Privacy Policy

Last updated: May 2026

1. Introduction

Fate ("we," "our," or "us") is an iOS tarot reading app. This Privacy Policy explains what data we collect, what we don't, and how the data you do create inside the app flows between your device, our backend (Firebase), and the AI model that interprets your card photos.

We've tried to write this honestly. Fate is built by one developer and runs on a small, ordinary set of services — we don't sell ads, we don't track you across other apps, and we don't share your readings with anyone.

2. How Your Data Flows

Understanding the data flow is the clearest way to understand our privacy model:

Device ↔ Firebase (your private vault): Your account, your readings, and the card photos you upload are stored in Google Firebase under your user ID. Each reading lives in a per-user Firestore subcollection that only your signed-in account can read or write. Card images are stored in Firebase Storage under a path keyed to your user ID.
Device ↔ Cloud Function ↔ OpenAI:When you tap "generate reading," your card photo is sent (as a one-time, in-memory payload) to a Firebase Cloud Function we run, which forwards it to OpenAI's vision model (currently gpt-4o-mini) for interpretation only. OpenAI processes the image to produce the reading text and does not use it to train their models per their API data policy. The interpretation text is returned to your device.
Device ↔ Apple / Google (sign-in): If you sign in with Apple or Google, the provider handles authentication and returns a token to Firebase Auth. We never see your Apple or Google password.

3. Information We Collect

Account information

Email address (if you sign up with email or Google; Apple may relay a private email)
Display name, if your sign-in provider supplies one
A Firebase Authentication user ID (UID), generated when you sign up

Reading content (created by you)

The card photos you upload or capture in the app
The reading text returned by the AI
Your optional notes and the reading direction (upright/reversed)
The card name parsed from the reading and bookmark flag
A timestamp for when the reading was created

This content is stored only under your account in Firestore + Firebase Storage. No one but you can read it.

What we do NOT collect

No advertising identifier (no IDFA, no IDFV-based tracking)
No location data, contacts, calendar, microphone, or sensor data
No third-party analytics SDKs (no Google Analytics, no PostHog, no Mixpanel, no Amplitude)
No crash-reporting SDK that sends device data to a third party
No cross-app or cross-site tracking of any kind

4. Tracking & Advertising

Fate does nottrack you across other companies' apps or websites. We do not participate in ad networks, retargeting, or audience-building of any kind. We do not use Apple's IDFA (Identifier for Advertisers). Accordingly, the App does not present an App Tracking Transparency (ATT) prompt because no cross-app or cross-site tracking occurs.

5. Third-Party Services

The App relies on the following services, each with their own privacy policies:

Google Firebase(Authentication, Firestore, Cloud Storage, Cloud Functions) — hosts your account, readings, and card photos. Data is stored in Google Cloud's us-central1 region.
OpenAI— receives the card photo and prompt from our Cloud Function in order to generate the reading text. Per OpenAI's API data policy, API submissions are not used to train OpenAI models.
Apple— handles Sign in with Apple, App Store distribution, and (eventually) any in-app purchases.
Google Identity— handles Sign in with Google.

6. Camera & Photo Library

Fate requests permission to use your camera and photo library so you can capture or pick a card photo. Photos are only accessed when you explicitly choose one or take a new shot. The selected photo is resized on-device (max width 1024 px) and then uploaded only when you tap to generate a reading.

7. Data Retention & Deletion

Your readings and card photos live in your account indefinitely so you can look back at them. You can delete any individual reading at any time from the History screen — both the Firestore document and the underlying Storage image are removed.

You can also delete your entire account from Settings → "Delete account." This triggers a Cloud Function that:

Deletes every card image you've uploaded from Firebase Storage
Recursively deletes your readings subcollection in Firestore
Deletes your user document
Deletes your Firebase Auth account (invalidating all sessions)

This is irreversible.

8. Legal Basis for Processing (GDPR)

If you are located in the EEA, United Kingdom, or Switzerland, we process your personal data on the following legal bases:

Contractual necessity (Art. 6(1)(b) GDPR):account creation, storing your readings, and generating interpretations — all necessary to provide the service you signed up for.
Legitimate interest (Art. 6(1)(f) GDPR): basic platform operation and abuse prevention.

9. International Data Transfers

Firebase and OpenAI both process data in the United States. If you access Fate from outside the U.S., your data is transferred to and processed in the U.S. Both providers offer Standard Contractual Clauses for cross-border transfers.

10. Your Rights

You have the right to:

Access the personal information stored in your account (visible in the app)
Delete individual readings or your entire account at any time
Request a copy of your data by emailing us

EEA/UK residents (GDPR): you also have the right to data portability, the right to restrict or object to processing, and the right to lodge a complaint with your local data protection authority.

California residents (CCPA/CPRA):you have the right to know what personal information we collect, the right to delete it, and the right to opt out of "sale" or "sharing" of personal information. We do not sell or share your personal information.

11. Children's Privacy

Fate is not directed to children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe a child has signed up, contact us and we will delete the account.

12. Security

Authentication tokens are kept in iOS Keychain via Expo Secure Store. All traffic between the app, Firebase, and the Cloud Function uses HTTPS. Firestore security rules restrict every user's data to their own UID. No system is perfectly secure, but Fate doesn't store anything beyond what's needed for the readings you explicitly create.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be announced on this page and (if significant) in the app. Continued use of Fate after changes constitutes acceptance.

14. Contact

Questions, requests, or anything else, write to support@moetalaat.com.

15. Summary

In short: Fate keeps your readings in your private Firebase vault. Card photos are sent to OpenAI only at the moment of generating a reading, and only to produce that reading — they're not used to train any model. We don't run third-party analytics, don't track you across apps, and don't sell or share your data. Delete a reading and it's gone. Delete your account and everything is gone.