Roasty – App Privacy Policy

Roasty is a calendar and task management app that helps you organize your schedule, to-dos, and notes.

Last updated: 27 February 2026

This privacy policy describes how Roasty ("we," "our," or "the app") collects, uses, stores, and shares your information, including Google user data. It applies to the Roasty mobile application and is clearly linked to our application. If you use Google Sign-In or Google Calendar with Roasty, please read the sections on Google user data carefully.

1. Information We Collect

1.1 Account information

When you sign in with Google or Sign in with Apple, we receive:

• From Google: Your name and email address from your Google account profile, so we can create and manage your Roasty account and link your calendar.
• From Apple: Your name (if you choose to share it) and email (or a private relay address). We use this to create and manage your Roasty account.

1.2 Google user data

When you sign in with Google, we request the following non-sensitive scopes:

• openid – to authenticate your identity via Google Sign-In.
• https://www.googleapis.com/auth/userinfo.email – to identify your account and display your email address for account management.
• https://www.googleapis.com/auth/userinfo.profile – to retrieve your name so we can personalize the in-app experience.

Google Calendar data

If you grant Roasty access to Google Calendar, we access and use the following Google user data:

• Calendar events on your Google Calendar: we read event titles, start and end times, descriptions, and location so we can display your schedule in the app.
• We create, update, and delete calendar events only when you ask us to (e.g. by adding, editing, or removing events in the app or via voice).

We request the following sensitive scope to provide calendar features:

• https://www.googleapis.com/auth/calendar.events – to read, create, update, and delete events on your calendars at your direction.

We use all Google user data solely to provide Roasty's features. We do not use it for advertising, and we do not sell, rent, or share it with third parties except as described in Section 4 below.

1.3 App data you create

Content you create inside Roasty is stored so we can sync it across your devices and provide features:

• To-dos: Title, due date, priority, completion status, and optional reminder time.
• Notes: Note content and any link to an event or to-do.
• Calendar event metadata: For events synced with Google Calendar, we store app-only data such as completion status and per-event reminder preferences (e.g. "remind me 15 minutes before") in our own database. The events themselves are stored in your Google Calendar.
• Settings: Preferences such as notification times, "roast" level for reminders, and whether Google Calendar is connected.

1.4 Voice and AI-related data

When you use voice input or AI features:

• Voice: Your device may transcribe speech locally or via system services. The transcribed text and relevant context (e.g. existing event titles for rescheduling) are sent to an AI provider to extract events, to-dos, and notes so we can add them to your calendar and lists.
• Morning summary and daily/evening recap: We send relevant information about your schedule and tasks to an AI provider to generate personalized summaries and recaps. We do not use this data for advertising or to train models beyond what is needed to respond to your request.

2. How We Use This Information

We use the information we collect to:

• Create and secure your Roasty account.
• Read, create, update, and delete calendar events on your Google Calendar only when you direct us to.
• Store and sync your events, to-dos, and notes so you can access them in the app.
• Provide app features such as reminders, morning summaries, and evening recaps.
• Respond to support or data requests when you contact us.

We do not sell your data. We do not use your data for third-party advertising. We do not use Google user data for any purpose other than providing or improving the app's user-facing calendar and account features.

3. Where Your Data Is Stored

• Account and app data (todos, notes, settings, event metadata): Stored in Firebase (Google Cloud). This is necessary to run the app and sync your data.
• Calendar events: Stored in your Google Calendar when you use Google Calendar sync. We only store our own metadata (e.g. completion, reminder settings) in Firebase.

4. Sharing, Transfer, and Disclosure of Google User Data

We do not sell, rent, or trade your Google user data. We do not share, transfer, or disclose your Google user data to third parties except in these limited circumstances:

• Firebase (Google Cloud): Your account information and app data (including metadata linked to your calendar use) are processed and stored by Firebase, which is part of Google Cloud. This is required for authentication and cloud storage. Firebase processes data in accordance with Google's privacy policy.
• Apple: If you use Sign in with Apple or in-app subscriptions, Apple processes your authentication and payment data. We do not receive or store your payment details.

We do not transfer or disclose your Google user data to any other parties for advertising, data brokering, reselling, credit assessment, lending, or any purpose unrelated to providing the app's functionality.

Other data (not Google user data): To provide voice extraction, morning summary, and daily/evening recap features, we send the relevant content (e.g. transcribed text, schedule context) to OpenAI. This is used only to generate responses for you. We do not use this data for advertising. OpenAI's handling of data is subject to OpenAI's privacy policy.

5. Data Protection

We take the security of your data seriously:

• Data transmitted between the app and our services is encrypted in transit using TLS/HTTPS.
• Data stored in Firebase is encrypted at rest using Google Cloud's built-in encryption.
• Access to user data is restricted to what is necessary to operate and maintain the app.
• We review our security practices to support the confidentiality and integrity of your data.

6. Data Retention

We keep your data while your account is active. If you delete your account or request deletion of your data, we delete or anonymize your data in line with our retention practices and applicable law. You can request deletion at any time by contacting us (see Section 9).

7. Your Rights

You can:

• Delete or correct your data inside the app where those options are available.
• Request deletion of your account and data by contacting us at dermit.stela@gmail.com.
• Use your device and Apple/Google account settings to manage sign-in and data sharing.
• Revoke Roasty's access to your Google account at any time via your Google Account permissions. This will stop the app from reading or writing to your Google Calendar.

8. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top will change when we do. If we change how we use Google user data or other personal data, we will notify users (e.g. via the app or by posting an updated policy). Continued use of the app after changes means you accept the updated policy.

9. Contact

Roasty is the application and organization responsible for this policy. For questions about this policy or your data, or to request access or deletion:

Email: dermit.stela@gmail.com

This privacy policy is specific to the Roasty app and organization. It is not a template or sample; it describes the actual data practices of Roasty as of the last updated date above.