top of page

Privacy Policy

Get in touch

ToBeDiscovered - Privacy Policy

Last Updated/Effective Date: 08 March 2026

ToBeDiscovered is a real-time AR friend locator. We respect your privacy and are committed to protecting your data. This policy explains what information we collect, how we use it, and the choices you have..

1. Information We Collect

1.1 Data You Provide

  • Account information: Your email address, used to create and identify your account.

  • Display name: Used to identify you to friends in the AR overlay.

  • Friend relationships: The list of users you have mutually accepted as friends.

1.2 Automatically Collected Data

  • Location data: Your GPS coordinates (latitude, longitude), compass heading, and accuracy are collected while the app is open and you are not in Ghost Mode.

  • Device sensors: Compass and gyroscope data are used locally to position AR markers. This data is not transmitted or stored.

1.3 Data We Do Not Collect

  • We do not collect your contacts, browsing history, photos, or any data unrelated to app functionality.

  • We do not collect location history. Each location update overwrites the previous one — no historical trail is stored.

  • We do not collect location data when Ghost Mode is enabled.

2. How We Use Your Information

We use your data only to provide the app's core functionality:

  • Display your location to friends you have mutually accepted, so they can see you in their AR view.

  • Display your friends' locations to you in your AR view.

  • Manage your account, friend relationships, and privacy preferences.

 

We do not sell, rent, or share your data with advertisers or any third party for commercial purposes.

3. Location Data

Location data is the core of ToBeDiscovered. Here is exactly how it works:

 

  • Your location is uploaded to Firebase Realtime Database at the interval you choose (every 1 minute on Real-time; every 10 minutes on Standard).

  • It is readable only by users you have explicitly accepted as friends. This is enforced at the database rules level — not just in the app.

  • Each upload overwrites the previous entry. We do not retain a history of your movements.

  • Enabling Ghost Mode immediately stops location uploads. Friends will see your marker as offline.

  • Location data is hosted on Google Firebase in the EU (europe-west1 region).

4. Data Storage and Security

  • Location data is stored in Firebase Realtime Database (EU region).

  • Profile and account data is stored in Firebase Firestore (EU region).

  • Access is controlled by Firebase Security Rules. Only you can write to your own location. Only mutually accepted friends can read it.

  • We take reasonable technical measures to protect your data from unauthorised access, including enforced authentication on all database reads and writes.

5. Third‑Party Services

ToBeDiscovered uses the following third-party services:

  • Google Firebase (Authentication, Firestore, Realtime Database): Stores account, friend, and location data. Subject to Google's Privacy Policy.

  • Expo / React Native: The framework used to build the app. No personal data is transmitted to Expo by default.

We do not currently use crash reporting, analytics, or advertising SDKs. If this changes, this policy will be updated and users notified via app release notes.

6. Children’s Privacy

ToBeDiscovered is not intended for children under 16. The app involves real-time location sharing, which is not appropriate for minors.

 

We do not knowingly collect personal information from children. If you believe a child has created an account, please contact us and we will delete it.

7. Your Choices

You can, at any time:

  • Enable Ghost Mode to stop sharing your location with friends immediately.

  • Remove individual friends to revoke their access to your location.

  • Change your location update frequency in Settings to reduce how often your location is shared.

  • Request deletion of your account and all associated data (see Section 8).

 

If you are based in the UK or EU, you have additional rights under UK GDPR / GDPR, including the right to access, correct, or erase your personal data. To exercise these rights, contact us using the details below.​
 

8. Account Deletion

You can delete your account directly from within the app. Deleting your account will permanently remove:

  • Your profile and account data from Firestore

  • Your location data from the Realtime Database

  • Your friend relationships and friend request history

Account deletion is permanent and cannot be undone. After deletion, your location will no longer be visible to any other user.

9. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated through the app or via release notes. The effective date at the top of this page will always reflect the most recent version.

10. Contact

If you have questions or concerns about this policy, or wish to exercise your data rights, please contact the developer directly.

Alternatively you can reach the developer at: kara.devinfo@gmail.com

 

You may also use the contact form on the support page.

bottom of page