Privacy
Privacy Policy
This Privacy Policy explains what information we collect, how we use it, who we share it with, and what rights you have over your data. It applies to the Vinifera mobile application, our marketing site at viniferavineyardmanagement.com, and any related services we provide.
If you do not agree with this policy, please do not use Vinifera.
1. Information We Collect
1.1 Account information
When you create a Vinifera account, we collect your email address, display name, and an authentication credential (currently a password hash, with social sign-in providers planned). When you subscribe through Google Play, we receive a Play purchase token and metadata about your subscription (product, base plan, period dates, renewal status) — but we do not receive your payment-method details.
1.2 Vineyard operations data
Vinifera is a vineyard management tool, so the bulk of the data you create in the app is operational: vineyards, blocks, rows, vines, scouting notes, pest and weed observations, chemical and fertilizer applications, harvest events, weather observations, and the schedules and reports built from those. This is your data; we store it to provide the service.
1.3 Photos and media
When you take photos in the app (scouting, vine markers, chemical labels), we store the image, EXIF metadata (including GPS coordinates if your device provides them), and a thumbnail. Voice memos attached to scouting notes are stored as audio files.
1.4 Location
With your permission, we use device GPS to auto-tag observations with the block you're standing in and to capture weather context for chemical applications. You can deny or revoke location permission at any time in your device settings; the app will continue to work with manual block selection.
1.5 Device and usage information
We collect technical information needed to operate the service: device model, operating system version, app version, IP address, time zone, and event logs (sign-ins, errors, sync attempts). This information is used for diagnostics and to detect abuse.
1.6 Push notification tokens
If you enable push notifications, we store an Expo push token (or, in the future, an Apple/Google device-specific token) so we can deliver scheduled reminders.
2. How We Use Information
- To provide and maintain Vinifera and its features.
- To process your subscription and manage your account.
- To send transactional and operational notifications you've configured (spray reminders, frost alerts, scheduled-event reminders).
- To compute reports, exports, and analytics tied to your vineyard.
- To diagnose problems, monitor service health, and improve the app.
- To prevent abuse, fraud, and policy violations.
- To comply with applicable law and respond to lawful requests.
3. Third-Party Services and Data Sharing
We do not sell your personal information. We share data only with the service providers we rely on to operate Vinifera, and only to the extent each provider needs to perform its function:
- Google Play Billing — handles subscription purchases, renewals, refunds, and tax. Google's privacy policy applies to billing data.
- Microsoft Azure — hosts our application, database (Azure Postgres Flexible Server), object storage (Azure Blob Storage), Key Vault for secrets, Container Apps for the API, and DNS. Azure stores all data in REGION — East US 2.
- Google Pub/Sub — receives Real-time Developer Notifications from Play Billing for subscription lifecycle events.
- Resend — sends transactional emails such as scheduled-event reminders, invitations, and receipts.
- Weather providers — the U.S. National Weather Service (api.weather.gov) and Open-Meteo for forecasts and historical observations. Your vineyard location is sent to these providers when forecasts are fetched.
- Google Maps — renders vineyard maps and provides geocoding. Your map viewport is sent to Google when you use the map.
We do not share your data with advertisers; we do not run ads in the app or on this site.
4. Data Retention
Operational data (scouting notes, applications, harvest events, etc.) is retained for the lifetime of your account or your subscription's history-retention window, whichever is shorter:
- Free tier: records older than 30 days are hidden from view but not deleted; upgrading restores visibility immediately.
- Pro and Business tiers: unlimited history.
- Photos: stored on Azure Blob with 30-day soft delete. Original photos are not modified; thumbnails are derivative.
When you delete your account, we soft-delete your user record and remove your name from public attributions within 30 days. Records you authored are anonymized rather than removed in order to preserve compliance audit trails for vineyard owners. Audit logs and backups are retained for up to 12 months.
5. Your Rights
Depending on your jurisdiction, you may have the right to access, correct, port, or delete your personal information, and to object to or restrict certain processing. To exercise any of these rights, contact us at the address below. We respond within 30 days.
You can export every dataset (spray records, scouting history, harvest events, weather summaries, audit logs) to CSV at any time on a Pro or Business plan, from the app's Reports screen.
6. Security
Connections to and from Vinifera use TLS 1.2 or higher. Secrets (database credentials, JWT signing keys, third-party API keys) are stored in Azure Key Vault and accessed by managed identity. Database connections are TLS-required. We don't store payment-card details — those are handled by Google Play.
No system is perfectly secure. If you believe your account has been compromised, contact us immediately.
7. Children's Privacy
Vinifera is a business tool intended for vineyard operators and their staff. We do not knowingly collect personal information from children under 18. If you believe a child has provided us with personal information, contact us and we will delete it.
8. International Transfers
Vinifera is operated from the United States. If you access the service from outside this jurisdiction, your data will be transferred to and stored on servers located in the region listed in Section 3.
9. Changes to This Policy
We may update this policy. The "Last updated" date at the top reflects the most recent version. Material changes will be communicated in-app or by email to the address on file before they take effect.
10. Contact
For questions about this policy or to exercise your rights, contact us through the Google Play Store.