C
Coral

Privacy Policy

Last updated: January 22, 2025

1. Introduction

Welcome to Coral ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "Service").

By using Coral, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you create an account, we collect your email address, name, and profile picture through your authentication provider (Google or Apple).
  • Voice Data: When you use voice commands, your audio is temporarily processed to convert speech to text. Audio recordings are not permanently stored on our servers.
  • Tasks and Notes: Content you create including tasks, notes, calendar events, and their associated metadata (titles, descriptions, due dates, priorities, tags).
  • Communication Data: Email content you compose through the app, including recipients, subjects, and message bodies.

2.2 Information Collected Automatically

  • Device Information: Device type, operating system, unique device identifiers, and mobile network information.
  • Usage Data: How you interact with the app, features used, and performance metrics.
  • Push Notification Tokens: Device tokens required to send you reminders and notifications.

2.3 Information from Third Parties

When you connect your Google account, with your explicit permission, we may access:

  • Google Calendar events (to display and create events)
  • Google Contacts (to help you send emails to your contacts)
  • Gmail (to send emails on your behalf)

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process your voice commands and convert them into actions
  • Create, store, and manage your tasks, notes, and calendar events
  • Send emails on your behalf when you use the email feature
  • Send push notifications for reminders and updates you've requested
  • Generate daily briefings and productivity insights
  • Respond to your inquiries and provide customer support
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

4. Voice and AI Processing

Coral uses artificial intelligence to understand your voice commands and natural language queries. Here's how this works:

  • Speech-to-Text: Your voice recordings are sent to Groq's Whisper API for transcription. Audio is processed in real-time and is not permanently stored.
  • Intent Processing: The transcribed text is analyzed by AI to understand your intent (e.g., creating a task, scheduling an event). This processing uses Groq's language models.
  • Data Minimization: We only send the necessary information to AI services to fulfill your request.

5. Data Sharing and Disclosure

We may share your information with:

5.1 Service Providers

  • Supabase: Database hosting and authentication services
  • Groq: AI/ML processing for voice transcription and natural language understanding
  • Google: Calendar, Gmail, and Contacts integration (only when you connect your account)
  • Expo: Push notification delivery

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

5.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • All data is transmitted using TLS/SSL encryption
  • Database access is protected by Row Level Security (RLS) policies
  • Authentication tokens are securely stored and regularly rotated
  • We use industry-standard security practices and regular security audits

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. You can delete your account at any time through the app settings, which will permanently delete all your data including:

  • All tasks and notes
  • Calendar event reminders
  • Connected account tokens
  • Push notification tokens
  • All other personal data associated with your account

8. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate personal information
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to certain processing of your information
  • Withdrawal of Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@coral.app.

9. Google API Services

Coral's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only request the minimum permissions necessary to provide our services, and we do not use Google data for advertising purposes.

10. Children's Privacy

Our Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our Service, you consent to the transfer of your information to these countries.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

← Back to Home