Privacy Policy

Last updated: May 7, 2025 · Effective immediately

1. Who we are

Tins is a memory vault application developed and operated by Alejo Rousseau ("we", "us", "our"). By using Tins, you agree to the collection and use of information as described in this policy.

If you have questions, contact us at privacy@tins.rousseau.ar.

2. Information we collect

Account information

When you create an account, we collect your display name and email address. If you sign in with Apple or Google, we receive the information those services share with us (typically name and email).

Content you upload

We store the content you add to your vaults: photos, videos, voice recordings, and text notes. This content is uploaded to Firebase Storage (Google Cloud infrastructure) and is encrypted in transit and at rest.

Usage data

We collect basic usage information such as when vaults are created or opened, and item reaction counts. We do not track individual browsing behavior or build advertising profiles.

Device and notification data

To send push notifications, we store a Firebase Cloud Messaging (FCM) token associated with your account. This token is device-specific and changes when you reinstall the app.

3. How we use your information

• To authenticate you and maintain your account
• To store and deliver your vault content to authorised contributors and the vault owner
• To send you push notifications about vault activity (new items, reactions, opening day reminders)
• To improve the reliability and performance of the app

4. Vault privacy and access control

Contents inside a sealed vault are not visible to anyone — including us — before the opening date. After opening, vault contents are accessible to all contributors you have invited.

You, as the vault owner, control who can join, contribute, and view your vault. Only contributors you explicitly invite can access it.

5. Data sharing

We do not sell, rent or share your personal information with third parties for commercial purposes.

We use the following sub-processors to operate the service:

• Google Firebase — authentication, database (Firestore), file storage, and push notifications. Firebase Privacy Policy →
• Apple Sign In — optional authentication provider.
• Google Sign In — optional authentication provider.

We may disclose information if required by law or to protect the rights and safety of our users.

6. Data retention and deletion

Your account data and vault contents are retained as long as your account is active. Deleting a vault permanently removes all its contents from our servers. To delete your account and all associated data, contact us at privacy@tins.rousseau.ar and we will process your request within 30 days.

7. Security

All data is transmitted over HTTPS. Files are stored in Firebase Storage with Google Cloud's encryption at rest. We apply Firebase Security Rules to ensure that only authorised users can read or write data.

No system is perfectly secure. If you discover a security issue, please report it to security@tins.rousseau.ar.

8. Children's privacy

Tins is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

9. Your rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate information
• Request deletion of your data
• Object to or restrict certain processing
• Data portability (receive your data in a machine-readable format)

To exercise these rights, contact us at privacy@tins.rousseau.ar.

10. Changes to this policy

We may update this policy from time to time. When we do, we will update the "Last updated" date above. For significant changes, we will notify you via the app or by email. Continued use of the app after changes constitutes acceptance of the updated policy.

11. Contact

For any privacy-related questions or requests, reach us at:

privacy@tins.rousseau.ar