Privacy Policy – Name Day
Valid from 25 October 2025 – Version 1.0
1. Who we are and how to contact us
Data Controller: GS SRL
Address: Via CARLO TRAMONTANO 56, 84016 PAGANI (SA), Italy
Privacy contact email: [email protected]
Web Site: https://giordanosoftware.net
2. What data do we process
| Category | Details | Source |
|---|---|---|
| Authentication data | Name, surname, email address, profile picture (if provided by the provider). | Provided by the user via Google/Apple sign-in and managed by Firebase Authentication. |
| Technical identifiers | Firebase UID, advertising device ID (if available), local notification token. | Generated by the app or by the integrated SDKs. |
| App Preferences | Language, notification settings, reminder time, message templates, contact/synchronisation preferences, permissions banner status. | Entered by the user and saved locally (Shared Preferences) or in the cloud if the user logs in. |
| Address book and personalised notes | Name, phone numbers, email addresses of selected contacts, notes, custom dates, history of greetings. | They are read by the device only after explicit consent; the data remains local and, if the user is authenticated, it is synchronised with their Cloud Firestore account. |
| Purchase data | Product ID, platform, active status/trial period, expiry date. | Derived from subscription management through RevenueCat. |
| Usage data and interactions | Navigation events (openings, tabs, banners, login/logout), interaction with local notifications. | Tracked in a pseudonymised form with Firebase Analytics. |
| Advertising data | Information on reward ads viewed/shown, loading errors, consent signal. | Generated by the Google Mobile Ads package (only if the user enables ad requests). |
| Log technicians | Local error messages, system permissions status (notifications, exact alarm, contacts). | Processed in-app to display guides and banners, not sent to external servers. |
Sensitive or judicial data: we do not process data falling into these categories.
Data of minors: the app is intended for users aged 16 years or older. Those under 16 must use the app with the assistance of a parent/guardian.
3. Purposes and legal bases
| Purpose | Legal basis | Data used | Note |
|---|---|---|---|
| User authentication and cross-platform synchronisation | Execution of the contract (art. 6.1.b GDPR) | Authentication data, Firebase UID, app preferences | Access is optional but necessary to synchronise data between devices. |
| Management of reminders, customisations and contacts | Execution of the contract | App preferences, contacts/Notes, notifications | Contacts are processed only with explicit consent. You can revoke this at any time from the settings. |
| Sending local notifications and managing permissions | Execution of the contract | Notification token, notification settings, permission status | We do not send remote push notifications; the calendar is local. |
| Premium subscription management | Execution of the contract | Purchase data, Firebase UID | RevenueCat is appointed as the processor. |
| Analysis of the app's usage to improve its functionalities | Legitimate interest (art. 6.1.f) with opt-out via app settings | Usage events, UID (pseudonymised) | The events are limited within the app. You can disable data collection from Settings → Privacy. |
| Serve reward ads and measure their performance | Consent (art. 6.1.a) | Advertising ID, advertising data, consent signal | We request consent through the Google UMP interface. If you refuse, you can still use the app and, if available, you will only receive non-personalised ads or none at all. |
| Support/contact | Legitimate interest | Data provided in the message (e.g. email) | Communication takes place via email or a form on the website. |
| Legal obligations and defence in court | Legal obligation (art. 6.1.c) / legitimate interest | Any necessary data | It applies only in the case of requests from authorities or disputes. |
4. Data retention
- Authentication and synchronisation data: as long as you keep the account active. You can request deletion via email.
- Local preferences and contacts: they remain on the device; when you log out or uninstall the app, the local data is removed.
- Data saved in the cloud (Firestore): deleted within 30 days of the deletion request or from permanent logout.
- Analysis and logs: aggregated events retained for a maximum of 26 months; local logs are temporary.
- RevenueCat purchase data: retained as long as the subscription is active and for the following 24 months for accounting purposes.
5. Recipients and transfers
| Subject | Service | Server localisation | Guarantees |
|---|---|---|---|
| Google LLC / Google Ireland Limited | Firebase Authentication, Analytics, Cloud Firestore, Firebase Storage, Google Mobile Ads | EU/EEA and, if necessary, USA | Standard Contractual Clauses (SCC) + supplementary measures |
| RevenueCat, Inc. | Subscription Management | USA | SCC |
| Apple Inc., Google LLC | In-app purchase, App Store/Play Store distribution | UE/USA | Privacy policies of the respective stores |
| Cloudflare, Inc. | CDN for corporate website | UE/USA | SCC |
The synchronised contact data is not shared with other users or third parties.
We do not sell personal data nor do we share it with data brokers.
No automated decision-making process produces legal effects on the user.
6. Transfers outside the EU
The data can be hosted or mirrored on servers in the United States.
The transfers are based on Standard Contractual Clauses approved by the European Commission and additional security measures (encryption in transit, access control).
You can request a copy of the guarantees by writing to us.
7. Handling of synchronised contacts
Access to the address book is optional and must be authorised by the operating system.
We only process the information necessary to suggest name days and maintain personalised notes/messages.
Without authentication, the data remains on the device.
With authentication, the data is encrypted in transit and stored in Cloud Firestore in the document associated with your UID.
You can revoke the permission from the system settings and delete the information from Settings → Manage contacts or through the “Logout and remove data” option.
8. Advertising and consent
The app can display reward ads through Google AdMob.
Before displaying, we request consent via the Google User Messaging Platform (UMP), distinguishing between personalised and non-personalised ads.
If you do not accept, the loading of ads is limited or disabled; you can still purchase the premium subscription to remove the ads.
You can change your preferences at any time from Settings → Privacy → “Manage advertising consent”.
9. Security
We adopt appropriate technical and organisational measures: secure authentication, TLS encryption, Firestore rules based on UID, segregation of test/production environments, access control to backends.
In the event of incidents that may pose a high risk, you will be informed in accordance with Articles 33-34 of the GDPR.
10. Rights of the data subject (arts. 15-22 GDPR)
You can exercise the following rights free of charge and at any time:
- Access to your personal data.
- Correction of inaccurate data or integration.
- Deletion (“right to be forgotten”) in the cases provided.
- Restriction of processing.
- Data portability provided in an interoperable format.
- Objection to processing based on legitimate interest (e.g. analysis).
- Withdrawal of consent at any time, without affecting the lawfulness of the processing carried out before.
- Complaint to the supervisory authority: Data Protection Authority (www.garanteprivacy.it).
To exercise your rights, write to [email protected].
We will respond to you within 30 days.
11. Updates to the information
We may update this notice for legal or operational reasons.
We will inform you in the app or via email.
The latest version is always available at:
👉 https://giordanosoftware.net/privacy/onomastico
Last updated: 25 October 2025
12. Terms of Use (EULA)
The use of the Onomastico app is subject to these terms and, for iOS users, also to Apple's standard End User License Agreement (EULA).
For users who download the app via the Apple App Store, the standard Apple licence applies, available at the following official address:
👉 https://www.apple.com/legal/internet-services/itunes/dev/stdeula/
This EULA governs the rights and obligations related to the use of the app, including the limitations of liability and the terms of use established by Apple.
The use of the app implies full acceptance of these terms.
For users who use the app on Android devices (Google Play), the Google Play Terms of Service apply:
👉 https://play.google.com/about/play-terms/