Privacy Policy

1. Information We Collect

aDress collects and processes limited personal information to provide you with the Service. Because we use Single Sign-On (SSO) providers (Google, Apple), we do not collect or store your primary account passwords.

• Information from SSO Providers: When you sign in, we receive your Email Address, Display Name, and Avatar URL.
• User-Generated Content (UGC): We collect and store the Photos and Comments you upload to the Service.
• Log and Usage Information: We collect anonymous crash logs and telemetry data to fix bugs and improve performance.

2. How We Use Information

We use your information for the following purposes:

• To authenticate your account and provide you access to the Service.
• To facilitate the creation and joining of events.
• To display your photos and comments securely to other accepted attendees of your events.

3. Persistent Data (Tombstoning)

To enforce our "1-event lifetime" free-tier limit, aDress retains a non-identifiable cryptographic record of your SSO provider ID even after you delete your account. This is used solely for anti-abuse and fraud prevention and is a legitimate interest of our business.

4. Data Sharing & Disclosure

We do not sell your personal information. We may share your data with Service Providers (e.g., Google Cloud Platform) that facilitate the operation of our Service, or with other users strictly within the events you join.

5. Data Retention & Deletion

• Event Data: Photos, comments, and event details are soft-deleted 48 hours after the event date to minimize data risk and storage, and are hard-deleted a further 48 hours thereafter.
• Account Deletion: You have the right to delete your account at any time through the app settings. This will hard-delete all your identifiable personal data.
• To request account deletion without reinstalling the app: Please email us at support@adress.com.au with your registered email address, or utilize the "Delete Account" button found natively within the aDress application settings menu.

6. Security

We implement standard security measures to protect your information, including TLS 1.2+ encryption for data in transit and AES-256 encryption for data at rest running on Google Cloud SQL.

7. Children's Privacy

The Service is not intended for children under the age of 16. We do not knowingly collect personal information from children. If we discover that a child under 16 has provided us with personal information, we will immediately delete such data.