Record Shelf — Privacy Policy
Effective date: 2026-07-05
This Privacy Policy describes how Funattic Studio (“we”, “us”) handles information when you use Record Shelf (also referred to as “SpinVault”, the “App”).
Record Shelf helps you catalog your physical music collection — CDs, vinyl, and cassettes. The App is built to work local-first: your collection lives on your device and is fully usable without an account. You only share data with us if you choose to sign in for cross-device sync, or to collaborate on a shared shelf with someone else.
1. Information we collect
1.1 Your collection data (on your device)
The records you add — titles, artists, formats, cover art, catalog fields, ownership dates, notes, wishlist items, and similar details — are stored locally on your device. If you never sign in, this data stays on your device and is not transmitted to us.
1.2 Account information (only if you sign in)
Signing in is optional and only needed for cross-device sync and collaboration. You can sign in with:
- Google Sign-In, or
- Sign in with Apple (iOS only).
When you sign in, we create an account through Firebase Authentication identified by a unique identifier (UID). Depending on the sign-in method and what you’ve shared with the provider, we may receive and store a display name and email address associated with your account. These are used to identify you across your own devices and to your collaborators on shared shelves.
1.3 Synced collection data (only if you sign in)
If you’re signed in, your collection is synced to our backend (Firebase Firestore) so it’s available across your devices and can be restored if you reinstall. This mirrors the collection data described in section 1.1.
1.4 Shared Shelves and invitations
The App lets you create shared shelves and invite other people to view or collaborate on a collection. If you use this feature, we store:
- The shared shelf’s contents and metadata.
- The email address you use to invite someone, and the invitation status.
- The display names, email addresses, and UIDs of the members of a shared shelf, so members can see who they’re collaborating with.
Shared shelf contents are visible to the members of that shelf. If you invite someone by email, that email address is stored so we can route and manage the invitation.
1.5 In-app purchases (Record Shelf Pro)
The App offers an optional paid upgrade. Purchases are processed by Apple (on iOS) or Google (on Android). We use RevenueCat to manage entitlements (whether your account has Pro). RevenueCat receives an anonymous identifier tied to your session and the products you’ve purchased. It does not receive your name, email, or payment details — those stay with Apple or Google.
RevenueCat’s privacy practices are documented at revenuecat.com/privacy.
1.6 Music metadata lookups (Discogs)
To help you add records quickly, the App looks up album metadata and cover art from Discogs, a third-party music database. When you search, scan a barcode, or scan a cover, the App sends the relevant query (for example, the search text or scanned barcode) to Discogs to retrieve results. These requests are made with a generic app identifier and are not tied to your account.
Discogs’ privacy practices are documented at discogs.com/legal/privacy-policy.
1.7 Camera and photos
- Camera: with your permission, the App uses the camera to scan record barcodes and album covers. Camera frames are processed to read the barcode or cover text; the App does not upload your camera feed to us.
- Photo library: with your permission, you can pick a photo from your device to use as custom cover art for a manually added record. Images you select are stored with your collection data.
1.8 Information we do NOT collect
We don’t collect:
- Your location. (You may see a location permission prompt on some Android devices due to platform requirements for certain hardware features; the App does not use your location.)
- Your contacts.
- Advertising identifiers (IDFA / GAID).
- Any other personal identifiers beyond what’s described above.
We do not use third-party advertising SDKs, and we do not use your data to build advertising profiles.
2. How we use your information
We use the information described above only to:
- Store and display your music collection.
- Sync your collection across your devices (if you sign in).
- Enable shared shelves and invitations (if you use them).
- Look up album metadata and cover art from Discogs.
- Process in-app purchases through Apple, Google, and RevenueCat.
We do not sell your data. We do not share it for advertising. We do not use it to build profiles for targeting.
3. Where your data is stored
- Account information, synced collection data, shared shelves, and invitations are stored on Google Firebase servers. Firebase is operated by Google LLC and your data may be processed in the United States or other countries where Google operates.
- In-app purchase records are held by Apple, Google, and RevenueCat according to their respective practices.
- Music metadata is retrieved from Discogs; your queries are processed by Discogs to return results.
- Local collection data remains on your device unless you sign in to sync it.
4. Data retention
- Local collection data is retained on your device until you delete records or uninstall the App.
- Account and synced data are retained until you delete your account (see section 5.2) or delete individual records.
- Shared shelf data is retained for as long as the shelf exists. Removing yourself from a shelf, or deleting your account, removes your membership; content you contributed may remain visible to other members of a shared shelf.
- In-app purchase records are retained by Apple, Google, and RevenueCat under their respective policies.
5. Your choices
5.1 Using the App without an account
You can use Record Shelf entirely offline, without signing in. In that mode, your collection never leaves your device.
5.2 Account deletion
You can delete your account at any time from Settings → Delete account. This removes the data we hold about you on our backend, including your synced collection, profile information, and shared-shelf membership. Content you contributed to a shared shelf that others still collaborate on may remain visible to those members. Deleting your account does not delete the copy of your collection stored locally on your device; you can remove that by clearing the App’s data or uninstalling.
5.3 Permissions
You can revoke camera and photo permissions at any time from your device’s system settings. Doing so disables barcode/cover scanning and photo-based cover art, but the rest of the App continues to work.
5.4 Restoring purchases
If you reinstall the App or switch devices, you can restore previously purchased Pro entitlements from your Apple or Google account.
6. Children’s privacy
Record Shelf is a general-audience cataloging app and is not directed at children. We do not knowingly collect personal information from children. If you believe a child has provided personal information (for example, through a display name or email used to sign in), a parent or guardian can contact us to request its deletion, or use the in-app Delete Account option.
7. Security
Data in transit between your device and our backend is encrypted using HTTPS. Data at rest in Firebase is encrypted by Google. We use Firebase Security Rules to restrict who can read and write each piece of data — for example, a user’s synced collection is readable only by that user, and shared shelves are accessible only to their members.
No system is perfectly secure. If you discover a security issue, please contact us.
8. Changes to this policy
We may update this Privacy Policy from time to time. When we do, we’ll update the “Effective date” at the top of this page. Continued use of the App after a change constitutes acceptance of the revised policy.
9. Contact
Questions or requests about your data:
Funattic Studio
Email: hello@funattic.studio