1. Who we are

AquaGuru ("AquaGuru", "we", "us") is a mobile application for aquarium care, operated by its developer and reachable at mstopcu17@icloud.com. This policy explains what personal data we process when you use the AquaGuru app or visit aquaguru.xyz, and the choices you have.

2. Information we collect

2.1 Account information

AquaGuru requires an account. When you sign up we collect your email address and authentication credentials. If you use Sign in with Apple, we receive the identifier Apple provides and, depending on your choice, your real or a private relay email address. Authentication and account data are handled by our backend provider, Supabase.

2.2 Aquarium data

The content you create in the app — tank dimensions and specifications, substrate and hardscape details, dosing programs, water-change history, water parameter logs, your fertilizer/liquids cabinet, equipment lists, and livestock information. This data is stored on your device and, where sync features are enabled, associated with your account on our backend so it isn't lost if you change devices.

2.3 Photos

Photos you take or attach in AquaGuru (tank photos, algae-diagnosis photos) are stored only on your device. When you explicitly request an AI photo diagnosis, the selected photo is transmitted to our server-side AI proxy and passed to an AI service to generate the diagnosis; it is processed transiently for that request and is not stored on our servers. Camera and photo-library access is only used when you initiate these actions.

2.4 AI conversations

When you use AquaAI chat or generate a dosing plan, your messages together with relevant tank context (tank specifications, dosing program, products you own, recent parameters or estimates) are sent through our secure server-side proxy to third-party AI service providers to generate a response. We do not use your conversations to train AI models. Please avoid including unrelated personal information in AI chats.

2.5 Purchases

Subscriptions and in-app purchases are processed by Apple and managed through RevenueCat, our subscription-management provider. We receive purchase status (e.g. active subscription, expiration) and anonymized transaction identifiers. We never see or store your payment card details.

2.6 Usage and diagnostics

We use Firebase Analytics and Firebase Crashlytics (Google) to understand how the app is used and to detect crashes. This includes device model, OS version, app version, coarse region, session events and crash traces. This data is aggregated and not used to identify you personally.

3. How we use your information

4. Who we share data with

We do not sell your personal data, and we do not share it with third parties for their own advertising. We share data only with the service providers that make the app work:

ProviderPurposeData involved
SupabaseAuthentication, database, secure AI proxyEmail, account data, aquarium data
AppleSign in with Apple, payments, App Store distributionApple ID identifier, purchase records
RevenueCatSubscription managementAnonymized purchase/entitlement data
Google FirebaseAnalytics & crash reportingDevice/usage statistics, crash traces
AI service providersGenerating AI responses and photo diagnosesChat content, tank context, diagnosis photos (transient)

These providers process data on our behalf under their own security and privacy commitments. We may also disclose information if required by law or to protect our legal rights.

5. Data retention and deletion

You can also request deletion by emailing mstopcu17@icloud.com; we will respond within 30 days.

6. Security

All traffic between the app and our backend uses TLS encryption. AI provider credentials are held exclusively server-side — the app itself contains no AI service keys. Access to backend data is restricted by row-level security tied to your account. No system is 100% secure, but we follow current industry practices to protect your data.

7. International transfers

Our service providers may process data in countries other than your own, including the United States and the European Union. Where required, transfers rely on appropriate safeguards such as standard contractual clauses implemented by our providers.

8. Children

AquaGuru is not directed at children under 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect personal data from them. If you believe a child has provided us personal data, contact us and we will delete it.

9. Your rights

Depending on where you live (including under the GDPR and Türkiye's KVKK), you may have the right to access, correct, delete, or receive a copy of your personal data, to restrict or object to certain processing, and to withdraw consent. You can exercise most of these directly in the app (edit or delete data, delete your account) or by emailing mstopcu17@icloud.com. You also have the right to lodge a complaint with your local data-protection authority.

10. Changes to this policy

We may update this policy as the app evolves. Material changes will be announced in the app or on this page, and the "Last updated" date above will change. Continued use of AquaGuru after an update constitutes acceptance of the revised policy.

11. Contact

Questions about privacy? Email mstopcu17@icloud.com.

See also our Terms of Use.