Last updated: March 2025
1. Data Controller
The data controller is the operator of Calice (hereinafter "Controller"). To exercise your rights or for any privacy-related request, please contact us at support@caliceapp.com.
2. Data Collected
Calice collects the following data: - Account data: email address and, optionally, display name, required for registration and authentication. - Diary data: information about wines entered (name, producer, vintage, region, tasting notes, ratings, photos). This data is exclusively your property. - Technical data: access logs and device information automatically collected by the backend provider (Supabase) to ensure service security.
3. Purpose of Processing
Data is processed exclusively to: - Provide and maintain the Calice service. - Synchronise your diary across multiple devices. - Ensure account security. Your data is not sold, transferred or shared with third parties for commercial or advertising purposes.
4. Data Retention
Data is retained for the duration of your account. You may request permanent deletion of all data at any time from the Profile → Danger Zone → Delete Account section. Deletion is immediate and irreversible.
5. Storage and Security
Data is stored on Supabase servers (supabase.com), a GDPR-compliant cloud provider with data centres in Europe. Communications are encrypted in transit (TLS) and at rest (AES-256).
6. Your Rights (GDPR)
Under EU Regulation 2016/679 (GDPR) you have the right to: - Access your personal data. - Rectify inaccurate data. - Erase ("right to be forgotten") all data — exercisable directly from the app or by writing to support@caliceapp.com. - Data portability. - Object to processing. To exercise these rights, write to support@caliceapp.com.