Privacy Policy

Last updated: December 8, 2025

This Privacy Policy applies to all services provided by GRABA, including the GRABA website (graba.info) and mobile applications (GRABA DDAY, etc.).

1. Website (graba.info)

Information We Collect

We do not collect, store, or process any personal information through this website. This is a simple informational website with no user accounts, forms, or data collection mechanisms.

Cookies and Tracking

This website does not use cookies, analytics tools, or any tracking technologies.

2. GRABA DDAY App

Information We Collect

When you use GRABA DDAY, we collect the following information:

• Account Information: Email address (via Google or Apple Sign-In)
• Event Data: Event titles, dates, categories, and settings you create
• App Settings: Your preferences such as theme, language, and notification settings

How We Use Your Information

• To provide and maintain the service
• To sync your data across devices
• To send notifications for your events
• To authenticate your account

Third-Party Services

We use the following third-party services:

• Firebase Cloud Messaging (Google): For push notifications.
  Data shared: Device token (FCM token)
  Firebase Privacy Policy
• Google Sign-In: For authentication.
  Google Privacy Policy
• Apple Sign-In: For authentication.
  Apple Privacy Policy

Data Sharing

We do NOT sell your personal information to third parties.

We share limited data with the following services for operational purposes only:

• Firebase (Google): Device token for push notifications
• Authentication providers (Google/Apple): Email address for login verification (handled by the providers, not stored by us)

Data Storage and Security

Your data is stored securely on our servers. We implement appropriate security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

• Encryption in Transit: All data is encrypted using HTTPS/TLS during transmission
• Encryption at Rest: Data is stored on encrypted servers
• Industry Standards: We follow industry-standard security practices

Data Retention

We retain your data as long as your account is active. You can delete your account and all associated data at any time through the app settings.

Your Rights

You have the right to:

• Access your personal data
• Request correction of inaccurate data
• Delete your account and data (available in app settings)
• Request data export (contact us at privacy@graba.info)

Legal Compliance

We comply with applicable data protection laws, including:

• GDPR (General Data Protection Regulation): For users in the European Economic Area
• CCPA (California Consumer Privacy Act): For users in California, USA

If you are a resident of the EEA or California, you have additional rights under these laws, including the right to object to processing and the right to data portability.

Children's Privacy

Our app is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Contact

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: privacy@graba.info