Privacy Policy

Ammò · Last updated: 9 July 2026 · Terms of Service

This Privacy Policy explains how Roberto Cornano, operating the MyMultiverse studio (“we”, “us”), processes personal data when you use the Ammò mobile application, our website at mymultiverse.app, and related services (collectively, the “Service”).

1. Data controller

Roberto Cornano (MyMultiverse)
Contact: mymultiverse.app/contact
For privacy requests (access, export, deletion), use the in-app account tools or contact us via the form above.

2. What data we collect

Depending on how you use Ammò, we may process:

  • Account data — email address, display name, authentication identifiers from email/password, Google, or Apple sign-in.
  • Household data — household name, membership role, shared grocery lists, weekly meal plans, and related sync metadata (timestamps, editor identifiers).
  • Invite data — email addresses you invite, invite tokens, and delivery status for household invitations.
  • Device data — push notification tokens (FCM/APNs) when you enable notifications; basic device/platform type for delivery.
  • Diagnostics — on Android builds with Firebase configured, crash reports and technical logs via Firebase Crashlytics (no grocery or meal content in crash payloads by design).
  • Website usage — standard server and hosting logs (IP address, browser type, pages visited) when you browse mymultiverse.app.

Local AI assistant: Ammò’s nutrition assistant runs on your device using local logic. We do not send your AI questions to a third-party generative-AI API as part of the shipped assistant. Household grocery and meal data you choose to sync is stored as described below.

3. How we use data

  • Provide and operate the Service (account, household collaboration, sync).
  • Send transactional messages (e.g. household invite emails).
  • Deliver push notifications you opt into (e.g. invites).
  • Maintain security, prevent abuse, and fix crashes.
  • Comply with legal obligations.

We do not sell your personal data.

4. Legal bases (EEA / UK users)

  • Contract — to provide Ammò when you create an account and join a household.
  • Legitimate interests — security, fraud prevention, and improving reliability (balanced against your rights).
  • Consent — where required for optional features (e.g. push notifications); you may withdraw consent in device settings.
  • Legal obligation — when law requires retention or disclosure.

5. Processors and hosting

We use trusted providers to run the Service, including:

  • Supabase — authentication, database, realtime sync, and server functions (project hosted at ammo.mymultiverse.app).
  • Google Firebase — Crashlytics and push messaging on Android where enabled.
  • Apple Push Notification service — iOS notifications where enabled.
  • Resend (or equivalent) — transactional invite email delivery.
  • Firebase Hosting / Google Cloud — public website and app-link files.

Processors act on our instructions under their terms and data-processing agreements. Data may be processed in the EU, UK, United States, or other regions where these providers operate. We use appropriate safeguards for international transfers where required by law.

6. Shared household content

Grocery and meal-plan data is shared with members of your household according to their role (owner, admin, editor, viewer). If you leave a household, you lose access to shared content; content you edited may remain visible to other members, attributed by account identifier, unless the household is dissolved by the owner.

7. Retention

  • Account and household data — while your account is active and as needed for collaboration.
  • After account deletion — personal identifiers are removed or anonymised per our deletion flow; residual backups may persist for a limited period.
  • Crash logs — retained per Firebase default retention unless configured otherwise.
  • Hosting logs — typically rotated within months unless needed for security investigations.

8. Your rights

Depending on your location, you may have the right to:

  • Access and receive a copy of your data.
  • Rectify inaccurate data.
  • Delete your account and associated personal data.
  • Restrict or object to certain processing.
  • Data portability.
  • Lodge a complaint with a supervisory authority (e.g. AEPD — Agencia Española de Protección de Datos — in Spain).

In the app: use Export personal data and Delete account from Home account settings. Export produces a JSON file via your device share sheet. Deletion invokes our delete-account process and signs you out. Household owners must transfer ownership or dissolve the household before deleting their account.

9. Children

Ammò is designed for household use by adults coordinating family logistics. We do not knowingly collect personal data from children under 16 without parental authority. Contact us if you believe a child has provided data without consent.

10. Security

We use industry-standard measures including encrypted transport (HTTPS/TLS), authenticated access, and row-level security on shared data. No method of transmission or storage is 100% secure; please use a strong, unique password and protect your device.

11. Changes

We may update this Policy. We will post the new version on this page with an updated date. Material changes may be notified in-app or by email where appropriate.

12. Intellectual property

The Service, including the Ammò and MyMultiverse names, logos, software, and design, is owned by Roberto Cornano (MyMultiverse). This Policy does not grant you any licence to our trademarks or copyrighted materials except as needed to use the Service. See our Terms of Service.