Bnire Privacy Policy

Effective Date: March 3, 2026 Last Updated: March 3, 2026

1. Information Collection

Bnire collects the following types of personal and non-personal data to provide, maintain, and improve our self-discipline check-in services:

  • Account Information: Email address, display name, profile photo, and authentication data (e.g., third-party login tokens from Apple ID or Google Account).
  • Check-in Content: Uploaded check-in photos, daily status updates, custom goal tags, and continuous check-in records (including timestamps and streak data).
  • Device & Usage Data: Device type, operating system version, IP address, app version, session duration, and feature interaction logs (e.g., AI photo generation requests).
  • AI Generation Data: When you use the AI check-in photo feature, we collect and transmit your original check-in photos and status text to third-party AI services for processing.

Collection Methods: Data is collected directly when you provide it (e.g., uploading photos, filling in status) or automatically through the app's technical infrastructure (e.g., device logs, analytics tools).

2. Data Usage Purposes

Your data is used exclusively for the following purposes:

  • Core Service Delivery: To enable daily check-ins, track continuous self-discipline records, and generate AI-enhanced check-in photos.
  • Personalization: To customize your experience, such as displaying your check-in history and suggesting relevant self-discipline goals (e.g., early sleep, water intake, stretching).
  • Service Improvement: To analyze usage patterns, identify technical issues, and optimize app performance and feature design.
  • Security & Compliance: To protect your account, detect and prevent fraud, and comply with legal obligations (e.g., responding to valid legal requests).
  • Communication: To send you important service notifications, policy updates, and support responses (you may opt out of non-essential communications).

3. Third-Party Data Processing

To provide AI check-in photo generation, Bnire integrates with the third-party AI service OpenRouter. This service processes your data as follows:

  • Data Transmitted: Your original check-in photos and status text are transmitted to OpenRouter's servers.
  • Processing Purpose: OpenRouter uses this data to generate AI-enhanced check-in photos based on your input.
  • Data Protection Commitment: We have verified that OpenRouter maintains data protection standards that are equal to or exceed our own, including compliance with GDPR, CCPA, and other relevant data protection regulations.
  • Data Retention: OpenRouter retains your data only for the duration necessary to complete the AI generation process, after which it is deleted from their servers (unless required by law to retain it).

Other third-party services (e.g., payment processors, analytics tools) may process your data in accordance with their own privacy policies, which you can review on their respective websites.

4. Information Sharing

Bnire shares your data only in the following limited scenarios:

  • AI Service Providers: As detailed above, your check-in photos and status text are shared with OpenRouter for the sole purpose of generating AI check-in photos.
  • Service Providers: We may share data with trusted third-party vendors who assist us in operating the app (e.g., cloud storage providers, analytics services). These vendors are contractually prohibited from using your data for any other purpose.
  • Legal Requirements: We may disclose your data to comply with valid legal processes (e.g., court orders, subpoenas) or to protect the rights, property, or safety of Bnire, our users, or the public.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or part of our assets, your data may be transferred as part of the transaction, subject to the same privacy protections outlined in this policy.

We do not sell, rent, or lease your personal data to third parties for commercial purposes without your explicit written consent.

5. Security Measures

We implement industry-standard technical and organizational security measures to protect your data from unauthorized access, disclosure, alteration, or destruction:

  • Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.2+. Stored data is encrypted at rest using AES-256.
  • Access Controls: Access to your data is restricted to authorized personnel who need it to perform their job functions, and all access is logged and monitored.
  • Regular Audits: We conduct regular security audits and vulnerability assessments to identify and mitigate potential risks.
  • Incident Response: In the event of a data breach, we will notify affected users in accordance with applicable laws and take immediate steps to contain and remediate the incident.

While we take reasonable steps to protect your data, no security measure is completely infallible, and we cannot guarantee absolute security.

6. User Data Rights

You have the following rights regarding your personal data:

  • Access: You may request a copy of the personal data we hold about you.
  • Correction: You may request that we correct any inaccurate or incomplete personal data.
  • Deletion: You may request that we delete your personal data, subject to legal retention requirements.
  • Restriction of Processing: You may request that we restrict the processing of your personal data under certain circumstances.
  • Data Portability: You may request a machine-readable copy of your personal data to transfer to another service provider.
  • Withdrawal of Consent: You may withdraw your consent to the collection and processing of your data at any time, which may affect your ability to use certain features of the app.

To exercise these rights, please contact us at Bnire@gmail.com. We will respond to your request within 30 days of receipt.

7. Child Privacy Protection

Bnire is not intended for use by children under the age of 13, and we do not knowingly collect personal data from children under 13. If we become aware that we have collected personal data from a child under 13, we will take immediate steps to delete that data from our servers.

For users between the ages of 13 and 17, we require parental or guardian consent before collecting and processing their personal data. Parents or guardians may review, correct, or delete their child's data by contacting us at Bnire@gmail.com.

8. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our data practices, legal requirements, or service offerings. When we make material changes to this policy, we will notify you through a prominent notice in the app or via email to your registered account email address.

Your continued use of the app after the effective date of the updated policy constitutes your acceptance of the revised terms. If you do not agree to the updated policy, you must stop using the app and close your account immediately.

The most current version of this Privacy Policy will always be available in the "Settings" section of the Bnire app.