← Bean Passport

Bean Passport

Privacy Policy

This Privacy Policy explains how Arvo Labs handles information in connection with the Bean Passport mobile application.

Effective date: 19 June 2026 · Last updated: 21 June 2026


We designed Bean Passport to be local-first: your coffee journal is stored on your device, not on our servers. This Policy describes what information the App handles, what may be sent to third parties when you use certain features, and your choices.

1. Who we are

Data controller: Arvo Labs · Contact: hello@arvolabs.com.au

If you have questions or privacy requests, contact us at the email above.

2. Scope

This Policy applies to the Bean Passport App. It does not apply to third-party websites or services linked from the App, including Apple, Google, map providers, or AI providers, which have their own privacy policies.

3. Summary

TopicOur approach
User accountsWe do not require sign-up or operate Bean Passport user accounts
Coffee logs, photos, notesStored locally on your device
Cloud backupOnly if you use your device or platform backup services
Scan a Cup photosSent to Google Gemini for drink recognition; not stored on our servers
Analytics / ad trackingWe do not use analytics or advertising trackers in the App
Selling personal informationWe do not sell your personal information
PurchasesHandled by Apple or Google; we do not receive your payment card details

4. Information the App stores on your device

When you use the App, the following information may be stored locally on your device:

4.1 Coffee logs: date and time of each cup; drink method / type; optional café name; price and currency; optional rating and notes; optional photo; optional location coordinates and place label; optional bean origin code.

4.2 App preferences: currency and reference cup price; caffeine limit and default drink; whether to pin location when logging; reminder settings (on/off, time); optional passport profile name, photo, and cosmetic ID; Patron plan status; first launch date and in-app prompt timing.

This information is used to provide App functionality. We do not upload this data to Arvo Labs servers during normal use of the App.

5. Information processed when you use certain features

Some features involve limited processing outside your device:

5.1 Location. If you enable location when logging, the App may access your device's location to attach coordinates and a place label to a log and to show pins on your passport map. Location is stored locally with the log unless you delete it. You can disable "Pin location when logging" in App settings and revoke location permission in device settings.

5.2 Photos and camera. If you attach a photo to a log or your passport profile, the App accesses your camera or photo library and saves the image locally on your device. If you use Scan a Cup, the photo is also sent to Google Gemini for AI drink recognition (see 5.6 below).

5.3 Local notifications. If you enable reminders, the App schedules notifications on your device. These reminders are generated locally and do not require our servers or push notification services.

5.4 Café search and Discover. When you search for a café or use the Discover tab, your approximate location may be sent to Google Places API to return nearby café names, locations, and ratings. We do not store your search queries or location history on our servers.

5.5 Passport map tiles. The passport map may load map tiles from OpenStreetMap contributors. Loading tiles may reveal your IP address and general map area to the tile provider and your network provider.

5.6 AI features (Google Gemini). The App uses Google Gemini for two features:

If AI generation fails or is unavailable, the App falls back to locally generated content.

5.7 Get Directions. When you tap Get Directions in the Discover tab, the selected café's name and location coordinates are passed to your chosen navigation app — Apple Maps, Google Maps, or Waze. Those apps handle the data under their own privacy policies. We do not transmit this information to our own servers.

5.8 Fonts. The App may download font files from Google Fonts or similar services to display typography. This may involve your IP address being processed by the font provider.

6. Purchases

If you buy Monthly Patron or Lifetime Patron, the transaction is processed by Apple App Store or Google Play. We receive purchase confirmation through the store's in-app purchase system so the App can unlock Patron status on your device.

We do not receive your full payment card number. Payment information is handled by Apple or Google under their privacy policies.

7. What we do not collect

In normal operation of the App, we do not:

If you email us for support, we will receive the information you choose to send.

8. Why we process information

We process information to:

Our lawful bases, where applicable, include performing our contract with you (providing the App), your consent (for optional permissions and features), and our legitimate interests in operating and improving the App.

9. Sharing of information

We do not sell your personal information.

We may share limited information only in these circumstances:

Because your journal stays on your device, there is no central Arvo Labs database of your coffee logs to share.

10. International transfers

If you use features that rely on third parties such as Google or Apple, your information may be processed in countries outside Australia, including the United States. Those providers handle information under their own privacy policies and transfer mechanisms.

11. Data retention

Information stored on your device remains there until you edit or delete it, uninstall the App, or erase app data.

Support emails are kept only as long as needed to respond and maintain records, unless a longer period is required by law.

Purchase records are retained by Apple or Google according to their policies.

12. Security

We take reasonable steps to protect information within our control. Because your coffee data is stored locally, your device security matters: use a passcode/biometric lock, keep your operating system updated, and be cautious with backups and sharing.

No method of storage or transmission is completely secure.

13. Your choices and rights

13.1 In the App. You can edit or delete individual coffee logs; turn off location pinning; disable reminders; revoke camera, photo, location, and notification permissions in device settings; and uninstall the App to remove locally stored App data from the device.

13.2 Legal rights. Depending on where you live, you may have rights to access, correct, delete, or restrict processing of personal information, or to complain to a regulator. Because we do not hold your coffee journal on our servers, we may not be able to access or delete device-stored data on your behalf. You can usually exercise those rights directly on your device.

Australia: You may contact us with privacy questions or complaints. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

EEA / UK: You may have additional rights under GDPR/UK GDPR. Contact us to exercise them.

California: We do not sell personal information. We do not share personal information for cross-context behavioural advertising as defined under California law.

To make a privacy request, email hello@arvolabs.com.au with the subject line "Bean Passport Privacy Request".

14. Children's privacy

The App is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, contact us and we will take appropriate steps.

15. Changes to this Policy

We may update this Privacy Policy from time to time. We will update the "Last updated" date above and, where appropriate, provide notice in the App or on our website.

Continued use of the App after an update means you accept the revised Policy.

16. Contact

Email: hello@arvolabs.com.au