Privacy Policy

Last updated: March 8, 2026

Confess.to ("we", "our", "the app") is an anonymous confession platform. We are committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

1. Information We Collect

Account information: When you create an account, we generate an anonymous identifier. We do not require your email address, phone number, or real name. You provide a display name, avatar, and optionally your gender and date of birth.

Optional account linking: If you choose to secure your account by linking an email address or Google account, we store that authentication credential to enable sign-in. This is entirely optional.

Confessions and messages: We store the text of confessions and chat messages you send and receive. Confessions auto-expire after 72 hours if unopened and self-destruct after both parties have read them.

Device information: We collect your Firebase Cloud Messaging (FCM) token to send push notifications. We do not collect device model, OS version, or other device identifiers beyond what Firebase provides.

Analytics: We use Firebase Analytics to collect anonymous usage data such as screen views and feature usage. This data is aggregated and cannot identify individual users. We use Firebase Crashlytics to collect crash reports to improve app stability.

2. How We Use Your Information

To deliver confessions and messages between users
To send push notifications about new confessions, replies, and friend requests
To enforce community guidelines and content moderation
To improve app performance and fix bugs via crash reporting
To prevent abuse (rate limiting, blocking)

3. Sender Anonymity

Your identity as a confession sender is stored separately from the confession itself. Recipients cannot see who sent a confession. Your sender identity is only revealed if you explicitly choose to send a friend request, which requires your confirmation.

4. Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes.

We may disclose information to law enforcement or government authorities if we are legally required to do so, or if we believe in good faith that disclosure is necessary to:

Comply with a legal obligation or court order
Protect the safety of any person
Prevent fraud or abuse of the service

5. Data Retention

Confessions: Auto-expire after 72 hours if unopened. Self-destruct after both parties read them.
Chat messages: Retained until either user deletes their account.
Reported content: Reports and associated confession text are retained for moderation purposes and may be preserved longer than the original confession.
Account data: Retained until you delete your account.

6. Data Deletion

You can delete your account and all associated data at any time from the Settings screen in the app. This permanently removes:

Your profile and authentication credentials
All confessions you sent and received
All chat messages and friend connections
All blocked user records

Account deletion is irreversible.

7. Third-Party Services

We use the following third-party services:

Firebase Authentication - for anonymous and linked account auth
Cloud Firestore - for data storage
Firebase Cloud Messaging - for push notifications
Firebase Analytics - for anonymous usage analytics
Firebase Crashlytics - for crash reporting

These services are operated by Google and are subject to Google's Privacy Policy.

8. Children's Privacy

Confess.to is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected data from a child under 13, we will delete it promptly.

9. Security

We use Firebase security rules to protect your data. Sender identity is stored in a separate collection with access controls. All communication between the app and our servers is encrypted via HTTPS/TLS.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify users of significant changes through the app. Continued use of the app after changes constitutes acceptance of the updated policy.

11. Contact

If you have questions about this privacy policy or your data, contact us at:

support@confessto.app