Privacy Policy
Last updated: July 19, 2026
This Privacy Policy explains what personal data the Omono mobile app ("the App") collects, why it processes that data, and what rights you have. We care about your family's privacy and collect only the data necessary for the App to work.
1. Data controller
The controller of your personal data is the publisher of the Omono app. For any privacy or data-protection matter, contact us at contact@omono.family.
2. What data we process
2.1. Account and profile data
- email address and password (the password is stored only in encrypted form),
- first and last name or display name,
- optionally: profile photo (avatar), birthday, name day, calendar color.
2.2. Family ("Home") data
- home name, invite code, list of family members and their roles (owner / admin / member).
2.3. Content you create in the App
- calendar events, shopping lists and items, notes and checklists, wishlists and gifts, budget entries and expense categories.
2.4. Location data
- Your location is processed only when you deliberately turn on location sharing with your family or when you send an SOS alert. You can disable sharing at any time in your device or App settings.
2.5. Technical data
- push notification token (to deliver notifications to your device), platform type (iOS/Android), and basic diagnostic data necessary for the service to run and stay secure.
2.6. Receipt scan (premium feature)
- if you use the receipt scanner, the receipt photo is sent to an AI service solely to read the amount and merchant, and is not permanently stored by us as an image afterwards.
2.7. Purchase data (subscriptions)
- information about your premium subscription status. Payments are handled by the App Store (Apple) or Google Play — we do not collect or store your payment card details.
3. Purposes and legal bases
- Providing the service (syncing family data, calendar, lists, budget, map) — performance of a contract (Art. 6(1)(b) GDPR).
- Push notifications (reminders, assignments, SOS, location requests) — performance of a contract and your consent.
- Managing premium subscriptions — performance of a contract.
- Security and abuse prevention — legitimate interest (Art. 6(1)(f) GDPR).
- Contact and support — legitimate interest.
4. Who we share data with (processors)
We use trusted providers that process data on our behalf under data-processing agreements:
- Supabase — database, authentication and file storage (servers in the European Union),
- Firebase Cloud Messaging (Google) — delivering push notifications,
- RevenueCat — managing premium subscriptions,
- Mapbox — displaying maps and locations,
- OpenAI — reading receipts in the scanner feature (only at your request),
- Resend — sending emails (e.g. account confirmation, password reset).
Your family's data is visible only to members of your Home. We do not sell personal data and do not share it with third parties for marketing.
5. International transfers
Our main database is located in the European Union. Some providers (e.g. Google, OpenAI, RevenueCat) may process data outside the European Economic Area — in such cases transfers are based on Standard Contractual Clauses approved by the European Commission or other GDPR-compliant mechanisms.
6. Retention
We keep data for as long as you have an account in the App. After you delete your account, personal data is deleted or anonymized, except for information we must retain for legal or security reasons. You can delete your account yourself in the App (Settings → Account management → Delete account).
7. Your rights
You have the right to access, rectify, erase, restrict processing of, and port your data, as well as to object to processing. You also have the right to lodge a complaint with a supervisory authority. To exercise these rights, write to contact@omono.family.
8. Children
Omono is a family app. Accounts for children may be created and managed only by a parent or legal guardian, who is responsible for the child's data and consents to its processing as described in this Policy. We do not direct marketing content to children.
9. Security
We use technical and organizational measures to protect data, including encryption in transit (TLS), password hashing, and row-level access controls (Row Level Security) so that one family's data is never accessible to another.
10. Changes to this Policy
We may update this Privacy Policy. We will notify you of material changes in the App or by email. The current version is always available at omono.family/polityka-prywatnosci.
11. Contact
For privacy matters: contact@omono.family.