Privacy Policy

The current app processes the following categories of data:

• Account and profile data such as nickname, email address, encrypted password, optional full name, and optional avatar.
• Social sign-in data from Google, Apple, or VK when you choose those login or linking methods. This may include provider user ID, email address, full name, avatar, and verification tokens.
• User-generated content including pollution reports, cleanup confirmations, uploaded photos, comments, chat messages, moderation status, verification status, and timestamps.
• Location data including precise coordinates that you choose or confirm for reports, readable location names derived from those coordinates, and optional GPS metadata read from selected images when permissions allow it.
• Notification and delivery data such as Firebase Cloud Messaging token, platform, and language.
• Local on-device data such as the auth token, basic profile fields, linked provider IDs, push token, and temporary VK auth session data.

We use data to operate the current service, including:

• account creation, authentication, and optional social sign-in or account linking;
• publishing, displaying, moderating, verifying, and editing reports and cleanup confirmations;
• displaying maps and resolving readable location names from coordinates;
• operating in-app chat, support communication, welcome emails, and password reset emails;
• sending push notifications about moderation, chat replies, and related service events;
• abuse prevention, fraud investigation, rule enforcement, and security protection;
• maintaining community history, rankings, and internal coins.

Cleancy is a community service, so some content is meant to be shared inside the product.

• Reports, cleanup confirmations, nicknames, avatars, comments, and related content may be visible to other users or administrators depending on the feature and moderation status.
• Uploaded report images, cleanup images, and avatars are currently stored using public Google Cloud Storage object URLs.
• Messages sent through the in-app admin or support chat may be reviewed by administrators, and user text messages may trigger email or push notifications to support personnel.

The current app uses third parties for core functions:

• Google Cloud Storage for report images, cleanup images, and avatars.
• Firebase Cloud Messaging for push token registration and push delivery.
• Google, Apple, and VK as optional identity providers.
• geocode.maps.co for reverse geocoding coordinates into readable location names.
• Platform map services used to render maps and markers.
• Gmail-based email delivery for welcome emails, password reset emails, and selected support or moderation notifications.

• Account and community data are retained for as long as needed to operate the service, support moderation, preserve community history, and prevent abuse.
• In the current backend implementation, deleting your account does not immediately hard-delete every related record. The profile is anonymized, the avatar is removed, stored push tokens are cleared, and the account is marked as deleted.
• Existing reports, cleanup confirmations, chat history, and moderation records may remain with deleted or anonymized references so that community history and moderation trails stay consistent.
• Limited information may also be retained where required by law or needed to resolve disputes or enforce rules.

• You can edit profile data such as nickname, email, password, full name, avatar, and newsletter preference inside the app.
• You can choose between email/password registration and available social sign-in options.
• You can control location, camera, photo library, media-location, and notification permissions in your device settings. Some features may not work fully if permissions are denied.
• You can contact info@clean-nature.org with questions about privacy or the current deletion flow.

We use reasonable technical and organizational measures, including encrypted password storage and authenticated APIs, to protect the service. No system can guarantee absolute security, and you remain responsible for the security of your device and login credentials.

We may update this policy to reflect product, infrastructure, or legal changes. Continued use of the app after publication of an updated version means the new version applies from its published date.