Privacy Policy

Last Updated: January 2026

1. Scope

This Privacy Policy applies to the Covelo Tech LLC website and all mobile applications developed by us, including the Hari plant care app. We believe in a consistent, privacy-first approach across all our products.

2. General Principles

Privacy First: We collect only the minimum data necessary to provide our services. Free users have their data stored entirely on-device.

No Sale of Data: We do not sell your personal data to third parties. Ever.

Transparency: We clearly disclose what data we collect and why.

3. Data We Collect

Free Users

For users on the free plan, all data is stored locally on your device. We do not collect or transmit any personal information.

  • Plant data and care schedules remain on your device
  • Photos are processed locally for plant identification
  • No account or sign-in required

Pro Users (With Account)

Pro users who choose to create an account and sync their data will have the following information stored securely in the cloud:

Account Information:

  • Email address (for account identification and recovery)
  • Username (unique public identifier for social features)
  • Display name (optional, for personalization)
  • Profile photo (optional)
  • Unique user identifier

App Data (synced to cloud):

  • Plant collection and care schedules
  • Plant photos
  • Plant notes and custom names (user-written text)
  • Custom plant species you create
  • User preferences and settings
  • Subscription status

Social Features (optional):

  • Friends list (usernames of accepted friends)
  • Public profile stats (level, plant count, streak)

Community Safety:

  • Block list (users you have blocked)
  • User reports (if you report inappropriate content or behavior, we store the report details securely for review)

4. Usage Data & Diagnostics

To improve the app experience and fix bugs, we collect usage data through Firebase Analytics and Crashlytics.

What We Collect:

  • App Usage: Features used (e.g., “watered plant”, “added plant”, “viewed profile”), session duration, screens visited
  • User Properties: Subscription tier (free/pro), level bracket, plant count bracket, streak bracket (used for analytics segmentation)
  • Device Information: Device model, iOS version, app version (helps identify device-specific bugs)
  • Crash Reports: Stack traces, error logs, and your user ID when the app crashes (helps us debug issues specific to your account)
  • Performance Metrics: App startup time, network request duration, feature load times (not linked to your identity)

What We DO NOT Collect: Location data, contacts, browsing history, or data from other apps.

Linked to Your Identity: App usage events and crash reports may be associated with your account to help us understand feature usage and debug issues. Performance metrics are collected anonymously. We do not use this data for advertising or share it with third parties for marketing purposes.

5. Device Permissions

Hari App Permissions

  • Camera: Used for AI plant identification and taking photos of your plants. Images are processed on-device for identification.
  • Photo Library: Used to import existing photos of your plants.
  • Notifications: Used to send watering reminders and friend notifications. When enabled, we store a device token to deliver push notifications.

6. Third-Party Services

We use the following trusted third-party services to provide our app functionality:

Google Firebase Services

We use Firebase, Google's mobile platform, for the following:

  • Authentication: Secure sign-in via email or Google account
  • Cloud Firestore & Storage: Encrypted cloud storage for Pro user data and photos
  • Analytics: Usage patterns (features used, session duration) linked to user properties for segmentation
  • Crashlytics: Crash reports with user ID for debugging
  • Performance Monitoring: App speed and responsiveness metrics (anonymous)
  • Remote Config: Feature flags for gradual rollouts

All data is encrypted in transit and at rest. Firebase Privacy Policy

RevenueCat

Used for subscription management and purchase validation. RevenueCat receives your anonymous user ID to link purchases. They do not receive your email, name, or plant data. RevenueCat Privacy Policy

Apple App Store

All payment processing is handled securely by Apple. We do not collect or store payment information. Apple Privacy Policy

7. Data Security

We take the security of your data seriously:

  • All data transmitted to our servers is encrypted using TLS/SSL
  • Cloud data is stored in Firebase with strict security rules
  • We use industry-standard authentication practices
  • Access to user data is limited to essential personnel only

8. Data Retention & Deletion

Retention Periods

  • Account & Plant Data: Retained while your account is active. Deleted immediately when you use in-app deletion, or within 30 days for email requests.
  • Plant Photos: Stored in your private cloud storage while your account is active. Deleted with account deletion.
  • Crash Reports: Retained for 90 days to help identify and fix bugs.
  • Analytics Data: Aggregated, anonymized analytics retained for up to 14 months.
  • Friendship Data: Deleted when either party deletes their account or removes the friendship.

Deletion: You can request deletion of your account and all associated data at any time by:

In-App Deletion: When you use “Delete Account” in the app, your data is removed immediately. Email Requests: If you contact us via email, we process deletion within 30 days. Some anonymized, aggregated data may be retained for analytics purposes.

9. Your Rights

Depending on your location, you may have the following rights:

  • Access & Portability: Request a copy of your data in a portable format
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data

To exercise any of these rights, please contact us at contact@covelotech.com. We will respond to valid requests within 30 days.

California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Right to Know: You can request what personal information we collect about you
  • Right to Delete: You can request deletion of your personal information
  • Right to Opt-Out: We do not sell your personal information
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights

To exercise these rights, contact us at contact@covelotech.com or use the in-app “Delete Account” feature.

10. Children's Privacy

Our app is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information as quickly as possible. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at contact@covelotech.com so we can take appropriate action. We comply with the Children's Online Privacy Protection Act (COPPA).

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the “Last Updated” date.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

contact@covelotech.com

Back to Home