Legal

Privacy Policy

Last updated 1 July 2026

This Privacy Policy explains how Miggy (“the App”, “we”, “us”) collects, uses, and protects your information. The App is an independent project operated by Zhiliang Chen, based in Singapore. By using the App, you agree to the practices described here.

1. Who we are

Miggy is developed and operated by Zhiliang Chen. For any privacy questions or requests, contact us at [email protected].

2. Information we collect

a. Account information (via Sign in with Apple)

When you sign in, Apple provides us with your name and email address. You may choose to hide your email, in which case Apple supplies a private relay address instead. We do not receive your Apple ID password or any other Apple account credentials.

b. Content you create

Content you create in the App is stored in your own iCloud account via Apple’s CloudKit. This data sits within Apple’s infrastructure under your control. We do not store this content on our own servers and cannot access it directly. Apple’s handling of iCloud data is governed by Apple’s Privacy Policy.

c. Analytics and usage data

We use third-party analytics to understand how the App is used and to improve it. This includes:

  • Firebase (Google): app events, screen views, session data, device type, OS version, approximate region, and crash diagnostics.
  • PostHog: product analytics events, feature usage, and session behaviour, hosted in [PostHog hosting region — EU or US].

This data is collected for our legitimate interest in improving the App and is generally pseudonymous (tied to a random identifier rather than your name).

d. Subscriptions

Miggy offers an auto-renewing subscription to unlock its full features. Payments are processed entirely by Apple through the App Store, and we never receive or store your payment card details. We use RevenueCat to manage and validate subscriptions; RevenueCat receives a randomly generated app user identifier, your purchase and subscription history, and basic device information. RevenueCat’s handling of your data is governed by RevenueCat’s Privacy Policy, and Apple’s by Apple’s Privacy Policy.

3. App Tracking Transparency

We do not track you across other companies’ apps or websites, and we do not use the advertising identifier (IDFA). Our analytics measure only your activity within Miggy.

4. How we use your information

  • To provide and operate the App’s features.
  • To authenticate you via Sign in with Apple.
  • To analyse usage, diagnose crashes, and improve performance and features.
  • To respond to your support requests.

We do not sell your personal data, and we do not use it for third-party advertising.

5. Legal bases for processing (EU/UK – GDPR)

  • Performance of a contract: to provide the App’s core functionality after you sign in.
  • Legitimate interests: to analyse usage and improve the App, balanced against your rights.
  • Consent: where required (e.g. optional analytics), which you may withdraw at any time.

6. Data sharing

We share data only with the service providers needed to run the App:

  • Apple (Sign in with Apple, iCloud/CloudKit, App Store in-app purchases)
  • RevenueCat (subscription management and validation)
  • Google Firebase (analytics, crash reporting)
  • PostHog (product analytics)

These providers process data on our behalf or as independent controllers under their own policies. We do not share your data with anyone else except where required by law.

7. International transfers

Your data may be processed outside your country, including in the United States, depending on the provider and the hosting region selected. Where required, we rely on appropriate safeguards such as the EU Standard Contractual Clauses.

8. Data retention

  • Account data: retained while your account is active, and deleted on request or shortly after account deletion.
  • Analytics data: retained according to Firebase and PostHog default retention settings.
  • iCloud content: controlled by you and removable at any time from your device or iCloud.

9. Your rights

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data (“right to erasure”).
  • Object to or restrict certain processing.
  • Data portability.
  • Withdraw consent at any time.

EU/UK (GDPR) and Singapore (PDPA) residents have access and correction rights; California (CCPA) residents have the right to know, delete, and opt out of “sale” (note: we do not sell data). To exercise any right, email [email protected]. You may also lodge a complaint with your local data protection authority (in Singapore, the PDPC).

10. Children’s privacy

The App is not directed at children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect data from children. If you believe a child has provided us data, contact us and we will delete it.

11. Security

We rely on Apple, Google, and PostHog’s security infrastructure, and we limit the data we collect. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

12. Changes to this policy

We may update this policy from time to time. Material changes will be reflected by updating the “Last updated” date and, where appropriate, an in-app notice.

13. Contact

Email: [email protected]