error logs (to improve app stability)

2.6 In-App Purchase Data

• When you purchase Lingonberries (virtual currency), transaction details are processed by Apple App Store or Google Play Store
• We do NOT store payment card information
• Purchase history is maintained for support purposes

3. How We Use Your Information

We use the collected information to:

• Provide core functionality: Enable item donations, requests, and user-to-user communication
• Calculate distances: Show how far items are from your location
• Verify accounts: Confirm phone numbers via SMS OTP codes
• Process transactions: Handle in-app purchases of virtual currency
• Send notifications: Alert you about messages, item status changes, and app updates
• Improve services: Analyze usage patterns to enhance user experience
• Enforce policies: Prevent fraud, spam, and policy violations
• Legal compliance: Respond to legal requests and protect user rights

3.1 Phone Number Verification

• We send SMS verification codes to confirm your phone number
• Standard SMS rates may apply from your mobile carrier
• Phone numbers are verified through Firebase Authentication
• We do NOT use your phone number for marketing purposes

3.2 Photo Usage

• You retain ownership of all photos you upload
• By uploading photos, you grant Deela a license to display them in the app
• Other users can view your item photos but cannot download them directly
• Profile pictures are visible to all users
• We reserve the right to remove inappropriate or copyrighted content

4. How We Share Your Information

We do NOT sell your personal data to third parties.

We may share your information with:

4.1 Other Users (Public Information)

Visible to all users:

• Your name and profile picture
• Your general location (city/area, not exact address)
• Items you’ve posted (photos, descriptions, approximate location)
• Your user rating and review history
• Number of donations completed

4.2 Service Providers

We use trusted third-party services:

• Firebase (Google): Data storage, authentication, push notifications
• Google Maps API: Distance calculation and location services
• Cloud storage: Secure storage of uploaded photos

These providers have access to information only as needed to perform their functions and are obligated to protect it.

4.3 Law Enforcement & Legal Requirements

We may disclose information when:

• Required by law (court orders, subpoenas)
• Necessary to protect user safety
• Responding to reports of illegal content or activity
• Enforcing our Terms of Service

4.4 Business Transfers

If Deela is involved in a merger, acquisition, or sale of assets, your information may be transferred to the new entity.

5. Content Moderation

5.1 User-Generated Content

• All uploaded photos are subject to automated and manual review
• Inappropriate content (violence, nudity, hate speech) will be removed
• Repeated violations may result in account suspension

5.2 Reporting System

Users can report:

• Inappropriate photos or profiles
• Abusive messages or behavior
• Fraudulent or misleading item listings
• Violations of community guidelines

5.3 Moderation Process

• Reported content is reviewed by our moderation team within 48 hours
• Users receive notifications of actions taken
• Severe violations may result in immediate account termination
• Appeals can be submitted through in-app support

6. Data Security

We implement industry-standard security measures:

• Encryption in transit: All data transmitted is encrypted using TLS/SSL
• Secure servers: Data is stored on Firebase Cloud with access controls
• Authentication: Accounts protected by phone verification and passwords
• Regular security audits: We continuously monitor for vulnerabilities

However, no system is 100% secure. We encourage you to:

• Use strong, unique passwords
• Enable two-factor authentication when available
• Report suspicious activity immediately

7. Data Retention

• Active accounts: Data retained as long as your account is active
• Inactive accounts: Data may be deleted after 2 years of inactivity
• Deleted accounts: Most data deleted within 30 days (see section 8)
• Legal retention: Some data may be retained longer for legal/compliance reasons
• Backups: Deleted data may exist in backups for up to 90 days

7.1 Message Retention

• Messages are retained for the duration of both users’ accounts
• Deleted conversations are removed from active storage within 7 days
• Reported messages may be retained for investigation purposes

8. Your Rights & Choices

8.1 Access & Update

• View and edit your profile information within the app
• Update your location, phone number, or email address
• Change privacy settings for notifications

8.2 Location Control

• Disable location access in device settings (Settings > Privacy > Location)
• Note: Disabling location will limit your ability to see nearby items

8.3 Notifications

• Manage notification preferences in app settings
• Disable specific notification types (messages, item updates, etc.)
• System notifications can be controlled in device settings

8.4 Account Deletion

To delete your account:

1. Go to Settings > Account > Delete Account
2. Or contact support at contactUs@deela.se
3. Account deletion includes:
   • Profile information and photos
   • Item listings and photos
   • Message history
   • In-app purchase history (receipts retained for financial compliance)
   • Rating and review data

Data NOT deleted:

• Transaction records (retained for tax/legal purposes)
• Aggregated/anonymized analytics data
• Content reported for policy violations (retained for safety)

Deletion timeline: Most data deleted within 30 days

8.5 Data Export (GDPR Right)

European users can request a copy of their data:

• Email contactUs@deela.se with subject “Data Export Request”
• Include your registered email and phone number
• We will provide your data within 30 days in machine-readable format (JSON/CSV)

Exported data includes:

• Profile information
• Item listings
• Message history
• Transaction records
• Account activity logs

8.6 Objection & Restriction (GDPR)

European users can:

• Object to data processing for certain purposes
• Request restriction of processing
• Withdraw consent at any time

Contact contactUs@deela.se to exercise these rights.

9. International Data Transfers

• Our servers are located in EU.
• Data may be transferred to countries with different privacy laws
• We ensure adequate protections through:
  • Standard contractual clauses (SCCs)
  • Compliance with GDPR for European users
  • Privacy Shield Framework compliance (where applicable)

10. Children’s Privacy

• Deela is intended for users aged 13 and older
• We do NOT knowingly collect data from children under 13
• If we become aware of data from a child under 13, we will:
  • Delete the account immediately
  • Remove all associated data
  • Notify parents/guardians if contact information is available

Parents: If you believe your child under 13 has created an account, contact us immediately at contactUs@deela.se

11. California Privacy Rights (CCPA)

California residents have additional rights:

• Right to Know: What personal information we collect and how we use it
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We do NOT sell personal information
• Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact contactUs@deela.se

12. Changes to This Privacy Policy

• We may update this policy to reflect changes in practices or legal requirements
• Material changes will be communicated via:
  • In-app notification
  • Email to registered users
  • Prominent notice in the app

Continued use after changes constitutes acceptance.

Review this policy periodically for updates.

13. Third-Party Links

• Our app may contain links to external websites (e.g., privacy policy, terms of service)
• We are NOT responsible for the privacy practices of third-party sites
• Review their privacy policies before providing information

14. Contact Us

For questions, concerns, or requests regarding this Privacy Policy:

Email: contactUs@deela.se

---

By using Deela, you acknowledge that you have read and understood this Privacy Policy.