← Back to NailFlow

Privacy Policy

Effective date: June 25, 2026

This Privacy Policy explains how NailFlow collects, uses, and protects your information. Your privacy is important to us.


1. Two Modes of Use

NailFlow can be used in two ways:

  • Guest mode β€” no account is created. All data stays exclusively on your device and is never transmitted anywhere.
  • Authenticated mode β€” you create or sign into an account. Your business data is optionally synced to the cloud so you can access it across devices.

The sections below describe what information is handled in each mode.


2. Information We Collect

Guest Mode

In guest mode, NailFlow collects no personal information. All data you enter (clients, appointments, services, income) is stored locally on your device using on-device storage (Hive) and is never transmitted to any server.

Authenticated Mode

When you create an account or sign in, we collect and store the following:

Account information (provided by you or your sign-in provider):

  • Email address (for Email/Password and Google sign-in)
  • Phone number (for Phone/OTP sign-in)
  • Display name (if provided by your sign-in provider or entered by you)
  • Profile photo URL (if provided by your sign-in provider)

Business data you enter (synced to the cloud):

  • Client records (names, contact details, notes)
  • Appointment records (dates, times, services)
  • Service catalog (names, prices)
  • Visit results (photos, notes)
  • Income records

This data is stored in Google Cloud Firestore under a namespace tied to your unique account identifier. It is not shared with third parties for advertising or marketing purposes.


3. Authentication Providers

Depending on the sign-in method you choose, your authentication is handled by one of the following third-party providers. Each provider's own privacy policy governs how they process your credentials:

Provider Privacy Policy
Google Sign-In https://policies.google.com/privacy
Sign in with Apple https://www.apple.com/legal/privacy/
Facebook Login https://www.facebook.com/policy.php
Instagram OAuth https://privacycenter.instagram.com/policy
Firebase Authentication (email & phone) https://firebase.google.com/support/privacy

NailFlow itself never stores your passwords. Credential management is handled entirely by Firebase Authentication.


4. Firebase Services

NailFlow uses the following Google Firebase services:

  • Firebase Authentication β€” manages sign-in sessions and account identities.
  • Cloud Firestore β€” stores your business data in the cloud when you are signed in (authenticated mode only).
  • Firebase Crashlytics β€” collects anonymised crash reports to help us fix bugs. No personal data or business content is included in crash reports. You can review Firebase's privacy practices at https://firebase.google.com/support/privacy.

5. Feedback Feature

If you choose to submit feedback through the Feedback option in Settings, your message is sent to a Firestore database managed by the developer. This submission is voluntary and contains only the text you provide. No personal identifiers are attached automatically.


6. Analytics & Advertising

NailFlow does not use advertising SDKs or sell your data to advertisers. The app may use Apple's App Tracking Transparency (ATT) framework on iOS to request permission for cross-app tracking in connection with Facebook Ads used for app promotion. You can decline this request without affecting any app functionality.


7. Data Security

  • Guest mode data is protected by your device's own security settings (screen lock, device encryption).
  • Cloud data (authenticated mode) is stored on Google Cloud Firestore infrastructure, which is protected by industry-standard encryption in transit and at rest. See https://firebase.google.com/support/privacy for details.

8. Data Deletion

  • Local data: Uninstall NailFlow from your device to remove all locally stored data.
  • Cloud data: Sign in, go to your Profile in Settings, and use the account management options to delete your account and all associated cloud data. Once deleted, cloud data cannot be recovered.

9. Children's Privacy

NailFlow is not intended for use by children under 13. We do not knowingly collect information from children. If you believe a child has provided us with personal information, please contact us using the Feedback option.


10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the effective date at the top of this document. Continued use of the app after an update constitutes acceptance of the revised policy.


11. Contact

If you have questions or concerns about this Privacy Policy, please use the Feedback option in the app's Settings.

Have questions?

If you have any questions about this Privacy Policy or how your data is handled, feel free to reach out β€” we're happy to help.

neuraapps1991@gmail.com