Effective date: 1st March 2026

This Privacy Policy explains how Yoni (ABN 38 685 587 231) (“we”, “us”, “our”) collects, uses, stores, and discloses personal information when you use our Services.

Contact: hello@yonistore.com
Address: Unit 7, 1 Victoria Street, Roseville NSW 2069, Australia

1) Summary (plain English)

• We collect account details (like email) and the cycle information you choose to log.

• We use Firebase (Google) to run the app, including basic analytics and crash reporting.

• We show curated partner offers inside Yoni based on factors like region, age, and cycle phase, but we do not share your logged cycle entries with advertisers.

• Your data is stored in Firebase (Google Cloud Platform) and is currently hosted in the United States region.

• You can request access, correction, or deletion by contacting us.

2) What we collect

2.1 Information you provide

• Account info: email address, login method (email/Apple/Google), and any optional profile details you add.

• Cycle and wellbeing info (sensitive): period dates, cycle details, symptoms, notes, and other entries you choose to log.

• Support messages: information you send us.

2.2 Scans, rewards, and offers

• scan events (e.g., timestamp and whether a scan qualifies)

• rewards activity (points, redemptions, offer interactions)

2.3 App usage and diagnostics (Firebase)

We use Firebase services to operate and improve the Services, including:

• Firebase Analytics (basic product usage and performance insights)

• Crashlytics (crash/error reporting and diagnostics)

This may involve collecting device/app information such as device type, OS version, app version, and diagnostic data.

3) Apple Health / HealthKit (optional)

If you choose to connect Apple Health, you will be asked for explicit permission via Apple’s permission prompts. You can change or revoke permissions at any time in your device settings.

We only access Apple Health data to the extent you authorise, and only to support the features you choose to use.

4) How we use information

We use personal information to:

• provide the Services (accounts, cycle tracking, syncing)

• validate scans and administer rewards fairly

• show curated in-app partner offers/content and improve relevance

• provide customer support and troubleshoot issues

• prevent fraud, abuse, and security incidents

• monitor and improve reliability and performance (analytics/crash reporting)

5) Curated partner offers/ads inside Yoni (and what we share)

At this stage we are not running any ad SDKs or third-party attribution tools (e.g., Meta, Google Ads, AppsFlyer, Branch). Analytics is limited to product usage and performance.

We may show curated partner offers/ads inside Yoni based on factors such as your region, age bracket, and cycle phase. This targeting happens within Yoni’s platform.

We do not attribute cycle information to an identifiable individual in reporting or analytics.
We do not share your logged cycle entries (period dates, symptoms, notes) with advertisers.

We may share aggregated and de-identified reporting with partners (e.g., total scans, total redemptions, overall campaign performance) that does not identify you.

6) When we disclose information

We may disclose personal information to:

6.1 Service providers (processors)

We use Firebase (Google) services to operate the app, including Authentication, Firestore (database), Cloud Functions (backend logic), Firebase Analytics, and Crashlytics. These providers process data on our instructions.

6.2 Partners you choose to use (affiliate networks / external sites)

If you click out to a partner offer (including via affiliate networks such as Commission Factory), those third parties may collect information under their own terms and privacy policies. We recommend reviewing their policies before providing information.

6.3 Legal and safety

We may disclose information where required by law or to protect users, prevent fraud, or enforce our Terms.

7) Overseas storage and processing

User data is stored in Firebase (Google Cloud Platform) and is currently hosted in the United States region. This means your personal information may be stored and processed outside Australia.

8) Security and retention

We take reasonable steps to protect personal information through access controls and secure hosting. No system is 100% secure.

We keep personal information only for as long as needed for the purposes described in this policy, unless we must retain some information for legal compliance, dispute resolution, or security/fraud prevention.

9) Your choices and rights

You can:

• request access to, or correction of, your personal information by contacting hello@yonistore.com

• control permissions (Health, Notifications, Camera) via your device settings

• request deletion of your account (see below)

10) Account deletion

You can request deletion:

• via the in-app deletion flow (Settings → Delete Account) if available, and/or

• by emailing hello@yonistore.com, and/or

• via our website delete request page: https://yonisupport.fillout.com/t/omXTQCpunAus

When you request deletion, we will delete your account and associated personal information unless we are required or permitted to retain limited records for legal or security/fraud prevention purposes.

11) Children

The Services are not intended for anyone under 16. If we learn we have collected personal information from someone under 16, we will take reasonable steps to delete it.

12) Changes to this policy

We may update this Privacy Policy from time to time. If changes are material, we will take reasonable steps to notify you (e.g., in-app notice). Continued use means you accept the updated policy.