Privacy Policy

Effective date: May 19, 2026 · Last updated: May 24, 2026

Voca-Voca ("we", "our", "Voca-Voca") is a vocabulary-learning service offered as a Chrome extension, an iOS app, and a website at voca-voca.app. You save words you find while reading, look them up, and practice them with spaced repetition. This policy describes what we collect, why, who we share it with, and what you can do about it.

We do not sell your data, we do not run ads in Voca-Voca, and we do not build behavioral profiles for advertisers.

1. Data we collect

Category	What it is	Why we have it
Account	Your email address, display name, and an account ID from Firebase Authentication when you sign in with Google or Apple.	To identify your account and sync your words across devices.
Vocabulary	The words you save, their definitions, the sentence where you found each word, and the page address it came from.	To build your personal collection and let you practice it.
Learning state	How well you know each word (interval, ease, review history) and which folders you put words in.	To schedule reviews at the right time using spaced repetition.
Practice stats	Total sessions, cards reviewed, time practiced, and the date of your last session.	To show you progress over time.
Engagement signals	For each day, the minutes you were active in the app, the number of words you saved, and the number of reviews you completed.	To decide when to suggest upgrading to Premium, and to improve the practice algorithm. See "Automated decisions" below.
Settings	Your preferences (theme, practice length, daily goal, chosen pronunciation voice, folder defaults, reminder schedule).	To personalize the app.
Subscription	Whether you have an active Premium subscription, the plan you bought, the renewal date, and which store charged you (Apple or Stripe).	To unlock paid features on every device you sign into.
Waitlist (iOS launch)	If you submit the waitlist form on voca-voca.app, we store the email you typed, the platform you submitted from (iOS, Android, desktop), and where in the site you signed up.	To email you once when the iOS app is available. We delete these records 90 days after the iOS app launches.
Product analytics	Anonymous event records covering how the app is used. Described in detail in Section 5.	To find bugs, understand which features matter, and decide what to build next.

What we do not collect

We do not read or store the content of web pages you visit. The Chrome extension only reads text when you select a word and ask to look it up.
We do not record your browsing history.
We do not collect card or bank details — payment information goes straight to Apple or Stripe (see Section 6).
We do not collect precise location. Our analytics provider derives an approximate country from your IP address; that is the most location information we ever see.
We do not use advertising cookies, ad-network pixels, or cross-site tracking.
We do not put the words you save into analytics events. Analytics about a saved word contain only its length, language, part of speech, and the bare domain it came from (for example "nytimes.com") — never the word itself or the full URL.

What Apple briefly shares with us

When you sign in with Apple for the first time, Apple sends us your name and email. We use the email and we discard the name. If you choose "Hide My Email", Apple sends us a forwarding address ending in @privaterelay.appleid.com; we treat it exactly like any other email.

2. How we use your data

Running the service — looking up definitions, saving and syncing your words, running practice sessions, generating pronunciation audio, and showing your progress.
Managing your subscription — checking that your Premium entitlement is current, processing renewals, restoring purchases on a new device.
Improving the product — reading anonymous event data to find bugs, measure changes we ship, and prioritize features.
Automated decisions — once a day, a routine on our server reads your engagement signals (see Section 1) and decides whether to surface the upgrade prompt. The decision affects only when you see the prompt; it does not change what you can do as a free user. You can stop this from happening to you by subscribing, or by signing out and using the app in local-only mode.
Security and abuse prevention — spotting and stopping fraud, abuse, and violations of our Terms of Service.
Operational email — sending things like receipts, account-deletion confirmations, security notices, or the one-time "iOS app is live" email if you joined the waitlist. We do not send marketing email.

3. How we store and protect your data

On your device

The Chrome extension keeps your words on your computer using the browser's storage. The iOS app keeps your words on your phone. If you use the app without signing in, your data never leaves the device.

In the cloud (only if you sign in)

When you sign in, your words and progress sync to a database provided by Google Firebase. The connection uses TLS, and Google encrypts the stored data with its default at-rest encryption. Per-user security rules prevent any account from reading or writing another account's data.

Pronunciation audio for Premium voices is generated by Google Cloud Text-to-Speech. Generated audio is saved on Google Cloud storage that we control. On iOS, the audio is also saved on your device so it continues to play when your phone has a weak or no internet connection.

Who can access your account data

Only Voca-Voca's developer has administrative access to the database. That access is used in four specific situations:

You ask us for support and we need to look at your data to help you.
We are diagnosing a service-wide outage or data-integrity problem.
We have credible evidence of fraud or abuse, against you or against other users.
A court, subpoena, or other binding legal process compels us. We will tell you within 30 days unless the law forbids it.

The third-party services in Section 4 each receive only what they need to do their job, and process it under their own published terms.

4. Third-party services

Service	What we send	Why	Their privacy policy
Google Firebase (Authentication, Firestore)	Your account credentials (via Apple or Google sign-in), your vocabulary, learning state, folders, settings, engagement signals.	Authentication and cloud sync.	Firebase
Google Cloud Text-to-Speech & Cloud Storage	The word you want to hear and the voice you chose. The audio is saved on our server and, on iOS, on your device — so it plays back quickly later and continues to play when your phone has a weak or no internet connection.	Premium pronunciation in American, British, Australian, or Indian English.	Google Cloud
PostHog	Anonymous event records described in Section 5. Your Firebase account ID once you sign in. Your email address as part of your PostHog profile, so we can answer support tickets you send by email.	Product analytics so we can fix bugs and prioritize features.	PostHog
RevenueCat	Your Firebase account ID and the subscription record reported by Apple or Stripe (active, expired, in trial, plan, transaction ID).	Keeping your subscription state consistent across every device you sign into.	RevenueCat
Apple (StoreKit)	The purchase transaction. Apple handles payment details; we do not see them.	Processing iOS subscriptions.	Apple
Stripe	Payment details (collected by Stripe directly — not by us), your email, and your Firebase account ID.	Processing web subscriptions.	Stripe
Free Dictionary API (dictionaryapi.dev)	The word you looked up.	Definitions, phonetics, and example sentences.	dictionaryapi.dev
Wiktionary	The word you looked up.	Additional definitions and etymology.	Wikimedia
Datamuse	The word you looked up.	Related words and synonyms.	Datamuse
Google Translate	The word you want to hear (free-tier pronunciation only).	Pronunciation audio for users without a Premium voice selected.	Google
Google Fonts	Your IP address and browser user-agent when you visit voca-voca.app, so Google can serve our fonts.	Displaying the marketing site's typography.	Google
Apple Smart App Banner	The fact that an iOS Safari user visited voca-voca.app (Apple records the visit when iOS renders the App Store banner at the top of the page).	Showing the "Open in App Store" banner.	Apple

That is the complete list. We do not embed advertising networks, behavioral-targeting scripts, or social-network trackers.

5. Product analytics

We use PostHog to record anonymous events about how Voca-Voca is used. The goal is to operate and improve the service: spot bugs, see which features matter, measure whether something we shipped helped.

In the apps

Lifecycle: install, update, sign-in, sign-out, app opened, app backgrounded.
Word activity: a word was looked up, a word was saved, a milestone was reached, a free-plan limit was hit.
Practice: practice session started, practice session completed (with how many cards, how long, what your accuracy was), audio played.
Subscription funnel: upgrade prompt shown, upgrade clicked, purchase succeeded, purchase failed.
Hardware (iOS only): when a Bluetooth controller (gamepad) connects, the controller's product name.
Anonymous metadata about saved words: word length, language, part of speech, source domain (for example "nytimes.com"). Never the word itself, never the sentence, never the full URL.
Device context: PostHog records device type, operating system, browser (where applicable), language, and the approximate country it infers from your IP address.

Events are tied to a random anonymous identifier before you sign in, and to your Firebase account ID afterward. When you sign in for the first time, we tell PostHog to merge the two so we can see how pre-sign-in behavior translated into sign-up. Your email is attached to your PostHog profile so we can match a support email to your event history.

On voca-voca.app (the website)

If you accept cookies on the website, PostHog records page views, button clicks, scroll depth, your country (from IP), and which UTM parameters or referring site brought you to us. If you submit the iOS waitlist form, we record that you opened it and whether the submission succeeded. If you uninstall the Chrome extension and land on our "uninstalled" page, we record that visit and tie it to the account that owned the extension (so we can see "this signed-in user uninstalled" rather than counting it as anonymous).

The cookie banner defaults to opted out — PostHog does not record anything from the website until you click OK. Browser tools like uBlock Origin or Brave Shields will block PostHog from the website regardless.

Your choices

Sign out of the iOS app or Chrome extension and analytics stop being tied to your account.
Decline the cookie banner on the website and PostHog does not record anything on the website.
Email us at support@voca-voca.app and we will delete your PostHog records within 30 days.

Analytics records are kept for 12 months and then automatically deleted by PostHog.

We use analytics only to run and improve Voca-Voca. We do not sell, license, share with data brokers, or combine analytics with data bought from third parties.

6. Subscriptions and payments

Premium subscriptions are processed by:

Apple on iOS, through the App Store.
Stripe on the web.

In both cases, the payment details go straight to the processor. We never see your card or bank information. We receive only what we need to know your subscription is active: a transaction identifier, the plan you bought, the renewal date, and the current status (active, in trial, expired, or past due).

7. Google API Services User Data Policy

Voca-Voca uses Google Sign-In to authenticate accounts. Our use and transfer of information received from Google APIs follows the Google API Services User Data Policy, including the Limited Use requirements:

We use Google user data (email, display name, account ID) only to provide and improve sign-in and cloud sync.
We do not transfer Google user data to anyone else except to provide those features, with your consent, for security, or to comply with the law.
We do not use Google user data for advertising.
We do not let humans read your Google user data unless you give explicit consent, security requires it, or the law requires it.

8. Data sharing and disclosure

We do not sell, rent, lease, or trade your personal data.
We do not share personal data for anyone else's marketing or advertising.
We do not share personal data with data brokers.
We disclose data only when (a) a court order, subpoena, or law-enforcement request compels us; or (b) we receive a credible report of imminent harm. We will notify you within 30 days unless legally prohibited.
If Voca-Voca is sold or acquired, your data transfers to the buyer. We will email you 30 days before the transfer and you can delete your account first.

9. Data retention

On your device: data stays on your device until you uninstall.
In the cloud: data stays in sync until you delete it or close your account.
Soft-deleted items: when you delete a word or a folder, it is hidden right away and permanently removed from our database 30 days later. (The 30-day window lets sync reconcile across devices.)
Analytics events: PostHog automatically deletes after 12 months.
Waitlist signups: deleted 90 days after the iOS app launches.
Pronunciation audio cache: the synthesized audio for a given word and voice can stay in our shared cache indefinitely (it does not contain any personal data — only the audio of a word).

10. Your rights and choices

You have these rights wherever you live:

See your data. Open the app and you can see everything you have saved. Email us for a packaged copy.
Correct your data. Edit any word, folder, or setting in the app.
Export. The Chrome extension exports your full collection to CSV, an Anki-compatible file, or a JSON backup at any time. iOS will offer the same in an upcoming release.
Delete your account. In the iOS app go to Settings → Account → Delete Account. In the Chrome extension, open the account panel and tap Delete Account. We will ask you to confirm twice. The moment you confirm, your words, folders, learning state, practice history, engagement records, profile, and Firebase Authentication account are deleted from our database. Your PostHog analytics records are deleted within 30 days. The deletion cannot be undone.
Use the app without an account. Both the Chrome extension and the iOS app work without signing in. In that mode your data stays on your device and never reaches our cloud.

For users in the European Economic Area, United Kingdom, and Switzerland (GDPR / UK GDPR)

If you are in the EEA, UK, or Switzerland, here is the lawful basis we use for each purpose:

What we do	Lawful basis (Article 6 GDPR)
Store and sync your vocabulary, run practice sessions, manage your subscription	Performance of a contract (Art. 6(1)(b))
Improve the product (analytics, paywall timing, security)	Legitimate interests (Art. 6(1)(f)) — we have weighed this against your privacy and concluded it is proportionate because the data is anonymous in aggregate, you can opt out by signing out, and we do not sell or share it
Operational email (receipts, security notices, the iOS-launch waitlist email)	Performance of a contract (Art. 6(1)(b)) for receipts; legitimate interests for waitlist email
Respond to law-enforcement requests	Compliance with a legal obligation (Art. 6(1)(c))

Under Articles 15–22 GDPR you have the right to access, rectify, erase, restrict, and object to the processing of your personal data, and the right to data portability. You also have the right to lodge a complaint with your local supervisory authority. To exercise any of these rights, email support@voca-voca.app; we respond within 30 days.

For users in California (CCPA / CPRA)

If you are a California resident, you have the right to:

Know what categories of personal information we collect, where it comes from, what we use it for, and who we share it with — all of which are in this policy.
Request a copy of your personal information.
Request deletion of your personal information.
Correct inaccurate personal information.
Opt out of any "sale" or "sharing" for cross-context behavioral advertising. We do not sell or share your personal information as those terms are defined under the CPRA.
Not be discriminated against for exercising any of these rights.

Categories of personal information we collect, mapped to the CPRA's enumerated categories: identifiers (email, account ID), customer records (display name), commercial information (subscription state, transaction IDs), internet activity (the bare domain of pages you save words from, in-app event records), geolocation data (the approximate country PostHog derives from your IP), professional or employment information, biometric information, sensitive personal information, sensory data, genetic data, education information, or inferences — none.

To submit a CCPA request, email support@voca-voca.app. We may need to verify your identity before fulfilling it.

For users elsewhere

If your local law grants additional privacy rights (for example Brazil's LGPD, Canada's PIPEDA, or Australia's Privacy Act), you can exercise those rights by emailing support@voca-voca.app.

11. Browser permissions

The Chrome extension asks for these permissions:

Permission	What we use it for
`storage`	Save your vocabulary, learning progress, and preferences in the browser.
`sidePanel`	Display the extension's interface in Chrome's side panel.
`contextMenus`	Add a "Look up" option to the right-click menu.
`identity`	Enable Sign in with Apple and Sign in with Google.
Content script (`<all_urls>`)	Read the text you select on a page when you ask for a lookup, plus the sentence around the selection and the page title. Nothing is transmitted until you confirm the lookup. We do not read pages you do not interact with.

12. Children's privacy

Voca-Voca is not directed at children. We do not request age information. We do not knowingly collect personal information from anyone under 13 in the United States or under 16 in the EEA, UK, or Switzerland. If you are a parent or guardian and believe your child has provided us with personal data, email support@voca-voca.app and we will delete it within 30 days.

13. International data transfers

Voca-Voca operates from the United States. Our cloud infrastructure (Google Firebase, Google Cloud, PostHog, RevenueCat) is hosted in the United States and other countries. If you use Voca-Voca from outside the United States, your data is transferred to and processed in the United States. Each of the third-party services in Section 4 maintains Standard Contractual Clauses (SCCs) or an equivalent safeguard for international transfers under their own data-processing agreements, which we have accepted.

14. Changes to this policy

When we make material changes to this policy, we will:

Update the "Last updated" date at the top of this page.
Show a notice inside the app the next time you open it.
Email you, if the change is material and you have an account.
Get renewed consent before the change takes effect, where local law requires it.

Your continued use of Voca-Voca after a change takes effect means you accept the updated policy.

15. Contact

For questions, concerns, or requests about this policy or your personal data:

Email: support@voca-voca.app

We respond within 30 days.