Last updated: December 2025

We are pleased that you are using the Memora app (hereinafter referred to as “App”). Protecting your privacy is our top priority. Since Memora is an app for personal memories, we have implemented technical measures to protect your data as best as possible.

Below, we inform you in detail about how we handle your data in accordance with the General Data Protection Regulation (GDPR).

1. Controller

The controller responsible for data processing within the meaning of the GDPR is:

Moritz von Basum, 48143 Münster, Germany

Email: info@memorastudio.de

2. Key Principle: Your Private Content Stays With You

The most important thing first: We do not store your personal diary content on our servers.

• Local Storage: All texts, photos, and memories created by you are stored exclusively locally on your device.
• No Access: As developers, we have no technical access to your private entries.
• Data Backup: Since we do not hold a cloud copy of your data, you are responsible for backups (e.g., via the integrated backup functions of your device, Apple iCloud, or Google Drive).

3. What Data We Process and Why

Although we do not read your content, the App processes technical data in the background to function correctly and to be improved.

a) When Using the App (Log Data)

When you use the App, information is automatically processed by your operating system. This may include:

• Device type and operating system version
• Language settings
• Timestamp of usage
• IP address (is automatically anonymized)

Legal Basis: Art. 6(1)(f) GDPR (Our legitimate interest in the technical functionality and stability of the App).

b) App Permissions

To allow you to use Memora fully, the App requests certain permissions:

• Storage / Photos / Camera: To load images into the App or take new ones. These data remain on your device.
• Network Access: To send technical analysis data (see Section 4) to our statistics service providers.

Legal Basis: Art. 6(1)(b) GDPR (Performance of a contract to provide the App functions).

4. Analysis and Success Measurement (Google Firebase)

To fix bugs, improve the App, and understand how users find our App, we use services provided by Google Firebase.

These services are disabled by default and are only activated if you click “Agree” / “Einverstanden” in the start dialog.

Services Used:

• Google Analytics for Firebase (Analysis)
• Firebase Crashlytics (Crash Reporting)

What is Collected?

• Usage Statistics: Which screens are opened, how long the App is used.
• Crash Reports: Technical logs when the App crashes (e.g., stack traces, device state).
• Installation Sources (Attribution): We measure via which channel you found the App (e.g., Google Play Search or a direct link).
• Identifiers: A random App Instance ID is generated for this purpose.

What is NOT Collected?

• Advertising ID (IDFA / AAID): We have technically blocked the collection of the Advertising ID in our App. No persistent advertising profiles are created.
• Personalized Advertising: We do not use the collected data to show you personalized ads. The data is used solely for statistical analysis and app optimization.
• IP Address: IP anonymization is enabled by default in Firebase. Your IP address is shortened by Google within the EU/EEA.

Recipients and Third Country Transfer

The provider is Google Ireland Limited (Ireland). However, data may be transferred to the parent company Google LLC in the USA. Google is certified under the EU-US Data Privacy Framework (DPF). The EU Commission has determined that an adequate level of data protection exists for certified companies in the USA.

Legal Basis: Processing takes place exclusively on the basis of your Consent (Art. 6(1)(a) GDPR).

Withdrawal of Consent

You can withdraw your consent at any time with effect for the future:

1. Open the App Settings.
2. Go to the “Privacy” section.
3. Disable the toggle “Improve App” / “Share Usage Data”.

The lawfulness of processing based on consent before its withdrawal remains unaffected.

5. Service Providers

We do not share any data with third parties for advertising purposes. We use the following processors for technical provision:

• Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland)
  • Purpose: Analytics, Crash Reporting, Technical Infrastructure (Google Play Services).
  • Privacy Policy: https://firebase.google.com/support/privacy

6. Storage Duration

• Your Private Content: Remains stored on your device until you delete it or uninstall the App.
• Analytics Data: Data stored at Google on user and event level is automatically deleted after 14 months.
• Crash Reports: Are deleted after 90 days.

7. Your Rights

Under the GDPR, you have the following rights:

• Right of Access (Art. 15 GDPR): You can request information about your data processed by us. Since we do not store real names, we require your App Instance ID for this (found in App Settings under Privacy/Support).
• Right to Deletion (Art. 17 GDPR): You can request the deletion of your analytics data.
• Right to Withdraw Consent (Art. 7(3) GDPR): You can withdraw your consent for analytics at any time in the App settings.
• Right to Lodge a Complaint (Art. 77 GDPR): You have the right to complain to a data protection supervisory authority if you believe that the processing of your data violates applicable law.
  • The authority responsible for us is: Landesbeauftragter für Datenschutz NRW, Germany.

8. Data Security

We use technical measures to protect your data. The transmission of analytics data is encrypted (TLS/SSL). By avoiding cloud storage for your content, we significantly minimize the risk of a server-side data leak.

9. Children’s Privacy

Our App is intended for users of all ages. We do not knowingly collect personal data from children under the age of 16 without the consent of their legal guardians.

10. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy to comply with legal requirements or to reflect changes in our services. The current version can always be found linked in the App settings.