Privacy Policy

Welcome to Fickle, a voice-first idea capture app that helps you capture your thoughts before they're gone. This Privacy Policy explains how AR Capital Innovations Pty Ltd ("we," "us," or "our") collects, uses, stores, and protects your information when you use the Fickle mobile application.

"Fickle" is a trademark of AR Capital Innovations Pty Ltd.

Account Information

When you create an account, we collect:

• Email address (for authentication)
• Unique account identifier (UUID) - a random string used to identify your account internally
• Timezone (for scheduling notifications)
• Notification preferences

Capture Data

When you use Fickle, we collect:

• Voice transcriptions (text converted from your voice recordings)
• Raw transcripts (original voice input before processing)
• Text captures (manually typed notes)
• Categories you assign to captures (idea, task, reminder, or custom)
• Capture status (active or done)
• Reminder times and alarm settings
• Edit history (previous versions of your captures)
• Timestamps (when captures are created, edited, or completed)

Custom Categories

If you create custom categories, we store:

• Category name
• Category color (for display purposes)

What We Don't Collect

• Audio recordings (voice is processed on-device and only text is stored)
• Location data
• Device identifiers for tracking
• Photos or images (photo library permission is requested by a dependency but not used)
• Financial information
• Contacts or address book
• Behavioural analytics or usage tracking

We use your information to:

• Authenticate your account via email verification or social sign-in
• Store and sync your captures across devices
• Send reminder notifications at times you specify
• Send daily digest notifications (if enabled)
• Provide customer support
• Send critical service notifications (e.g., security issues)

Microphone Permission

Fickle requests microphone access for voice capture functionality:

• Purpose: Convert your spoken words to text for capture
• Processing: Voice is processed on-device using your phone's built-in speech recognition
• Storage: Only the transcribed text is stored - audio recordings are never saved or transmitted
• Privacy: Your voice data never leaves your device

Speech Recognition Permission

On iOS, we request speech recognition permission:

• Purpose: Enable on-device speech-to-text conversion
• Processing: All speech recognition happens locally on your device
• Privacy: No audio is sent to external servers

Photo Library Permission (iOS)

iOS may request photo library access due to a third-party dependency:

• Note: Fickle does not use or access your photos
• Reason: This permission is requested by a dependency in our app framework
• Your choice: You can safely deny this permission without affecting app functionality

Notification Permission

Fickle requests notification permission for:

• Daily digest notifications (7am and 7pm reminders of your active captures)
• Time-specific reminders you set for individual captures
• Alarm notifications for urgent reminders

• Storage Provider: Supabase (secure cloud database)
• Server Location: Singapore (ap-southeast-1 region)
• Encryption: All data transmission is encrypted using industry-standard protocols
• Local Storage: We use secure storage to keep you logged in on your device
• Access Control: Your data is private and only accessible by you

We use the following third-party services to operate Fickle:

• Supabase: Database and authentication services
• Apple Sign In: Optional authentication method
• Google Sign In: Optional authentication method
• Expo/React Native: Mobile app development framework
• Apple App Store & Google Play Store: App distribution platforms

Note: Apple and Google may collect their own analytics about app downloads and usage through their respective app stores. This data collection is governed by their privacy policies, not ours.

Fickle does not track you. We do not:

• Link your data with third-party data for advertising
• Share data with data brokers
• Use advertising identifiers (IDFA)
• Display targeted advertisements
• Collect analytics beyond what is necessary to operate the service

We do not share, sell, rent, or trade your personal information with third parties for marketing purposes. Your data is only used to provide the Fickle service as described in this policy.

We will only send you notifications for:

• Account verification and authentication
• Reminder notifications you have set
• Daily digest notifications (if enabled)
• Critical service notifications (major outages, security issues)
• Important changes to our Terms of Service or Privacy Policy

We do not send marketing emails or promotional content. You are not subscribed to any marketing lists.

• Capture Data: Retained until you delete it or request account deletion
• Account Data: Retained until you request account deletion
• Backup Data: Deleted account information may remain in backups for up to 90 days before permanent deletion

In accordance with the Australian Privacy Act 1988, if we experience a data breach that is likely to result in serious harm, we will:

• Notify affected users via email within 72 hours of becoming aware of the breach
• Notify the Office of the Australian Information Commissioner (OAIC)
• Provide details about the breach and steps you can take to protect yourself

Account Deletion

You have the right to delete your account and all associated data at any time:

• In-App: You can request account deletion directly within the Fickle app settings
• Via Email: Contact us at contact@arcapital.io from the email address associated with your account with "Account Deletion" in the subject line

We will permanently delete all your information, including captures and account data. Deletion requests are processed within 30 days. Data may remain in backups for up to 90 days before permanent deletion.

Data Access & Correction

• View and edit your captures within the app
• Export your data by contacting us
• Contact us for any data access requests

Fickle is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

Fickle is available worldwide. We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 and applicable data protection laws. Data is stored in Singapore (ap-southeast-1 region).

We implement appropriate technical and organisational security measures:

• Secure authentication via email verification and social sign-in
• Encrypted data transmission (HTTPS/TLS)
• Regular security updates
• Access controls and authentication systems
• Secure cloud infrastructure via Supabase
• On-device voice processing (audio never transmitted)

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new policy on our website
• Updating the effective date
• In-app notifications for significant changes
• Email notifications for significant changes

If you have questions about this Privacy Policy or our data practices, please contact:

Under Australian Privacy Law, we collect and process your information based on:

• Your consent when using the Fickle app
• The necessity to provide our idea capture service
• Compliance with legal obligations under the Privacy Act 1988