Privacy Policy
Effective date: June 17, 2026 Last updated: June 17, 2026
This Privacy Policy explains how Firelight Prose Inc. (“Firelight Prose,” “we,” “us,” or “our”) collects, uses, and shares information when you use the Firelight Prose mobile application and related services (the “App”), available on the Apple App Store and Google Play. By using the App, you agree to the practices described here.
We have designed the App to collect as little personal information as we reasonably can. We do not sell or “share” your personal information, we do not show third-party advertising, we do not use advertising identifiers, and we do not track you across other companies’ apps or websites.
1. Who we are
Firelight Prose is an interactive-fiction reading app operated by Firelight Prose Inc., a California corporation located at 2108 N St, Ste N, Sacramento, CA 95816, USA. You can reach us any time at [email protected], which also serves as our privacy contact.
For users in the European Economic Area (EEA) and the United Kingdom, where the law requires us to designate a representative, we will appoint one and identify their contact details in this section (see Section 13).
2. Information we collect
We collect the following categories of information:
| Information | How we get it | Why we have it |
|---|---|---|
| Email address | When you create an account (email sign-up, or a platform sign-in such as Sign in with Apple on iOS or Sign in with Google on Android) | To create and secure your account and to contact you about your account |
| Authentication identifiers | Generated when you sign in (managed by our authentication provider, Clerk) | To keep you signed in and protect your account |
| Reading progress & in-story choices | Saved automatically as you read and customize stories | To remember where you are in a story and the choices you made |
| Purchase & subscription status | From your app store’s in-app purchase system (Apple In-App Purchase or Google Play Billing) and our subscription provider, RevenueCat | To unlock premium content and manage your subscription |
| Product-analytics events | Generated as you use the App (for example, opening the App or starting a story) | To understand how the App is used and improve it |
| Crash & diagnostic data | Generated automatically if the App crashes or errors | To find and fix bugs |
If you use Sign in with Apple and choose Apple’s Hide My Email feature, we receive only Apple’s private relay email address, not your personal email.
We do not collect your precise location, your contacts, your photos, your device’s advertising identifier, or any data for advertising or cross-app tracking purposes.
3. How we use your information
We use the information above to:
- create, secure, and operate your account;
- save and sync your reading progress and customization choices;
- process and validate purchases and manage subscription entitlements;
- understand how the App is used so we can improve features and content;
- detect, prevent, and fix technical problems, abuse, and security issues; and
- communicate with you about your account, purchases, or important changes to the service.
Where data-protection law requires a “legal basis” for processing (see Section 13), we rely on the bases described there.
4. How your information is shared
We share information only with the service providers that help us run the App, and only as needed for them to perform their function. We do not sell personal information, we do not “share” it for cross-context behavioral advertising, and we do not disclose it to advertising networks.
Our key service providers (“processors”) are:
| Provider | Role | Privacy information |
|---|---|---|
| Clerk | Authentication / account management | https://clerk.com/legal/privacy |
| Render | Application hosting and database | https://render.com/privacy |
| Backblaze B2 | Image and file storage | https://www.backblaze.com/company/privacy.html |
| Apple | App distribution and In-App Purchases (iOS) | https://www.apple.com/legal/privacy |
| App distribution and Google Play Billing (Android) | https://policies.google.com/privacy | |
| RevenueCat | Subscription management | https://www.revenuecat.com/privacy |
| PostHog | Product analytics (autocapture disabled) | https://posthog.com/privacy |
| Sentry | Crash and error diagnostics | https://sentry.io/privacy |
We may also disclose information if required by law, to enforce our Terms of Service, or to protect the rights, safety, and security of our users or the public. If we are ever involved in a merger, acquisition, or sale of assets, we will continue to protect your information and will notify you before it becomes subject to a different privacy policy.
5. Payments
All purchases are processed by the app store you downloaded the App from — Apple through the App Store (In-App Purchase) or Google through Google Play (Google Play Billing). We never receive or store your full payment-card details. We receive only the purchase and subscription status needed to deliver the content you bought (via Apple or Google and RevenueCat).
6. Data retention
We keep your account information for as long as your account is active. Reading progress and account data are retained while your account exists and are deleted when you delete your account (see Section 7). We may retain limited records (for example, transaction records) where required for legal, accounting, or security reasons.
7. Your choices and rights
- Access / correction: You can view and update your account email from within the App or by contacting us.
- Account deletion: You can delete your account from within the App, request deletion on the web at https://firelightprose.com/delete-account, or email us at [email protected]. Deleting your account removes your personal account data and reading progress from our systems. (Note: subscriptions are managed by your app store — see Section 8 — so cancel any active subscription in your Apple or Google account settings as well.)
- Analytics: Where applicable, you can contact us to request that we limit non-essential analytics associated with your account.
Depending on where you live, you may have additional rights — see Section 13 (Your regional privacy rights). To exercise any right, email us at [email protected] and we will respond as required by applicable law. We may ask for information to verify that you are the owner of the data before we act on a request.
8. Subscriptions are managed by your app store
Subscriptions purchased through the App are auto-renewable and managed by the app store you bought them from. Cancelling the App or deleting your account does not automatically cancel a store subscription.
- iOS / Apple: Manage or cancel in Settings → [your name] → Subscriptions on your Apple device.
- Android / Google Play: Manage or cancel in Google Play → Profile → Payments & subscriptions → Subscriptions.
9. Children’s privacy
The App is intended for users 17 years of age and older. It is not directed to children under 13, and we do not knowingly collect personal information from children under 13. In the EEA and the UK, where the minimum age for consenting to online services without parental authorization is set between 13 and 16 depending on the country, we do not knowingly provide the App to users below that age without the required consent. If you believe a child has provided us personal information without the appropriate consent, contact us at [email protected] and we will delete it.
10. Security
We use reasonable technical and organizational measures to protect your information, including encryption in transit, access controls limited to those with a genuine business need, and procedures for handling suspected security incidents. No method of transmission or storage is completely secure, so we cannot guarantee absolute security. Where legally required, we will notify you and the relevant regulator of a data breach.
11. International data transfers
The App is operated from the United States, and your information is processed and stored in the United States and in other locations where our service providers operate. If you are located in the EEA, the UK, or Switzerland, transferring your information to the United States and other countries means it may be processed in a country whose data-protection laws differ from your own. Where such a transfer requires a safeguard under applicable law, we rely on an appropriate mechanism — such as the European Commission’s Standard Contractual Clauses (and the UK Addendum) — to protect your information. You may contact us for more information about these safeguards.
12. “Do Not Track” and Global Privacy Control
Some browsers and devices can send a “Do Not Track” (DNT) or Global Privacy Control (GPC) signal that communicates a privacy preference. Because we do not sell or “share” personal information and do not engage in cross-context behavioral advertising, there is no tracking of that kind for these signals to turn off. Where a GPC signal is treated as a valid opt-out request under applicable law, we honor it.
13. Your regional privacy rights
The rights available to you depend on where you live. To exercise any right described below, email [email protected]; we may ask for information to verify your identity, and in some cases the law may limit our ability to fulfill a request.
EEA, United Kingdom, and Switzerland (GDPR / UK GDPR)
For individuals in the EEA, the UK, and Switzerland, Firelight Prose Inc. is the controller of your personal data. We process your personal data on the following legal bases:
- Performance of a contract — to create and operate your account, deliver the stories and features you request, and manage your subscription.
- Legitimate interests — to operate, secure, and improve the App and to keep it free of abuse, in a way that does not override your rights.
- Consent — where we ask for it (for example, certain optional communications). You may withdraw consent at any time without affecting prior processing.
- Legal obligation — where we must process data to comply with the law.
You have the right to access your personal data; to correct inaccurate data; to delete your data; to restrict or object to certain processing; to data portability; and to withdraw consent where processing is based on consent. You also have the right to lodge a complaint with a supervisory authority — in the UK, the Information Commissioner’s Office (ICO), at www.ico.org.uk; in the EEA, your local data-protection authority.
Where the law requires us to designate an EU and/or UK representative, we will appoint one and publish their contact details in Section 1.
United States — state privacy rights
If you are a resident of a U.S. state with a comprehensive privacy law (including California, Virginia, Colorado, Connecticut, Utah, Texas, and Oregon), you may have the right to:
- access a copy of the personal information we hold about you;
- correct inaccurate personal information;
- delete your personal information;
- obtain your information in a portable format; and
- opt out of the sale of personal information, of “sharing” / targeted advertising, and of certain profiling.
We make the following commitments to all U.S. users:
- We do not sell your personal information, and we do not “share” it for cross-context behavioral (targeted) advertising, as those terms are defined under state privacy laws.
- We do not use your personal information for profiling that produces legal or similarly significant effects about you.
- We will not discriminate against you for exercising your privacy rights.
- We protect any sensitive personal information with additional safeguards.
California residents may additionally use an authorized agent to submit requests on their behalf. Because we do not sell or share personal information, there is no “Do Not Sell or Share My Personal Information” action required — that practice does not occur.
Canada (PIPEDA)
If you are in Canada, the Personal Information Protection and Electronic Documents Act (PIPEDA) applies to our handling of your personal information. You have the right to access the personal information we hold about you, to request correction of inaccurate information, to withdraw consent (subject to legal or contractual limits), and to ask about how your information is handled. Contact us at [email protected] and we will respond within a reasonable time as required by law.
Brazil (LGPD)
If you are in Brazil, the Lei Geral de Proteção de Dados (LGPD) applies. You have the right to confirm the existence of processing; to access, correct, anonymize, block, or delete your personal data; to request portability to another provider; to be informed about the entities with whom we share your data; and to obtain information about the consequences of denying or withdrawing consent, and to withdraw it.
14. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date above and, for material changes, provide notice within the App or by email. Your continued use of the App after an update means you accept the revised policy.
15. Contact us
Questions about this Privacy Policy or your information? Email [email protected]. The data practices summarized here are also reflected in the App Privacy disclosure on the Apple App Store and the Data safety disclosure on Google Play.