This policy explains what DailyCourse collects, how it's used, who it's shared with, and the choices you have. DailyCourse is a personal learning-habit tracker for Android, built by Balogun Alamin.
If anything here is unclear, email 01log.star@gmail.com and I'll get back to you.
TL;DR
DailyCourse stores your courses, sessions, and reflection notes on your device. If you sign in, the same data is mirrored to your private account on Google Firebase so it follows you to other devices.
DailyCourse does not show ads, does not sell or share your data with third-party advertisers, and does not track you across other apps or websites.
Crash reports are collected (via Firebase Crashlytics) so I can fix bugs. They don't include the contents of your notes or sessions.
You can sign out, request account deletion (30-day grace period), or uninstall the app at any time.
1. Who runs DailyCourse
DailyCourse is built and maintained by Balogun Alamin, an independent developer. There is no company, no shareholders, and no third-party data partners beyond the infrastructure providers listed below.
If you're signed in, this data is mirrored to your private Firestore namespace at users/{your-account-id}/.... Nobody else's account can read it.
If you're signed out, this data lives only in the app's local database on your device.
2c. Technical data
Crash reports (via Firebase Crashlytics) — when the app crashes, a stack trace and limited device information (OS version, device model, app version) are sent to help me fix the bug. The contents of your notes, sessions, or course titles are not included.
Network state — the app checks whether you have an internet connection so it can show an offline banner. This is read locally and never transmitted.
2d. What DailyCourse does not collect
No advertising identifiers.
No location data.
No contacts, calendars, microphone, or camera.
No analytics tracking of your in-app behavior.
No cross-app or cross-website tracking.
3. Permissions the app asks for
Permission
Why
POST_NOTIFICATIONS
To remind you when a scheduled session is due. You can deny or revoke this at any time in Android Settings.
SCHEDULE_EXACT_ALARM
To deliver session reminders at the exact minute you scheduled them.
ACCESS_NETWORK_STATE
To detect when you're offline and show an indicator.
INTERNET
To sync with your Firebase account (only used when you're signed in).
4. Who DailyCourse shares data with
DailyCourse uses these infrastructure services, all provided by Google:
Firebase Authentication — stores your email and a hashed password (Google never sees your plaintext password).
Cloud Firestore — stores the mirror of your courses, sessions, and notes when you're signed in.
Firebase Crashlytics — receives crash reports.
Google Play Services — used by the Google sign-in flow if you choose it.
DailyCourse does not share your data with anyone else.
5. How long data is kept
On-device data stays until you uninstall the app or use the in-app reset feature.
Cloud-synced data (Firestore) stays until you request account deletion or sign out (signing out doesn't delete cloud data — it just removes access from this device).
Crash reports are retained by Firebase Crashlytics for 90 days per Google's default policy.
Account deletion (30-day grace period)
When you request account deletion from inside the app:
Your account is marked for deletion.
You are signed out.
For 30 days, you can sign back in to cancel the deletion and restore everything.
After 30 days, your courses, sessions, notes, and Firebase account are permanently and irreversibly deleted.
If you uninstall the app during the 30-day window without signing back in, deletion still proceeds at day 30 the next time the cloud housekeeping job runs.
6. Your rights
You can, at any time:
Access the data the app holds about you — every course, session, and note is visible inside the app itself.
Edit any of it directly in the app.
Delete individual courses, sessions, or notes from inside the app.
Sign out to remove cloud-synced data access from this device.
Request account deletion to permanently remove everything after the 30-day grace period (see section 5).
Withdraw notification permission in Android Settings.
If you live in the EEA, UK, California, or another region with data protection laws (GDPR, UK GDPR, CCPA, etc.), you also have the right to request a copy of your data, object to processing, or lodge a complaint with your local supervisory authority. Email 01log.star@gmail.com and I'll respond within 30 days.
7. Children
DailyCourse is not directed at children under 13 (or under 16 in the EEA). It is not knowingly used to collect data from children. If you believe a child has provided data to the app, email 01log.star@gmail.com and I will delete it.
8. Security
Passwords are stored hashed by Firebase Authentication — they are never visible to me or stored in DailyCourse's own database.
Data in transit between your device and Firebase is encrypted with HTTPS/TLS.
Data at rest in Firestore is encrypted by Google.
Your Firestore data is protected by per-user access rules: only requests signed by your account can read or write to users/{your-account-id}/.
No system is perfectly secure, but DailyCourse follows standard industry practice and the Firebase platform's recommended security rules.
9. International data transfers
Firebase services are operated by Google and may process your data on servers located outside your country (most commonly in the United States). Google's data-processing agreements include the EU Standard Contractual Clauses where applicable.
10. Changes to this policy
If this policy changes in a material way, the "Last updated" date at the top will change and the new policy will take effect when you next open the app. Significant changes will be announced in-app.
11. Contact
Questions, complaints, deletion requests, or anything else: