1. Who we are
Recora is a personal record-keeping mobile application available on Android (Google Play) and iOS (App Store). The app is developed and maintained by an independent developer.
When this policy says "we", "us", or "our", it refers to the developer of Recora. When it says "you", it refers to you as a user of the app.
2. What data we collect
a) Account information
When you sign in with your Google account, we receive your name, email address, and profile picture from Google. This information is used solely to identify your session within the app and associate your data with your Google Drive storage. We do not store this information on any server we control.
b) App data you create
All data you create inside Recora — including collections, field definitions, records, attachments, version history, dashboards, and settings — is created by you and belongs entirely to you. This data is saved exclusively to your personal Google Drive using a private, app-restricted space (see Section 3).
c) Device permissions data
Certain features require access to device capabilities. Data accessed through these permissions is used only to fulfil the specific feature (e.g., attaching a photo to a record) and is never transmitted to us. See Section 5 for a full list of permissions.
d) Diagnostic data (opt-in only)
Crash reporting and telemetry are disabled by default. You can opt in to anonymous crash reporting through the in-app settings. If enabled, only technical crash context (stack traces, OS version, device type) is shared — no record content or personal identifiers are included.
3. How your data is stored
Your data is stored in a private, hidden section of your own Google Drive called appDataFolder. This folder is completely invisible in the Google Drive web and mobile apps — you cannot browse, modify, or accidentally delete it through Drive. Only Recora can access it.
Google Drive appDataFolder
The appDataFolder
is a
special Google-provided storage space reserved exclusively for Recora. It is technically
separate
from your normal Drive files and:
- ✓ Not visible in Google Drive web, desktop, or mobile apps
- ✓ Cannot be opened, read, or edited by other apps or users
- ✓ Automatically deleted if you uninstall Recora and revoke app access
- ✓ Subject to your Google account's own security and encryption
Local (on-device) storage
Recora also uses your device's local storage to cache session data (authentication tokens, loaded collections) for performance. This data is stored in the app's sandboxed storage, inaccessible to other apps, and is cleared when you sign out.
No Recora servers
Recora does not operate any backend servers or databases. We have no access to your data at any time. All sync operations happen directly between the app on your device and your Google Drive account.
4. Google services
Recora integrates with Google services for authentication and storage. By using Recora, your use of these Google services is also governed by Google's Privacy Policy.
| Service | Purpose | OAuth scope |
|---|---|---|
| Google Sign-In | Authenticate the user; display name and avatar | profile email |
| Google Drive | Store and sync app data in your private appDataFolder | drive.appdata |
We request only the minimum scopes necessary. The drive.appdata
scope only grants access to Recora's private storage area — it does not allow the app to read,
write,
or access any other files in your Google Drive.
You can revoke Recora's access to your Google account at any time via Google Account Permissions. Revoking access will sign you out of the app and, once you remove app access, will permanently delete the app's stored data from your Drive.
5. Device permissions
Recora may request the following device permissions. Each permission is optional and only requested when you use the relevant feature.
Camera
Used to attach photos directly to records via the camera. Photos are stored in your Drive appDataFolder only, never uploaded elsewhere.
Photo Library / Media
Used to attach existing photos or images from your device to records. Accessed only when you choose a specific image to attach.
Location
Used only when you create or update a Location field in a record. Location data is stored exclusively in your own Drive data and is never collected by us.
Storage / Files
Used to attach documents from your device and for the CSV import feature. File contents are sent directly to your Drive — not to us.
6. Your rights & data control
Access your data
All your records are visible and exportable from within the app at any time. Use the Export feature to download a full copy.
Correct your data
You can edit or delete any record, collection, or attachment directly in the app.
Delete your data
Sign out of the app, then visit Google Account Permissions and remove Recora. This permanently deletes all stored data.
Portability
Export any collection as a CSV snapshot at any time using the built-in export feature — no lock-in.
Because Recora has no backend servers, we have no ability to access, modify, or delete your data on your behalf. All data control actions must be performed through the app or your Google account settings.
7. Children's privacy
Recora is not directed to children under the age of 13 (or the applicable age of digital consent in your country). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has used Recora, please contact us and we will guide you through revoking app access via Google.
8. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page and, for significant changes, provide a notice within the app. Your continued use of Recora after any change constitutes your acceptance of the updated policy.
We encourage you to review this policy periodically. The most current version is always accessible at the URL linked from the app stores.
9. Contact us
If you have any questions, concerns, or requests regarding this Privacy Policy or how Recora handles your data, please reach out:
We aim to respond to all privacy-related inquiries within 5 business days.