This Privacy Policy applies to the Firedeck mobile application, hereby referred to as the "Application," created by Adam Gelatka, hereby referred to as the "Service Provider," as a Freemium service. This service is provided "AS IS."

Firedeck is an independent developer tool for working with Firebase and Google Cloud resources from a mobile device. Firedeck is not affiliated with, endorsed by, sponsored by, or associated with Google LLC, Firebase, or Google Cloud.

Firedeck connects directly to Google and Firebase APIs using the Google account that you choose to sign in with. The Application is designed so that you operate only on Firebase or Google Cloud projects that your Google account already owns or has permission to access.

The Service Provider does not operate a backend for Firedeck. Firedeck does not use a token vault, does not use the Firebase Admin SDK, does not use service accounts, and does not proxy your Firebase data through a server controlled by the Service Provider.

Depending on how you use the Application, Firedeck may display or interact with data from Firebase and Google Cloud services, including:

• Firebase projects and project metadata
• Firestore collections, documents, and document fields
• Cloud Storage buckets, objects, and object metadata
• Remote Config parameters
• Firebase Authentication users and custom claims
• Realtime Database instances and data
• Firebase Hosting sites, channels, and releases
• App Distribution apps, releases, groups, and testers
• Cloud Functions and related logs/errors
• Cloud Logging entries
• Security Rules releases and rulesets
• App Check service configurations
• Firebase Extensions
• IAM members and role information
• Firebase Cloud Messaging requests you choose to send

This data is requested directly from Google/Firebase APIs using your signed-in Google account and is shown inside the Application so you can use the Application's features.

The Service Provider does not store, copy, sell, or use your Firebase project data on the Service Provider's own servers.

Firedeck's use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Firedeck requests the following OAuth scopes from your Google account, only when you open the corresponding feature:

• openid, email, profile — sign-in identity, account address, and profile/avatar for the account header.
• https://www.googleapis.com/auth/cloudplatformprojects.readonly — list your Google Cloud projects in the project picker.
• https://www.googleapis.com/auth/firebase.readonly — read Firebase Management resources you already have access to (projects, apps, configs, Hosting metadata, App Distribution, Remote Config).
• https://www.googleapis.com/auth/firebase — write Firebase Management resources for user-initiated edits (Remote Config, App Distribution, Hosting, Security Rules, App Check, Extensions, Realtime Database admin, Authentication users).
• https://www.googleapis.com/auth/firebase.messaging — send Firebase Cloud Messaging v1 messages you compose.
• https://www.googleapis.com/auth/datastore — Firestore data-plane access (browse, create, update, delete documents).
• https://www.googleapis.com/auth/devstorage.read_only — list and download Cloud Storage buckets and objects.
• https://www.googleapis.com/auth/cloud-platform — requested incrementally only when you open Cloud Functions, Cloud Logging, IAM, or billing surfaces, upload to Cloud Storage, edit a Firestore document, or save a Remote Config parameter. Never requested at initial sign-in.

Firedeck uses incremental authorization: it does not request all scopes at sign-in. Sensitive scopes are requested only when you first open a feature that needs them, and Google's system consent screen prompts you each time. You can decline any individual scope; declining simply makes the corresponding feature unavailable.

All communication between Firedeck and Google/Firebase APIs uses HTTPS/TLS.

Firedeck uses Google Sign-In to authenticate you with Google. OAuth access and refresh tokens are handled by Google's Sign-In SDK and stored by that SDK using iOS security mechanisms such as the Keychain.

Firedeck does not maintain its own token vault, does not send your tokens to a Service Provider backend, and does not share your tokens with third parties controlled by the Service Provider.

The Application may store limited settings locally on your device to make the app work properly, such as:

• Whether onboarding has been completed
• Deck layout and widget configuration
• Project favorites
• Project color selections
• Other lightweight preferences needed for the user interface

This local data remains on your device unless iOS, your device backup settings, or Apple services sync or back it up according to your device configuration.

The Application may collect limited diagnostic, analytics, crash, and purchase-related information through third-party services used to improve reliability, understand app usage, and manage subscriptions or purchases. This may include information such as:

• Device type and operating system version
• App version
• Crash reports and diagnostic data
• General app usage events
• Purchase or subscription status
• Approximate technical information such as IP address as processed by third-party services

The Application does not collect precise location information from your mobile device.

The Application does not use Artificial Intelligence technologies to process your Firebase project data or provide core app features.

The Application uses third-party services that have their own privacy policies. These services may collect and process information according to their own policies:

• Google Analytics for Firebase
• Firebase Crashlytics
• RevenueCat
• Google Sign-In / Google APIs

The Service Provider may receive aggregated, anonymized, or diagnostic information from these services to improve the Application, troubleshoot issues, and operate the Freemium service.

The Service Provider does not sell your personal information or Firebase project data.

The Service Provider may disclose information:

• as required by law, such as to comply with a subpoena or similar legal process;
• when they believe in good faith that disclosure is necessary to protect their rights, protect your safety or the safety of others, investigate fraud, or respond to a government request;
• with trusted third-party service providers used to operate, diagnose, analyze, or monetize the Application, subject to those providers' privacy policies and applicable terms.

Because Firedeck acts as a client for your Google/Firebase account, you are responsible for the actions you take inside the Application, including viewing, creating, updating, deleting, uploading, downloading, sending, or modifying data in projects that your account can access.

You can stop collection of information by uninstalling the Application. You may also manage Google account permissions through your Google account settings and revoke Firedeck's access if you no longer want the Application to access Google/Firebase APIs.

The Service Provider does not retain your Firebase project data on Service Provider servers.

Local preferences stored by the Application may remain on your device until you delete the Application or clear the relevant app data. Third-party analytics, crash, and purchase providers may retain information according to their own privacy policies.

If you have contacted the Service Provider directly, the Service Provider may retain your contact information and correspondence for a reasonable period to respond to your request.

To request deletion of information you have directly provided to the Service Provider, contact gelatka.adam@gmail.com.

The Application is not intended for children under the age of 13. The Service Provider does not knowingly collect personally identifiable information from children under 13 years of age.

If the Service Provider becomes aware that a child under 13 has provided personal information directly to the Service Provider, that information will be deleted as soon as reasonably possible. If you are a parent or guardian and believe your child has provided personal information, please contact gelatka.adam@gmail.com.

The Service Provider cares about safeguarding your information. Firedeck is designed to access Google/Firebase APIs directly from your device using Google Sign-In, without a Service Provider backend, token vault, Admin SDK, or service accounts.

However, no method of electronic transmission or storage is 100% secure. You are responsible for keeping your device, Apple account, Google account, and Firebase project permissions secure.

This Privacy Policy may be updated from time to time. The Service Provider will notify users of changes by updating this page with the new Privacy Policy. You are advised to review this Privacy Policy regularly.

This Privacy Policy is effective as of 2026-05-21.

By using the Application, you consent to the processing of information as described in this Privacy Policy.

If you have questions about this Privacy Policy or Firedeck's privacy practices, contact the Service Provider at gelatka.adam@gmail.com.