Privacy Policy

Last updated: April 11, 2026

This Privacy Policy explains how Libero ("we", "us", "our") collects, uses, shares and protects information about you when you use the Libero mobile application and associated services (together, the "Service"). We take your privacy seriously — the whole app is designed around the idea that your personal recovery data is yours alone.

1. Information We Collect

1.1 Information you provide

• Account information: email address, display name, and a password hash (we never store passwords in plain text).
• Authentication tokens from Sign in with Apple or Google Sign-In, if you choose those methods.
• Recovery data: streaks you start and end, daily check-ins (mood, urge level, energy, notes, triggers), relapse log entries (triggers, reflections), panic-mode sessions, and preferences such as your motivation source.
• Subscription data: if you purchase a premium plan, we store a subscription tier and expiry. Payment card details are handled entirely by Apple, Google or Stripe — we never see them.
• Support messages: anything you send us via email or contact forms.

1.2 Information collected automatically

• Device and diagnostic data: device type, OS version, app version, language, and crash reports via Firebase Crashlytics.
• Push notification tokens via Firebase Cloud Messaging, so we can send reminders you have opted into.
• IP address and server logs for security, abuse prevention and load balancing. These are retained for up to 30 days.

2. How We Use Your Information

• Provide, maintain and improve the Service.
• Show you your own recovery history, streaks and statistics.
• Send notifications you have opted into (daily reminders, milestone badges).
• Process subscriptions via Apple, Google or Stripe.
• Investigate bugs and crashes via aggregated diagnostic data.
• Protect the Service from fraud, abuse and security threats.
• Comply with legal obligations.

We do not sell your personal information, we do not use it for advertising, and we do not profile you for third-party marketing.

3. Sensitive Categories of Data

Recovery data (mood, urges, relapses, triggers) may be considered sensitive health-related information in some jurisdictions. We treat it as such: it is stored encrypted in transit (TLS) and at rest, access is restricted to authorized personnel only, and it is never shared with advertisers or data brokers.

4. Third-Party Services

We use a small number of vetted service providers to operate Libero:

• Firebase (Google LLC) — Crashlytics, Cloud Messaging, authentication. Firebase privacy.
• Apple — Sign in with Apple, In-App Purchases. Apple privacy.
• Google — Google Sign-In, Google Play Billing. Google privacy.
• Stripe — processing subscriptions on Android. Stripe privacy.
• Sentry — application error monitoring (optional, aggregated). Sentry privacy.

5. Data Retention

We keep your account and recovery data for as long as your account is active. If you delete your account (see Section 8), we permanently delete your data within 30 days, except where we are required to retain certain records for legal, tax or fraud-prevention purposes.

6. Your Rights

Depending on where you live, you may have the right to:

• Access the personal information we hold about you.
• Correct information that is inaccurate.
• Delete your account and the data associated with it.
• Export your data in a portable format (available in-app under Settings → Export Data).
• Withdraw consent to push notifications or marketing.
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, email us at support@libero.siteownr.com.

7. Children

Libero is not directed at children under 13, and we do not knowingly collect data from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it.

8. Account Deletion

You can delete your account at any time:

• Inside the app: Settings → Delete Account.
• On the web (no app install required): libero.siteownr.com/delete-account.

Deletion is permanent and cascades to all associated data: streaks, check-ins, relapses, panic sessions, badges and subscription records.

9. Security

We use industry-standard measures to protect your data: TLS for all traffic, encrypted storage at rest, short-lived access tokens, and least-privilege access controls. No method of transmission or storage is 100% secure, but we work hard to safeguard your information.

10. International Transfers

Your data may be processed in countries other than your own. When it is, we rely on appropriate safeguards (for example, standard contractual clauses) to protect it.

11. Changes to This Policy

We may update this Policy occasionally. If we make material changes, we will notify you in the app or by email before they take effect. The "Last updated" date at the top of this page reflects the most recent version.

12. Contact Us

Questions about this Policy, your rights, or anything else? Email support@libero.siteownr.com.