拜拜拜拜

Legal / 法律条款

Privacy Policy

Last updated: May 15, 2026

This Privacy Policy explains how Baibai collects, uses, stores, and protects information when you use the Baibai mobile app and related website.

本隐私政策说明你在使用 Baibai(拜拜)移动应用及相关网站时,我们如何收集、 使用、存储和保护信息。

English

1. What Baibai Is

Baibai is a blessing, ritual, tarot-style reflection, fortune-stick, daily persona collection, daily check-in, backpack reward, tree-hole journaling, life-goal trajectory, wish-wall, and self-reflection app. Its content is for entertainment and self-reflection only. Baibai does not provide medical, legal, financial, psychological, religious, spiritual authority, or other professional advice, and it does not guarantee real-world outcomes. Any in-app responses generated by Baibai — including the tree-hole "divine reply" and reading interpretations — are automatically generated text intended for self-reflection only, not advice from a real person, deity, or qualified professional.

2. Information We Collect

Depending on how you use the app, we may collect or process:

  • Account and authentication data. Baibai uses Supabase Auth and Sign in with Apple. We may process your Supabase user ID, authentication provider, session information, account status, account creation time, and email address when provided by Apple or by your sign-in method. Apple may let you hide your email address; if you do, we may receive Apple's private relay address instead of your personal email address.
  • Profile and app content. Information you choose to enter or create, such as display name, profile details, avatar image URI, language, wishes, favorites, blessing records, divination records, tarot and fortune-stick readings, daily persona state and persona collection history, check-in progress, backpack items, life goals and trajectory entries (goal titles, notes, status, parallel possibilities, and bound guardian deities), tree-hole journal entries (free-form text, optional mood tag, optional local voice recording URI and duration, and the generated "divine reply" text when you request one), ritual attachments that link tarot, stick, or blessing actions to a wish / goal / tree-hole entry, and local settings.
  • Purchase and entitlement data. Product identifiers, transaction or purchase event identifiers where available, purchase status, membership or entitlement status, restore-purchase results, refund or revocation status, platform, timestamps, and related metadata needed to provide, verify, restore, or revoke paid access.
  • Advertising and interaction data. Baibai uses Google Mobile Ads / AdMob for optional ad-supported experiences. Google Mobile Ads may process device identifiers, the iOS advertising identifier (IDFA) when you authorize tracking, approximate device and app information, ad impressions, ad interactions, rewarded-ad completion events, and related diagnostics. On iOS, Baibai requests Apple App Tracking Transparency (ATT) permission and uses Google's User Messaging Platform (UMP) where required. If you grant ATT and consent under UMP, Baibai may request personalized ads from Google. If you decline ATT, withdraw consent, or are in a region where personalized ads are not permitted, Baibai requests non-personalized ads only.
  • Consent and privacy choices. Baibai integrates Google's User Messaging Platform (UMP) where available to request, record, and update ad consent or privacy choices required in your region.
  • Device permissions and diagnostics. The app may use photo library access when you choose an avatar, motion data to detect shake-to-draw gestures for fortune sticks, and microphone access when you choose to record a voice message in the tree hole. Voice recordings are stored as local audio files in the app's document directory and are not transmitted to our servers; you can delete them by removing the related tree-hole entry. The app and SDKs may generate device, performance, crash, log, and diagnostic information needed to operate, secure, debug, and improve the service.
  • Support communications. If you contact us, we may process your email address, message content, and support metadata.

3. Local Device Storage

Baibai uses local storage on your device, including AsyncStorage and persisted app state, to keep you signed in, remember settings, and save local profile details, wishes, favorites, history, check-in progress, backpack items, purchase records, entitlement state, daily persona collection state, life goals and trajectory entries, tree-hole journal entries, and ritual attachments. Tree-hole voice recordings are stored as audio files in the app's document directory until you delete the related entry. Some local stores — currently the tree hole, life-goal trajectory, daily persona collection, and backpack — are local-only and are not transmitted to our servers. Supabase Auth sessions are also persisted locally so the app can keep you signed in.

4. Backend, Sync, and Service Providers

Baibai relies on the following third-party processors. Each operates under its own terms and privacy policy:

  • Supabase — authentication, backend services, database storage, Edge Functions, account deletion, and purchase entitlement sync.
  • Apple — Sign in with Apple, Apple In-App Purchase, App Tracking Transparency, and the App Store subscription system.
  • RevenueCat — server-side receipt verification, subscription and entitlement event processing, restore purchases, and webhook synchronization to Supabase. RevenueCat receives a RevenueCat-assigned app user identifier linked to your Supabase user ID and Apple-provided transaction information needed to verify purchases.
  • Google Mobile Ads / AdMob — advertising, rewarded-ad delivery, and SKAdNetwork attribution.
  • Google User Messaging Platform (UMP) — regional consent or privacy-choice prompts for advertising.
  • Expo / React Native infrastructure — runtime libraries used to build and deliver the app.

5. How We Use Information

We use information to provide sign-in, keep app records, sync signed-in activity, operate check-ins and rewards, remember settings, deliver paid content, verify purchases, restore purchases, handle refunds or revocations, show optional non-personalized ads, manage ad consent where required, respond to support requests, prevent abuse, troubleshoot issues, and maintain app security and reliability.

6. Purchases, Subscriptions, Restore Purchases, and Refunds

Paid digital content on iOS is processed through Apple In-App Purchase. Baibai does not directly collect or store your full payment card details. Apple handles billing, subscription cancellation, and refunds according to Apple's policies. Baibai may receive purchase, renewal, expiration, refund, revocation, and entitlement events from Apple, RevenueCat, or related store services so the app can grant, restore, update, or remove access. Deleting your Baibai account does not automatically cancel an Apple subscription; you must manage subscriptions through your Apple ID or App Store subscription settings.

7. Advertising and Consent

Baibai may offer optional rewarded ads, such as ads used to unlock a draw, blessing action, or make-up/check-in flow. On iOS, the app first runs Google's User Messaging Platform (UMP) consent flow where required, and then requests Apple App Tracking Transparency (ATT) permission. If you authorize ATTand grant UMP consent, Baibai may request personalized ads from Google Mobile Ads. In every other case — ATT denied or restricted, UMP consent not obtained, region-specific limits, or SDK unavailability — Baibai requests non-personalized ads only. You can change your ATT choice at any time in iOS Settings > Privacy & Security > Tracking, and you can revisit UMP privacy choices from inside the app where applicable. Google may process advertising data as an independent service provider according to Google's policies.

8. Data Retention and Account Deletion

We keep information for as long as needed to provide the app, maintain your account, deliver purchases and entitlements, comply with legal obligations, resolve disputes, prevent fraud or abuse, and enforce our terms. You can request account deletion inside the app from Settings > Account > Delete Account. The deletion flow deletes app-owned user rows and then deletes the Supabase Auth identity. The app then clears local account state and signs you out after deletion is confirmed.

Some records may be retained where legally required or reasonably needed for security, fraud prevention, accounting, payment, tax, dispute resolution, backup integrity, platform compliance, or to process refunds and chargebacks. Backup copies may remain for a limited period before being overwritten. Account deletion does not delete records held by Apple, Google, RevenueCat, or other third-party providers under their own policies.

9. Your Choices and Regional Rights

You can choose whether to sign in, use Sign in with Apple private relay, edit profile fields, grant photo library access, use ad-supported rewards, restore purchases, share generated cards, or delete your account. Depending on your region, including the United States, California, the European Economic Area, the United Kingdom, Canada, China, and other jurisdictions, you may have rights to request access, correction, deletion, portability, restriction, objection, withdrawal of consent, or information about certain sharing or advertising uses. To exercise rights, contact us at baibai.support@gmail.com. We may need to verify your request before acting on it.

10. Children's Privacy

Baibai is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are in a region with a higher digital-consent age, you may use Baibai only if you are old enough to consent or have appropriate parental or guardian consent. If you believe a child has provided personal information to Baibai, contact us so we can review and delete it where appropriate.

11. International Processing and Security

Your information may be processed in countries where we or our service providers operate. We use reasonable technical and organizational measures to protect information, but no app, network, transmission, or storage system can be guaranteed to be completely secure.

12. Changes and Contact

We may update this Privacy Policy from time to time. The "Last updated" date shows when the latest version was posted. Questions or privacy requests can be sent to baibai.support@gmail.com.

中文

1. Baibai 是什么

Baibai(拜拜)是一款包含祈福、仪式、塔罗式自我反思、抽签、每日人格收藏、 每日签到、背包奖励、树洞记录、人生目标轨迹、心愿墙以及自我探索功能的应用。 应用内容仅用于娱乐和自我反思,不构成医疗、法律、财务、心理、宗教、 灵性权威或其他专业建议,也不保证任何现实结果。Baibai 应用内生成的任何回应—— 包括树洞中的“神明回应”和解读内容——均为程序自动生成的文本,仅用于自我反思, 并不代表真实的人、神明或合格专业人士给出的建议。

2. 我们收集的信息

根据你的使用方式,我们可能收集或处理以下信息:

  • 账号与登录信息。 Baibai 使用 Supabase Auth 和 Apple 登录。 我们可能处理你的 Supabase 用户 ID、登录提供方、会话信息、账号状态、账号创建时间, 以及 Apple 或其他登录方式提供的邮箱地址。如果你使用 Apple 隐藏邮箱功能, 我们可能收到 Apple 的私密转发邮箱,而不是你的个人邮箱。
  • 资料与应用内容。 你主动填写或创建的信息,例如昵称、资料内容、 头像图片 URI、语言、愿望、收藏、祈福记录、占卜记录、塔罗和抽签结果、 每日人格状态及人格收藏历史、签到进度、背包道具、人生目标和轨迹条目 (目标标题、备注、状态、平行可能性以及绑定的守护神祇)、 树洞日记条目(自由文本、可选心情标签、可选的本地语音录音 URI 和时长, 以及你请求生成时返回的“神明回应”文本)、将塔罗 / 抽签 / 祈福动作 关联到具体心愿 / 目标 / 树洞条目的仪式记录,以及本地设置。
  • 购买与权益信息。 商品 ID、交易或购买事件 ID(如可用)、 购买状态、会员或权益状态、恢复购买结果、退款或撤销状态、平台、时间戳, 以及用于提供、验证、恢复或撤销付费访问所需的相关元数据。
  • 广告与互动数据。 Baibai 使用 Google Mobile Ads / AdMob 提供可选的广告支持体验。Google Mobile Ads 可能处理设备标识符、在你授权追踪后处理 iOS 广告标识符(IDFA)、大致设备和应用信息、广告展示、广告互动、激励广告完成事件及相关诊断数据。 在 iOS 上,Baibai 会请求 Apple App Tracking Transparency(ATT)权限,并在需要时使用 Google User Messaging Platform(UMP)。如果你同意 ATT 并在 UMP 中给予同意, Baibai 可能向 Google Mobile Ads 请求个性化广告;如果你拒绝 ATT、撤回同意, 或所在地区不允许个性化广告,Baibai 仅请求非个性化广告。
  • 同意与隐私选择。 在可用时,Baibai 集成 Google User Messaging Platform(UMP),用于根据你所在地区请求、记录和更新广告同意或隐私选择。
  • 设备权限与诊断。 当你选择头像时,应用可能使用照片图库权限; 抽签体验会使用运动数据识别摇动抽签手势;当你在树洞中选择录制语音时, 应用会请求麦克风权限。语音录音以本地音频文件形式保存在应用的文档目录中, 不会上传到我们的服务器;你可以通过删除对应的树洞条目来移除它们。 应用和 SDK 可能生成用于运行、安全、调试和改进服务的设备、性能、崩溃、 日志和诊断信息。
  • 客服沟通。 如果你联系我们,我们可能处理你的邮箱地址、消息内容和客服元数据。

3. 本地设备存储

Baibai 使用设备本地存储,包括 AsyncStorage 和持久化应用状态,用于保持登录、 记住设置、保存本地资料、愿望、收藏、历史、签到进度、背包道具、购买记录、 权益状态、每日人格收藏状态、人生目标和轨迹条目、树洞日记条目,以及仪式关联记录。 树洞中的语音录音以音频文件形式保存在应用的文档目录中,直至你删除相关条目。 部分本地存储——目前包括树洞、人生目标轨迹、每日人格收藏和背包—— 仅保存在本地,不会传输到我们的服务器。Supabase Auth 会话也会保存在本地, 以便应用保持登录状态。

4. 后端、同步与服务提供商

Baibai 依赖以下第三方服务,每个服务都按照其自身的条款和隐私政策处理信息:

  • Supabase:身份验证、后端服务、数据库存储、Edge Functions、 账号删除和购买权益同步。
  • Apple:Apple 登录、Apple App 内购买、App Tracking Transparency 与 App Store 订阅系统。
  • RevenueCat:服务端凭据校验、订阅与权益事件处理、恢复购买, 以及通过 webhook 将已验证的权益同步到 Supabase。RevenueCat 会接收一个与你的 Supabase 用户 ID 关联的 RevenueCat 应用用户标识,以及 Apple 提供的、 用于验证购买所必需的交易信息。
  • Google Mobile Ads / AdMob:广告投放、激励广告与 SKAdNetwork 归因。
  • Google User Messaging Platform(UMP):根据地区要求展示广告同意或隐私选择表单。
  • Expo / React Native 基础库:用于构建和分发应用的运行时库。

5. 我们如何使用信息

我们使用信息来提供登录、保存应用记录、同步登录后的活动、运营签到和奖励、 记住设置、交付付费内容、验证购买、恢复购买、处理退款或撤销、展示可选的非个性化广告、 在需要时管理广告同意、回复客服请求、防止滥用、排查问题,并维护应用安全和可靠性。

6. 购买、订阅、恢复购买与退款

iOS 上的付费数字内容通过 Apple App 内购买处理。Baibai 不会直接收集或存储你的完整支付卡信息。 Apple 根据其政策处理扣费、订阅取消和退款。Baibai 可能从 Apple、RevenueCat 或相关商店服务接收购买、 续订、过期、退款、撤销和权益事件,以便应用授予、恢复、更新或移除访问权限。 删除 Baibai 账号不会自动取消 Apple 订阅;你需要通过 Apple ID 或 App Store 订阅设置管理订阅。

7. 广告与同意

Baibai 可能提供可选的激励广告,例如用于解锁抽牌、祈福动作或补签流程的广告。 在 iOS 上,应用会先在需要的地区运行 Google User Messaging Platform(UMP)同意流程, 然后请求 Apple App Tracking Transparency(ATT)权限。仅当你同时授权 ATT 并在 UMP 中给予同意时, Baibai 才会向 Google Mobile Ads 请求个性化广告;其他情况下(拒绝或限制 ATT、未获得 UMP 同意、 地区限制或 SDK 不可用)应用仅请求非个性化广告。你可以在 “iOS 设置 > 隐私与安全性 > 跟踪”中随时更改 ATT 选择,并在适用时通过应用内入口重新打开 UMP 隐私选择。 Google 可能根据其政策作为独立服务提供商处理广告数据。

8. 数据保留与账号删除

我们会在提供应用、维护账号、交付购买和权益、遵守法律义务、解决争议、防止欺诈或滥用、 执行条款所需的期间内保留信息。你可以在应用内通过“设置 > 账号 > 删除账号”请求删除账号。 删除流程会删除应用拥有的用户数据行,然后删除 Supabase Auth 身份;在确认删除后,应用会清除本地账号状态并退出登录。

在法律要求或出于安全、防欺诈、会计、支付、税务、争议解决、备份完整性、平台合规、 处理退款或拒付等合理需要时,部分记录可能会被保留。备份副本可能会在有限时间内保留, 直到被覆盖。删除 Baibai 账号不会删除 Apple、Google、RevenueCat 或其他第三方服务根据其政策保留的记录。

9. 你的选择与地区权利

你可以选择是否登录、是否使用 Apple 私密转发邮箱、是否编辑资料字段、是否授权照片图库、 是否使用广告奖励、是否恢复购买、是否分享生成卡片,以及是否删除账号。根据你所在地区, 包括美国、加利福尼亚、欧洲经济区、英国、加拿大、中国和其他司法辖区,你可能有权请求访问、 更正、删除、携带、限制处理、反对处理、撤回同意,或了解某些共享或广告用途。 如需行使权利,请通过 baibai.support@gmail.com 联系我们。我们可能需要先验证你的请求。

10. 儿童隐私

Baibai 并非面向 13 岁以下儿童,我们不会故意收集 13 岁以下儿童的个人信息。 如果你所在地区规定了更高的数字同意年龄,则你只能在达到相应年龄或取得父母/监护人适当同意后使用 Baibai。 如果你认为儿童向 Baibai 提供了个人信息,请联系我们,我们会进行审核并在适当情况下删除。

11. 跨境处理与安全

你的信息可能会在我们或服务提供商运营所在的国家或地区被处理。我们采用合理的技术和组织措施保护信息, 但任何应用、网络、传输或存储系统都无法保证绝对安全。

12. 政策变更与联系方式

我们可能不时更新本隐私政策。“最后更新”日期表示最新版本的发布时间。 如有问题或隐私请求,请通过 baibai.support@gmail.com 联系我们。