Privacy Policy

Last updated: May 23, 2026

Glimma ("we," "us," or "our") respects your privacy. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Glimma, you agree to this policy.

1. Information We Collect

Account information. When you create an account, we collect your name, phone number or email, and a username. If you sign in with Apple, we receive a private relay email and your chosen display name.

Content you create. Status posts, voice memos, captions, and reactions you create in the app.

Contacts (optional). If you grant permission, we read your device contacts to suggest people to connect with. Contact data is matched on-device or in a hashed form and is never sold.

Calendar (optional). If you grant permission, we read calendar events to surface scheduling context for invites. We never modify your calendar without your action.

Microphone (optional). If you grant permission, audio you record is sent to our speech-to-text service for transcription and to our servers to deliver voice memos to recipients.

Device & diagnostic data. Crash reports, performance metrics, and basic device info (model, OS version) collected via Sentry to improve stability.

Subscription & purchase data. If you subscribe to Premium Expressions, Apple processes the payment and shares a receipt with us indicating your subscription status. We never see your card details — only whether your subscription is active.

2. How We Use Your Information

To provide the core service — sending and receiving status updates between you and the people you choose.
To authenticate your account and prevent fraud or abuse.
To improve the app's reliability through crash and performance monitoring.
To respond to support requests you send us.

3. Third-Party Services

Glimma uses the following third-party services that may process your data on our behalf:

Google Firebase — authentication, database, cloud storage, push notifications (policy)
Apple Sign-In — authentication (policy)
Sentry — crash and error reporting (policy)
Google Gemini AI — optional AI-assisted features (policy)
Expo — over-the-air updates and build infrastructure (policy)

4. Data Sharing

We do not sell your personal information. We do not share your content with advertisers. We share data with the third-party services listed above only as needed to operate the app, and only under contractual confidentiality.

5. Data Retention

We retain your account data while your account is active. You can delete your account at any time from inside the app (Settings → Account → Delete Account), or by emailing privacy@glimma.social. Deletion is permanent and typically completes within 30 days.

6. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal data. To exercise these rights, contact privacy@glimma.social.

7. Children

Glimma is not directed to children under 13 (or the applicable age of digital consent in your country). We do not knowingly collect data from children under that age.

8. Security

We use industry-standard encryption (HTTPS in transit, encryption at rest via Firebase) and access controls. No system is perfectly secure, but we work continuously to protect your information.

9. International Data Transfers

Glimma is hosted on Google Cloud infrastructure. Your data may be processed in the United States or other countries where our service providers operate.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be announced in the app or by email. The "last updated" date above reflects the latest revision.

11. Contact

Questions? Email privacy@glimma.social.