Legal

Privacy Policy

Version 1.1 — Last updated: June 2026

      Your privacy matters to us. This Policy clearly explains what data we collect, how we use it, and what rights you have over it. We recommend reading it in full before using the app.
    

1. Data Controller

The data controller for personal data collected through ReAloud is its owner (hereinafter "the Company" or "ReAloud"), reachable at hola@realoud.io and at the official website realoud.io.

2. Data We Collect

2.1 Data you provide directly

Name or username.
Email address — used exclusively for authentication and password recovery. It is never visible to other users and cannot be used as a search criterion within ReAloud.
Password — stored in encrypted form, never in plain text.
Profile photo (optional).
Audio content you record and share within the app.
Push notification token (FCM) — to deliver service notifications to your device.
Support communications sent to our team.

2.2 Data collected automatically

Unique device identifier (Device ID).
Operating system and version (iOS / Android).
Installed app version.
IP address and approximate geolocation (country and city).
Date and time of access.
Usage logs (features used, frequency, session duration).
Performance data and crash reports.

2.3 Third-party sign-in data

If you sign in via Google or Apple, we receive only the data those services share with your consent: name, email, and profile photo. We never access third-party passwords.

2.4 Data we do NOT collect

Credit or debit card details (processed exclusively by App Store or Google Play).
Government-issued identity documents.
Health or biometric data.
Your phone contacts without explicit consent.

2.5 Audio privacy — Closed Audio Sessions

Audio recorded in ReAloud is accessible exclusively by the owner who recorded it and the users they explicitly tagged. This access control is enforced server-side via Firebase Security Rules and cannot be bypassed from any client. ReAloud cannot access the content of private audio without a court order.

3. How We Use Your Data

To create and manage your ReAloud account.
To provide the audio recording, playback, and sharing service.
To send service-related notifications (new features, account activity, important updates).
To improve the app through aggregated usage and performance analysis.
To detect and prevent fraud, abuse, and violations of our Terms.
To comply with legal obligations.
To manage your subscription plan (Free or Pro) and apply the corresponding limits and benefits.
To send marketing communications with your prior explicit consent (opt-out available at any time).

ReAloud does not sell, rent, or commercialise your personal data to any third party under any circumstances.

4. Sharing Data with Third Parties

4.1 Technology service providers

Firebase (Google LLC) — cloud storage, authentication, and push notifications. Data stored on Google servers under ISO 27001 security standards.
Apple Inc. (App Store) and Google LLC (Google Play) — distribution and payment processing under their own privacy policies.

These providers act as data processors and only process data according to ReAloud's instructions.

4.2 Competent authorities

ReAloud may share data with judicial, administrative, or law-enforcement bodies when required by court order or legal mandate.

4.3 What we will never do

Sell personal data to third parties.
Share data with advertisers without your explicit consent.
Transfer data to countries without adequate data protection without proper safeguards.

5. International Data Transfers

Your data is stored on Firebase (Google LLC) servers that may be located outside Argentina. Such transfers are carried out with appropriate safeguards, as Google LLC holds internationally recognised security certifications (ISO 27001).

6. Data Retention

Account data — retained while your account is active and up to 3 years after account deletion, unless a longer legal obligation applies.
Audio content — automatically and permanently deleted 30 days after creation (Free plan) or 60 days (Pro plan), unless you delete it earlier or save it to Favourites. Closing your account deletes all audio immediately.
Usage logs and technical data — up to 12 months from generation.
Transaction data — up to 10 years as required by applicable commercial law.

Once these periods expire, data is securely and irreversibly deleted or anonymised.

7. Data Security

ReAloud implements technical and organisational security measures to protect personal data against unauthorised access, loss, alteration, or destruction:

Password encryption using secure hashing algorithms (bcrypt or equivalent).
Data transmission via HTTPS/TLS.
Least-privilege access to personal data for ReAloud staff.
Continuous security monitoring via Firebase Security Rules.
Security incident response procedure with notification to affected users within 72 hours.

8. Your Rights

8.1 Right of access

You may request information about what personal data ReAloud processes about you, for what purpose, and for how long.

8.2 Right of rectification

You may request correction of inaccurate, incomplete, or outdated data. ReAloud will action the correction within 5 business days.

8.3 Right of erasure

You may request deletion of your personal data when: (a) it is no longer necessary for the purpose it was collected; (b) you withdraw your consent; (c) the data is being processed unlawfully. ReAloud will action the deletion within 5 business days.

8.4 Right to object

You may object to the processing of your data for direct marketing purposes at any time, without providing a reason.

8.5 Right to data portability

You may request a copy of your personal data in a machine-readable electronic format to transfer it to another service.

8.6 How to exercise these rights

Send a request to hola@realoud.io with the subject "Data Rights Request", including your full name, the email registered in the app, and the right you wish to exercise. ReAloud will respond within 5 business days.

9. Tracking Technologies

ReAloud is a mobile app and does not use traditional browser cookies. It does use similar technologies to improve your experience:

Firebase Analytics — aggregated, anonymous usage analysis.
Firebase Crashlytics — automatic crash reporting to improve app stability.
Push notification token — to deliver service notifications.

You can disable push notifications at any time from your device settings. Analytics data is processed in aggregate and does not identify individual users.

10. Minors

ReAloud is intended exclusively for users aged 18 and over. We do not knowingly collect personal data from minors. If we become aware that a user is under 18, we will immediately delete their account and data. If a parent or guardian discovers their child has created an account, please contact us immediately at hola@realoud.io.

11. Consent and Withdrawal

Consent to data processing is given when you accept this Privacy Policy. You may withdraw your consent at any time by contacting hola@realoud.io. Withdrawal does not affect the lawfulness of processing carried out before withdrawal, but may prevent you from continuing to use the Service.

12. Changes to This Policy

We may update this Privacy Policy at any time. Significant changes will be notified to users at least 15 days in advance via an in-app notice or email. Continued use of ReAloud after the notification constitutes acceptance of the updated Policy.

13. Contact

For privacy-related questions or requests, contact us at hola@realoud.io.