Bean Passport
This Privacy Policy explains how Arvo Labs handles information in connection with the Bean Passport mobile application.
We designed Bean Passport to be local-first: your coffee journal is stored on your device, not on our servers. This Policy describes what information the App handles, what may be sent to third parties when you use certain features, and your choices.
Data controller: Arvo Labs · Contact: hello@arvolabs.com.au
If you have questions or privacy requests, contact us at the email above.
This Policy applies to the Bean Passport App. It does not apply to third-party websites or services linked from the App, including Apple, Google, map providers, or AI providers, which have their own privacy policies.
| Topic | Our approach |
|---|---|
| User accounts | We do not require sign-up or operate Bean Passport user accounts |
| Coffee logs, photos, notes | Stored locally on your device |
| Cloud backup | Only if you use your device or platform backup services |
| Scan a Cup photos | Sent to Google Gemini for drink recognition; not stored on our servers |
| Analytics / ad tracking | We do not use analytics or advertising trackers in the App |
| Selling personal information | We do not sell your personal information |
| Purchases | Handled by Apple or Google; we do not receive your payment card details |
When you use the App, the following information may be stored locally on your device:
4.1 Coffee logs: date and time of each cup; drink method / type; optional café name; price and currency; optional rating and notes; optional photo; optional location coordinates and place label; optional bean origin code.
4.2 App preferences: currency and reference cup price; caffeine limit and default drink; whether to pin location when logging; reminder settings (on/off, time); optional passport profile name, photo, and cosmetic ID; Patron plan status; first launch date and in-app prompt timing.
This information is used to provide App functionality. We do not upload this data to Arvo Labs servers during normal use of the App.
Some features involve limited processing outside your device:
5.1 Location. If you enable location when logging, the App may access your device's location to attach coordinates and a place label to a log and to show pins on your passport map. Location is stored locally with the log unless you delete it. You can disable "Pin location when logging" in App settings and revoke location permission in device settings.
5.2 Photos and camera. If you attach a photo to a log or your passport profile, the App accesses your camera or photo library and saves the image locally on your device. If you use Scan a Cup, the photo is also sent to Google Gemini for AI drink recognition (see 5.6 below).
5.3 Local notifications. If you enable reminders, the App schedules notifications on your device. These reminders are generated locally and do not require our servers or push notification services.
5.4 Café search and Discover. When you search for a café or use the Discover tab, your approximate location may be sent to Google Places API to return nearby café names, locations, and ratings. We do not store your search queries or location history on our servers.
5.5 Passport map tiles. The passport map may load map tiles from OpenStreetMap contributors. Loading tiles may reveal your IP address and general map area to the tile provider and your network provider.
5.6 AI features (Google Gemini). The App uses Google Gemini for two features:
If AI generation fails or is unavailable, the App falls back to locally generated content.
5.7 Get Directions. When you tap Get Directions in the Discover tab, the selected café's name and location coordinates are passed to your chosen navigation app — Apple Maps, Google Maps, or Waze. Those apps handle the data under their own privacy policies. We do not transmit this information to our own servers.
5.8 Fonts. The App may download font files from Google Fonts or similar services to display typography. This may involve your IP address being processed by the font provider.
If you buy Monthly Patron or Lifetime Patron, the transaction is processed by Apple App Store or Google Play. We receive purchase confirmation through the store's in-app purchase system so the App can unlock Patron status on your device.
We do not receive your full payment card number. Payment information is handled by Apple or Google under their privacy policies.
In normal operation of the App, we do not:
If you email us for support, we will receive the information you choose to send.
We process information to:
Our lawful bases, where applicable, include performing our contract with you (providing the App), your consent (for optional permissions and features), and our legitimate interests in operating and improving the App.
We do not sell your personal information.
We may share limited information only in these circumstances:
Because your journal stays on your device, there is no central Arvo Labs database of your coffee logs to share.
If you use features that rely on third parties such as Google or Apple, your information may be processed in countries outside Australia, including the United States. Those providers handle information under their own privacy policies and transfer mechanisms.
Information stored on your device remains there until you edit or delete it, uninstall the App, or erase app data.
Support emails are kept only as long as needed to respond and maintain records, unless a longer period is required by law.
Purchase records are retained by Apple or Google according to their policies.
We take reasonable steps to protect information within our control. Because your coffee data is stored locally, your device security matters: use a passcode/biometric lock, keep your operating system updated, and be cautious with backups and sharing.
No method of storage or transmission is completely secure.
13.1 In the App. You can edit or delete individual coffee logs; turn off location pinning; disable reminders; revoke camera, photo, location, and notification permissions in device settings; and uninstall the App to remove locally stored App data from the device.
13.2 Legal rights. Depending on where you live, you may have rights to access, correct, delete, or restrict processing of personal information, or to complain to a regulator. Because we do not hold your coffee journal on our servers, we may not be able to access or delete device-stored data on your behalf. You can usually exercise those rights directly on your device.
Australia: You may contact us with privacy questions or complaints. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
EEA / UK: You may have additional rights under GDPR/UK GDPR. Contact us to exercise them.
California: We do not sell personal information. We do not share personal information for cross-context behavioural advertising as defined under California law.
To make a privacy request, email hello@arvolabs.com.au with the subject line "Bean Passport Privacy Request".
The App is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, contact us and we will take appropriate steps.
We may update this Privacy Policy from time to time. We will update the "Last updated" date above and, where appropriate, provide notice in the App or on our website.
Continued use of the App after an update means you accept the revised Policy.
Email: hello@arvolabs.com.au