Privacy Policy - Sam The Wise

Last Updated: March 9, 2026

Effective Date: March 9, 2026

Version: 2.3

1. Introduction

Sam The Wise ("we," "us," "our," or "the App") is committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal information.

This Privacy Policy explains:

What personal information we collect
How we use your information
Who we share it with
Your rights and choices
How we protect your data

By using Sam The Wise, you consent to the collection and use of information as described in this policy.

Age Requirement: You must be at least 16 years old to use Sam The Wise. We do not knowingly collect personal information from anyone under 16.

2. Data Controller

Name: Hanan Hebibovic (individual operator)

Address: Pater-Rupert-Mayer-Straße 9, 85386 Eching, Germany

Email: [email protected]

Phone: +49 162 6474342

German and EU data protection laws (including GDPR) apply to the processing of your personal information.

3. Information We Collect

3.1 Information You Provide

Account Information:

Email address (required for account creation and recovery)
Username (unique identifier, publicly visible by default)
Password (hashed, never stored in plaintext)
Profile photo/avatar (optional, stored in Firebase Storage)
Bio/description (optional)
Date of birth (age verification only, not publicly displayed)
Authentication method (email, Google, or Apple Sign-in)

Study Content:

Decks (flashcard collections), questions, and answers you create
AI-generated questions and content added to your decks
Study session results, accuracy, and progress data
Spaced repetition review history and scheduling data (FSRS card states)
Bookmarked cards

AI Tutor Conversations:

Messages you send to the AI Tutor
AI Tutor responses
Conversation metadata (timestamps, topic, agent mode used)
Custom Sam preferences (personality, chat style, study preferences, custom instructions) — Unlimited tier only

Essay Content:

Essay text you write
AI grading results, scores, and feedback
Essay metadata (word count, submission time, essay type)

Exam Data:

Exam session answers and timestamps
Exam performance results
AI-generated exam reports and feedback

Grade Data:

Subject names and configurations
Individual grades, weights, and dates
Semester organization
Grading system preferences (GPA, German, UK, letter, custom)

Uploaded Files:

Images, PDFs, and documents uploaded for AI quiz generation
Images uploaded in tutor conversations

Social Information:

Friends list and friend requests
Referral codes sent and received

Learning Memory Data (Student Plus and Unlimited tiers):

Topic mastery records (subject, mastery level, accuracy rate, strong/weak points, response times)
Identified learning struggles (topic, severity, frequency, resolution status)
Upcoming events extracted from conversations or synced from calendar (exams, homework, deadlines)
Conversation insights (key takeaways, topics discussed, session goals)
Memory strength metric (computed from the breadth of your learning profile)

WebUntis / Timetable Data (Student tier and above):

WebUntis server URL and school identifier
WebUntis username and person ID
Synced timetable data (class names, times, rooms, teachers)
Synced exam and homework entries from WebUntis

Calendar Data:

Calendar events you create (exams, homework, study sessions, goals)
Events synced from WebUntis (if connected)
Calendar AI consent preference (whether Sam may use calendar data in AI features)

Payment Information:

Subscription tier and billing period
Payment status and history

We do NOT store credit card numbers, bank details, or full payment credentials. Payments are processed by Apple (iOS) or Stripe (Android/Web).

Preferences and Settings:

Language preference (English or German)
Theme preference
Notification settings (reminder times, enabled/disabled)
Privacy consent choices (analytics, crash reporting)
Profile visibility setting (public, friends only, or private)

3.2 Information Collected Automatically

Usage Data (with your consent):

Study session metrics (questions answered, accuracy, time spent)
Feature usage patterns (screens visited, actions taken)
Subscription funnel interactions
Onboarding completion progress

Crash Reports (with your consent):

App crash data, error logs, and stack traces
Device model and OS version at time of crash

Technical Data:

Device type and operating system
App version
Firebase Cloud Messaging token (for push notifications)
Timezone (for notification scheduling)

Offline and Sync Data:

Offline study session data stored locally on your device
Sync timestamps and status

3.3 Information We Do NOT Collect

Precise geolocation or GPS data
Contact lists or phone book data
Microphone recordings — Voice input (speech-to-text) uses your device’s native speech recognition (Apple/Google) only. Audio data is not recorded, stored, or transmitted by us.
Browsing history outside the App
Data from other apps on your device

4. How We Use Your Information

Purpose	Data Used	Legal Basis (GDPR)
Provide the Service (account, study, AI features)	Account, study content, conversations, essays, exams, grades	Contract performance (Art. 6(1)(b))
Process payments and manage subscriptions	Payment data, subscription status	Contract performance (Art. 6(1)(b))
Enforce quotas and rate limits	Usage counts, subscription tier	Contract performance (Art. 6(1)(b))
Send push notifications (reminders, achievements)	FCM token, notification preferences	Consent (Art. 6(1)(a))
Improve the Service (analytics)	Usage data (anonymized)	Consent (Art. 6(1)(a))
Fix bugs (crash reporting)	Crash data, device info	Consent (Art. 6(1)(a))
Social features (friends, leaderboards)	Profile data, study stats, friend connections	Consent / Legitimate interest (Art. 6(1)(f))
Gamification (achievements, streaks, XP)	Study activity data	Contract performance (Art. 6(1)(b))
Build learning memory profile (Sam Remembers)	Tutor conversations, study data, calendar events	Consent (Art. 6(1)(a)) — requires eligible tier
Sync school timetable (WebUntis)	WebUntis credentials, timetable data	Consent (Art. 6(1)(a)) — user-initiated connection
Provide context-aware AI assistance (Calendar AI)	Calendar events, upcoming exams	Consent (Art. 6(1)(a)) — explicit opt-in toggle
Send daily schedule digest notifications	Calendar events, timetable data	Consent (Art. 6(1)(a)) — opt-in preference
Prevent abuse and ensure security	Account data, usage patterns, rate limit data	Legitimate interest (Art. 6(1)(f))
Comply with legal obligations	Payment records, account data	Legal obligation (Art. 6(1)(c))
Respond to support requests	Account data, communication content	Contract performance (Art. 6(1)(b))

5. AI Processing and Third-Party Services

5.1 AI Providers

Sam The Wise uses third-party AI services to power its intelligent features:

Anthropic (Claude): Used for:

AI Tutor conversations
Quiz question generation from uploaded documents
Essay grading and feedback
Exam report generation
Answer grading
Learning memory extraction (analyzing tutor conversations to build your learning profile)

Data Handling by AI Providers:

Your data is sent to AI providers via encrypted API calls solely for processing your request
AI providers do NOT use your data for model training (per our Data Processing Agreements)
AI providers may retain API logs for up to 7 days for safety and abuse monitoring, after which they are automatically deleted
Covered under the EU-US Data Privacy Framework

5.2 File Processing

When you upload files (images, PDFs, documents) for AI quiz generation:

Files are temporarily stored in Firebase Cloud Storage for processing
Files are automatically deleted after 30 days
Only the AI-generated questions are retained — your original files are not permanently stored
You may manually delete uploaded files at any time

Do NOT upload:

Medical records or health information
Government-issued identification documents
Financial documents (bank statements, tax returns)
Sensitive personal information of others

5.3 Payment Processors

Apple (iOS): In-App Purchase transactions are processed by Apple. Apple's privacy policy applies to payment data collected by Apple.

Stripe (Android/Web): Subscription payments are processed by Stripe. We receive subscription status and billing period information but NOT your full payment card details. Stripe's privacy policy applies to payment data collected by Stripe.

5.4 WebUntis (Untis GmbH)

If you choose to connect your WebUntis account:

Your WebUntis credentials (username, password/token) are sent to our backend server and used to authenticate with the WebUntis API on your behalf
Your credentials are stored securely in our database and are used solely for timetable synchronization
Timetable data (classes, exams, homework) is fetched from WebUntis and stored in your Sam The Wise account
You can disconnect your WebUntis account at any time in Settings, which deletes stored credentials and optionally removes synced events
Sam The Wise is not affiliated with Untis GmbH. WebUntis' own privacy policy applies to data held by Untis GmbH

5.5 Firebase (Google)

We use Firebase for:

Authentication: Secure account login and session management
Cloud Firestore: Database for your study data, profiles, and app content
Cloud Storage: Uploaded files and profile photos
Cloud Functions: Backend processing (AI grading, notifications, analytics)
Cloud Messaging: Push notification delivery
Analytics: Anonymous usage analytics (with your consent only)
Crashlytics: Crash reporting (with your consent only)
Remote Config: Feature configuration
Performance Monitoring: App performance metrics

Data is primarily stored in EU data centers (Firebase Europe West).

6. Data Sharing and Disclosure

We do NOT sell your personal information.

6.1 Service Providers

We share data with the following service providers solely for operating the Service:

Firebase/Google: Hosting, authentication, database, storage, analytics
Anthropic: AI processing (tutor, grading, generation, memory extraction)
Stripe: Payment processing (Android/Web)
Apple: In-App Purchase (iOS)
WebUntis (Untis GmbH): Timetable retrieval (only when you connect your WebUntis account)

6.2 Other Users (Social Features)

When you use social features, certain information is visible to other users based on your privacy settings:

Data	Public Profile	Friends Only	Private
Username	Yes	Yes	No
Profile photo	Yes	Yes	No
Bio	Yes	Yes	No
Study stats (for leaderboards)	Yes	Yes	No
Achievements	Yes	Yes	No
Online status	No	Yes	No
Friend list	No	Yes	No

You control your profile visibility in Settings > Privacy or during profile creation.

6.3 Leaderboards

If you appear on leaderboards, your username, profile photo, and relevant statistics (XP, streak, cards studied, accuracy) are visible to other users who can see the leaderboard.

6.4 Deck Sharing

When you share a deck via link, the recipient can see the deck title, description, card content, and your username as the creator.

6.5 Referral System

When you share a referral link, your referral code is embedded in the link. The referred user's account is linked to yours for referral tracking purposes. No additional personal information is shared.

6.6 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request, or to protect the rights, safety, or property of our users or the public.

6.7 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your data is transferred and becomes subject to a different privacy policy.

6.8 Aggregated Data

We may share anonymized, aggregated data that cannot identify you (e.g., total number of study sessions across all users) for analytics and research purposes.

7. Local Data Storage

Sam The Wise stores certain data locally on your device for offline functionality and performance:

SharedPreferences: App settings, daily usage counters, consent preferences, notification settings, onboarding status
Hive (Local Database): Cached deck data for offline study, study session queues awaiting sync
Device Cache: Cached images and profile photos

Local data remains on your device and is not transmitted to our servers unless sync is required. You can clear local data through Settings > Storage, or by uninstalling the App.

8. Push Notifications

We use Firebase Cloud Messaging (FCM) to deliver push notifications. We store your FCM device token to send notifications.

Types of notifications we may send (each individually controllable):

Daily study reminders — configurable reminder time (default: 19:00 local)
Review due reminders — periodic alerts when spaced repetition cards are due
Streak alerts — reminder if you haven't studied today and have an active streak
Streak at risk alerts — urgent reminder when a multi-day streak is about to expire
Achievement unlock notifications — when you earn an achievement
Friend activity notifications — when friends complete study sessions, unlock achievements, reach streak milestones, or create decks
Deck shared notifications — when someone copies one of your shared decks
Cards due soon reminders — morning alert when 20+ review cards are due
Weekly progress summary — weekly overview of your study activity and quota usage
Weekly recap — weekly XP and leaderboard summary
Quest expiring alerts — reminder before daily quests expire at reset
Milestone approaching alerts — when you're close to reaching a study milestone (e.g., 100, 500, 1000 cards answered)
Welcome back reminders — re-engagement reminder after 3–14 days of inactivity
Exam coming up reminders — multi-level alerts at 7 days, 3 days, and 1 day before exams
Grade reminders — weekly reminder to log grades if none added recently
Leaderboard position changes — when your rank changes by 2+ positions
Daily schedule digest — opt-in morning summary of classes, free periods, and upcoming exams

Your control:

Enable/disable each notification type individually in Settings > Notifications
Configure Do Not Disturb hours to suppress all notifications during specific times
A global daily cap of 5 notifications per day prevents notification overload
Disable all notifications at the OS level: iOS Settings > Sam The Wise > Notifications, or Android Settings > Apps > Sam The Wise > Notifications

8.1 Transactional Emails

We send transactional emails to the email address associated with your account for contract-related communications. These emails are not marketing and cannot be disabled, as they are necessary for the performance of our contract with you (Art. 6(1)(b) GDPR).

Types of transactional emails:

Welcome email — sent upon account creation
Subscription confirmation — sent when you subscribe to a paid plan
Subscription upgrade confirmation — sent when you upgrade your plan
Subscription cancellation confirmation — sent when you cancel your subscription
Trial ending reminder — sent 2 days before your free trial expires

These emails are sent via Firebase Trigger Email. Your email address is used solely for delivery and is not shared with third-party marketing services.

9. Consent Management

We request your explicit consent for optional data processing:

Analytics Consent: Anonymous usage data collection to help us understand how the App is used and improve it. Disabled by default.

Crash Reporting Consent: Automatic crash report collection to help us fix bugs faster. Disabled by default.

Calendar AI Consent: Allows Sam to use your calendar events (including WebUntis-synced events) in AI features such as the Tutor and Learning Memory. When enabled, Sam can reference your upcoming exams, classes, and deadlines in conversations. Disabled by default.

You are asked for consent during your first login via our Privacy Preferences dialog. You can change your choices at any time in Settings > Privacy.

Withdrawing consent does not affect the lawfulness of processing performed before withdrawal.

10. Your Rights (GDPR)

Under GDPR and German data protection law, you have the following rights:

Right	Description	How to Exercise
Access	Request a copy of your personal data	Settings > Account > Export Data, or email us
Rectification	Correct inaccurate or incomplete data	Edit in-app, or email us
Erasure	Delete your account and personal data ("right to be forgotten")	Settings > Account > Delete Account, or email us
Data Portability	Export your data in a machine-readable format (JSON)	Settings > Account > Export Data
Object	Object to processing based on legitimate interests	Email us
Restrict Processing	Limit how we use your data	Email us
Withdraw Consent	Revoke consent for analytics or crash reporting	Settings > Privacy

To exercise your rights:

Use in-app tools where available (Settings > Account, Settings > Privacy)
Email [email protected] with your request
We will respond within 30 days as required by GDPR

Complaint Rights: You may lodge a complaint with your local data protection authority. For Bavaria, Germany: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, www.lda.bayern.de.

11. Data Retention

Data Type	Retention Period
Account information	Until account deletion
Study content (decks, questions, cards)	Until account deletion or manual deletion
AI Tutor conversations	Until account deletion or manual deletion
Essay content and grading results	Until account deletion or manual deletion
Exam sessions and reports	Until account deletion or manual deletion
Grade data	Until account deletion or manual deletion
Uploaded files (images, PDFs)	30 days (automatic deletion)
Learning memory profile (Sam Remembers)	Until account deletion, manual deletion, or disconnection from feature
WebUntis credentials	Until you disconnect WebUntis or delete your account
WebUntis-synced timetable data	Until you disconnect (with optional deletion) or account deletion
Calendar events	Until manual deletion or account deletion
Friend connections	Until unfriended or account deletion
Achievement and gamification data	Until account deletion
Usage analytics	2 years (anonymized after 90 days)
Crash reports	1 year
Payment records	7 years (German tax law: AO §147)
Support communications	2 years
Push notification tokens	Until logout or account deletion
Referral data	Until account deletion

Upon account deletion:

Personal data is permanently deleted
Payment records are anonymized but retained for legal compliance
Shared deck copies that other users imported remain in their libraries (anonymized)
Leaderboard entries are removed
Friend connections are dissolved

12. Security Measures

We implement the following measures to protect your data:

Encryption in Transit: All data transmitted between the App and our servers uses HTTPS/TLS encryption
Encryption at Rest: Data stored in Firebase is encrypted at rest using Google-managed encryption keys
Password Security: Passwords are hashed (never stored in plaintext)
Firebase Security Rules: Strict database access controls ensure users can only access their own data (688 rules covering all collections)
Rate Limiting: Multi-layer rate limiting prevents abuse (API-level, function-level, and quota-level)
Server-Side Validation: Quota and access controls are enforced server-side, not just client-side
Minimal Data Collection: We only collect data necessary for providing the Service
Regular Monitoring: Ongoing security monitoring and updates

No system is 100% secure. You are responsible for keeping your account credentials confidential.

13. Cookies and Tracking

13.1 Mobile App (iOS/Android)

The mobile app does not use browser cookies. We use:

Firebase Analytics: Anonymous usage tracking (with consent only)
Firebase Crashlytics: Crash reporting (with consent only)
No advertising trackers are used

13.2 Web App

The web version uses:

Essential cookies: Required for authentication and session management
Firebase Analytics: Anonymous usage tracking (with consent only)
No advertising or third-party tracking cookies

14. Children's Privacy

Sam The Wise is NOT intended for children under 16 years of age. We do not knowingly collect personal information from anyone under 16.

If we discover that a user is under 16, we will immediately:

Terminate the account
Delete all associated personal data

Parents and Guardians: If you believe your child has created an account, please contact us at [email protected] and we will promptly delete the account and associated data.

15. International Data Transfers

Sam The Wise operates from Germany (EU). Your data is primarily stored in EU data centers (Firebase Europe West region).

Data may be transferred outside the EU in the following cases:

Recipient	Location	Purpose	Safeguard
Anthropic	United States	AI processing (tutor, grading, generation, memory extraction)	EU-US Data Privacy Framework, Standard Contractual Clauses
Stripe	United States	Payment processing	EU-US Data Privacy Framework, Standard Contractual Clauses
Google/Firebase	EU (primary), US (backup)	Hosting, database, authentication	Standard Contractual Clauses, adequacy decision
Apple	United States	In-App Purchase, Sign-in	Standard Contractual Clauses

All international transfers are protected by appropriate safeguards as required by GDPR.

16. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements.

Material changes: We will notify you via email AND in-app notice at least 30 days before the changes take effect
Minor changes: We will update the "Last Updated" date and version number

Your continued use of the Service after changes take effect constitutes acceptance of the updated policy. If you disagree with changes, you may delete your account.

17. Contact Us

For privacy questions, data requests, or concerns:

Email: [email protected]

Subject line: "Privacy Inquiry"

We will respond within 30 days as required by GDPR.