Privacy Policy

01 — Introduction

What This Policy Covers

This Privacy Policy describes how the Joseph Sabello mobile application (“the App,” “we,” “us,” or “our”) collects, uses, stores, and shares information when you use the App. The App is a subscription-based personal video platform that delivers content from me — Joseph Sabello, also publicly known as “Ungart.”

By creating an account or using the App, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

02 — Information We Collect

What We Know About You

Information You Provide to Us

• Account information — email address, password (stored only in hashed form via Firebase Authentication), and display name.
• Profile information — optional profile photo and any details you choose to add to your profile.
• Purchase information — subscription tier selected and transaction identifiers returned by Apple App Store or Google Play. We do not receive or store your credit card number, bank details, or full payment credentials — those are handled solely by Apple and Google.
• Communications — any messages, support requests, or feedback you send us.

Information Collected Automatically

• Authentication tokens and session data via Firebase Authentication and secure on-device storage.
• Watch progress, video views, and engagement signals (e.g., which videos you opened, completion state) — used to power “Continue Watching” and recommendations.
• Device information: device model, operating system version, app version, and a device identifier used for sign-in and device enrollment.
• Approximate technical data such as language preference, time zone, and crash diagnostics.
• Cache and playback metrics from the video player (buffering, resolution), used to improve streaming quality.

Information We Do Not Collect

• We do not track you across apps or websites owned by other companies.
• We do not collect precise location (GPS) data.
• We do not access your camera, microphone, contacts, or photo library unless you explicitly choose to upload a profile picture — in which case we only access the specific image you select.
• We do not sell your personal information.

03 — How We Use Your Information

Why We Need It

• Create and maintain your account and authenticate you securely.
• Deliver video content, including free and premium subscription-gated material.
• Process and validate in-app purchases and manage active subscriptions.
• Save your watch progress so you can resume playback across sessions and devices.
• Recommend content via our “Right Now” AI recommendation feature — using on-device signals and pre-generated metadata. If you provide a text prompt, it may be sent to Google's Gemini API to interpret your request; no account identifiers are sent with that prompt.
• Send transactional notifications (e.g., new video published, subscription renewal). You can disable these in your device settings.
• Detect and prevent fraud, abuse, and policy violations.
• Comply with legal obligations.

04 — Third-Party Services

Who Else Handles Your Data

The App relies on the following third-party services to operate. Each provider processes data under its own privacy policy:

• Google Firebase (Authentication, Cloud Firestore, Cloud Storage, Cloud Functions) — account, profile, and app data storage. firebase.google.com/support/privacy
• Cloudflare Stream — video hosting and adaptive playback. Cloudflare may log IP address and basic request metadata when delivering video segments. cloudflare.com/privacypolicy
• Apple App Store / Google Play Billing — subscription processing and receipt validation. apple.com/legal/privacy · policies.google.com/privacy
• Google Generative AI (Gemini API)— optional natural-language expansion of your “Right Now” recommendation prompt. Only the prompt text is sent — no account identifiers. policies.google.com/privacy

We do not share your personal information with advertisers or data brokers.

05 — Data Storage & Security

How We Protect Your Information

• Account credentials and session tokens are stored on your device using platform-secure storage (iOS Keychain / Android Keystore via flutter_secure_storage).
• User data is stored in Google Firebase services, encrypted in transit (TLS) and at rest.
• Access to backend data is governed by Firestore Security Rules, which restrict reads and writes to authorized accounts only.
• While we apply industry-standard safeguards, no system is perfectly secure. You are responsible for keeping your password confidential.

06 — Data Retention

How Long We Keep It

• Account and profile data are retained while your account is active.
• Watch progress and engagement data are retained while your account is active, and may be kept in aggregated or anonymized form afterwards.
• Purchase records are retained as required by tax and accounting laws — typically seven years.
• If you delete your account, your personal profile data and watch history are deleted or anonymized within 30 days, except where retention is legally required.

07 — Your Rights & Choices

What You Can Do

Depending on your jurisdiction (including under GDPR, UK GDPR, and CCPA), you may have the right to:

• Access the personal information we hold about you.
• Request correction of inaccurate information.
• Request deletion of your account and associated data.
• Object to or restrict certain processing.
• Receive a portable copy of your data.
• Withdraw consent at any time where processing is based on consent.
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at the address in Section 12. You may also delete your account directly from the Profile screen inside the App.

California residents: we do not “sell” or “share” personal information as defined under CCPA / CPRA.

08 — Children's Privacy

Under-Age Users

The App is not directed to children under 13 (or under 16 in jurisdictions where that is the minimum digital-consent age). We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it promptly.

09 — International Data Transfers

Where Your Data May Travel

The App is operated using global infrastructure provided by Google Firebase and Cloudflare. Your information may be processed in the United States or other countries whose data-protection laws may differ from those in your country. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for cross-border transfers.

10 — Subscriptions & In-App Purchases

How Billing Works

• All purchases are processed by Apple (App Store) or Google (Play Store) using their own billing systems.
• We receive only the subscription status, product ID, and a transaction identifier — never your full payment card information.
• Refunds, cancellations, and billing disputes are handled per Apple's and Google's policies. You can manage or cancel a subscription at any time from your device's App Store or Play Store settings.

11 — Changes to This Policy

Staying Up to Date

We may update this Privacy Policy from time to time. Material changes will be notified via in-app notice or email before they take effect. The “Last Updated” date at the top of this page reflects the most recent revision. Continued use of the App after changes take effect constitutes acceptance of the updated policy.

12 — Contact Us

Get in Touch

If you have questions, requests, or complaints about this Privacy Policy or our handling of your information, please reach out: