This translation is provided for your convenience. In case of any discrepancy, the French version prevails.
Privacy Policy
Last updated: 9 June 2026
Introduction
Tidova ("we", "our" or "the app") is committed to protecting the privacy of its users. This privacy policy explains how we collect, use and protect your personal data when you use the Tidova mobile application.
1. Data collected
1.1 Data collected automatically
We automatically collect the following data when you use the app:
- Device identifier: A unique UUID generated on first launch and stored securely (Keychain on iOS, EncryptedSharedPreferences on Android)
- Location data: With your consent, your geographic position to find the nearest tide point
- Notification token: Token used to send push notifications (FCM for Android, APNs for iOS)
- Usage data: Anonymised usage statistics (sessions, places viewed, features used)
- Error logs: Crash reporting information to improve the stability of the app
1.2 Data collected via the stores
When you make an in-app purchase (Premium subscription), the following information is collected via the App Store or Google Play:
- Transaction identifier
- Purchase date
- Subscription type
- Subscription status
This data is used solely to validate your subscription and is not stored on our servers in an identifiable form.
1.3 Advertising-related data
The free version of Tidova displays ads through Google AdMob (Google Ireland Limited), our advertising provider. For this purpose, AdMob may collect and process the following data:
- Device advertising identifier: IDFA on iOS, Google Advertising ID (AAID) on Android
- IP address and technical device data (model, operating system, language)
- Ad interaction data: impressions, clicks, and conversion attribution (via SKAdNetwork on iOS)
- Approximate location data derived from the IP address
This data is collected and processed by Google as a controller for the delivery of ads. To learn more, see Google's privacy policy and the "How Google uses data" page.
Personalised advertising and consent: in the European Economic Area, the United Kingdom and Switzerland, a GDPR-compliant consent screen (Google UMP) is shown to you before any ad is served. You can accept or refuse personalised advertising; if you refuse, non-personalised ads (without profiling) are still displayed. On iOS, tracking authorisation (App Tracking Transparency) is also requested and governs the use of the advertising identifier.
Ad-free with Premium: users with an active Premium subscription receive no advertising; no advertising identifier is then used and the advertising SDK is not loaded.
2. Use of data
We use your personal data for the following purposes:
- Provide the service: Display tide times for your location
- Send notifications: Alert you before high and low tides (with your consent)
- Improve the app: Analyse usage statistics to improve features
- Manage subscriptions: Validate your Premium status and handle renewals
- Display ads: Deliver ads in the free version via Google AdMob, and fund the service
- Ensure security: Detect and prevent fraudulent activity
- Comply with legal obligations: Respond to requests from the competent authorities
3. Legal basis for processing
The processing of your personal data is based on the following legal grounds, in accordance with the GDPR:
- Consent: For collecting location data, sending push notifications and delivering personalised advertising
- Legitimate interest: For improving the app and for security
- Performance of a contract: For managing Premium subscriptions
- Legal obligation: For compliance with applicable laws and regulations
4. Data sharing
We do not sell your personal data to third parties. We may share your data only in the following cases:
- Service providers: With our processors who help us provide the service (TidesAtlas tide API, FCM/APNs notification service, Firebase analytics, Sentry crash reporting)
- Advertising provider: With Google AdMob (Google Ireland Limited) for delivering ads in the free version (see section 1.3)
- App stores: With Apple and Google for managing in-app purchases
- Competent authorities: Where required by law or to protect our rights
- Business transfer: In the event of a merger, acquisition or sale of assets
5. International data transfers
Some of your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure that such transfers are protected by standard contractual clauses compliant with the GDPR.
6. Data retention
We retain your personal data for as long as necessary for the purposes for which it was collected:
- Device identifier: As long as the app is installed on the device
- Notification token: 30 days after last use (automatic cleanup)
- Usage data: 12 months maximum
- Subscription data: As long as the subscription is active + 2 years after expiry
- Error logs: 30 days maximum
- Advertising data (AdMob): Retained by Google according to its own retention periods (see Google's privacy policy)
7. Your rights
In accordance with the GDPR, you have the following rights regarding your personal data:
- Right of access: Request a copy of your personal data
- Right to rectification: Request the correction of inaccurate data
- Right to erasure: Request the deletion of your data
- Right to restriction: Request the restriction of the processing of your data
- Right to portability: Request the transfer of your data to another service
- Right to object: Object to the processing of your data
- Right to withdraw consent: Withdraw your consent at any time
To exercise these rights, contact us at: contact@tidova.app. You also have the right to lodge a complaint with the CNIL (cnil.fr), the French data protection authority.
8. Data security
We implement appropriate security measures to protect your personal data against unauthorised access, alteration, disclosure or destruction. These measures include:
- Encryption of data in transit (HTTPS/TLS)
- Secure storage of the device UUID (Keychain iOS, EncryptedSharedPreferences Android)
- Strict server access control
- Anonymisation of analytics data
- Regular security audits
9. Changes to this policy
We may update this privacy policy from time to time. Changes will be published on this page with a revised update date. We will inform you of significant changes through an in-app notification.
10. Data controller and contact
The data controller is the publisher of the Tidova website and app, a natural person publishing on a non-professional basis (see the legal notice). For any question regarding this privacy policy, the exercise of your rights or our data practices, contact us at:
- Email: contact@tidova.app