Binmek logo Binmek
Get the app
Legal

Privacy Policy

How Binmek collects, uses, and stores your information.

Effective date: March 7, 2026. Last updated: March 7, 2026.

Overview

Binmek Labs (“we,” “us,” or “our”) operates the Binmek mobile application (the “Service”). This Privacy Policy describes our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data. It applies to your use of the Binmek app and related services. We do not sell your personal information.

1. Information collection and use

We collect several types of information for various purposes to provide and improve our Service to you. This includes personally identifiable information that can be used to contact or identify you (“Personal Data”) and usage data and identifiers.

Data collection and purpose — We collect information to provide project management services, including:

  • Account data: Phone number (for OTP login) and name.
  • Project content: Task titles, site visit remarks, drawing names, and “before/after” images.
  • Technical data: FCM tokens for push notifications.

The sections below describe in more detail what we collect and how we use it.

1.1 Account and authentication

  • Phone number — You enter it on the login screen. We use it to send an OTP (verification code) and as your account identifier. We do not store the OTP code itself.
  • Name — You can enter it after first login or when editing your profile.
  • Profile photo — You can add or change it when editing your profile. We upload the image and store its URL.

Authentication is done via Firebase Authentication (phone as identifier; we use phone + OTP only, no password).

1.2 Profile and preferences

  • Profile — Name, profile image URL, and if you provide them: email, about, profession.
  • Stored on your device only (not on our servers) — Theme (light/dark/system), font family, font size, wallpaper choice, notification toggles (tasks, comments, members), and whether you accepted or rejected the contacts disclosure. We do not upload your contact list; we only use contacts on the device (when you have granted permission and accepted the disclosure) to match phone numbers to existing app users when adding project members. We do not store your contacts on our servers.

1.3 Projects and team

  • Project name, description, optional due date, project images (we store the files and their URLs).
  • When you add members: phone number you enter (we look up the app user and add them to the project). When you add initial members from contacts at project creation, we match by phone to app users; we do not upload your contact list.
  • Member roles (owner, admin, member) and membership data (e.g. name, role, when added) for display in the app.

1.4 Tasks

  • Task title, optional due date, assignee (user ID), creator (user ID), completion state, “before” and “after” images (we upload and store the image files and their URLs).

1.5 Comments

  • Comment text and replies on tasks; we store creator (user ID), task ID, and for replies the parent comment ID.

1.6 Site visits

  • Visit date, which manager (user ID), optional remark. Only one visit per manager per project per day is stored.

1.7 Drawings and delivery requests

  • Drawing name, status (checked, needs revision, urgency), and “delivery requested” with the list of user IDs who requested delivery.

1.8 Ratings and reviews

  • Star rating (1–5) and optional review text that users give to other users; we store who gave the rating and who it is about.

1.9 Notifications and push

  • FCM (Firebase Cloud Messaging) token — Generated on your device after login; we save it so we can send you push notifications. We do not collect notification content from your device; we create notifications on our servers when events happen (e.g. task created, comment added) and send push alerts using this token.

1.10 Subscription and payments

  • Subscription status and related data (e.g. plan type, status, purchase token, product ID, order ID, expiry) come from the in-app purchase (Google Play). We store this in our database to enforce app access and project limits. We do not store your payment card details; payment is handled entirely by Google Play.

2. Sensitive permissions and prominent disclosure

Binmek requires access to your device Contacts. We provide a prominent disclosure within the app before requesting this permission.

We use this only to help you find and add team members by phone number. We do not upload your entire contact list to our servers; names are resolved locally on your device.

  • We may ask for permission to access your device’s contacts so you can easily find and add team members to your projects by their phone number.
  • Data handling: We do not upload your full contact list to our servers. We only resolve contact names locally on your device to match them with existing registered users in our system.

3. Where data is stored

  • Firebase Firestore (cloud) — User profiles, projects, members, tasks, comments, notifications, site visits, drawings, ratings, FCM tokens, subscription data. This data is synced across your devices when you use the app.
  • Firebase Storage (cloud) — Profile images, project images, task “before” and “after” images. We store only the files and their URLs (and optional metadata) in Firestore.
  • Local storage on your device — We use SQLite and SharedPreferences (sometimes referred to as cookies and local storage) to store your preferences (e.g. theme, fonts) and to enable offline functionality. A local database (SQLite) keeps a copy of projects, tasks, comments, notifications, and site visits for offline use and faster loading; it syncs with Firestore when you are online. Drawings are loaded from Firestore when you open the drawings screen. Preferences (theme, font, notification toggles, contacts disclosure choice, session ID, and some progress caches) are stored in device key-value storage (SharedPreferences). Media cache (e.g. thumbnails) may be stored locally to reduce data use.

4. Data usage purpose

We use the collected data for the following purposes:

  • To provide and maintain the Service — Including project management and team collaboration.
  • Account and identity — Phone number to identify you and send OTP; name, profile image, email, about, profession to show in your profile, in team lists, and in notifications (e.g. “X added you to a project”).
  • Projects and team — To display and manage projects, control who can see and edit, show team lists and progress.
  • To notify you about changes — Including task assignments, comments, and project updates.
  • Tasks and comments — To show tasks, assignees, completion state, before/after images, and comments; to update project progress and send notifications.
  • To verify site attendance — Recording manager site visits with timestamps and remarks.
  • Site visits — To record and show who visited the project site and when.
  • Drawings and delivery requests — To track drawing status and notify managers when delivery is requested.
  • Notifications — To show the in-app notification list and send push notifications.
  • Ratings — To show on user profiles and compute average rating.
  • To manage subscriptions — Enforcing project limits based on your plan (e.g. Base vs. Pro).
  • Subscription — To decide if you can use the app and how many projects you can create.
  • Offline and performance — Local data and caches to let you view and update content offline and to load the app faster.

5. Third-party service providers

We employ third-party companies to facilitate our Service. These third parties have access to your Personal Data only to perform these tasks on our behalf:

  • Firebase (Google) — For authentication, database (Firestore), cloud storage, and push notifications.
  • Google Play Billing — To process in-app subscriptions and verify payments.

6. Sharing and disclosure

We do not sell your personal information. We may share data with service providers that help us operate the app (e.g. Firebase for hosting, database, storage, and push notifications) only as needed to provide the service. We may disclose information if required by law or to protect our rights, safety, or the rights and safety of others.

7. Account deletion and data retention

In compliance with Google Play policies, we provide an in-app account deletion feature and a web-based deletion request option.

  • In-app deletion: You can request to delete your account directly within the Profile tab of the app (with phone confirmation).
  • Web request: You may also request account deletion through our website at https://www.binmek.com/delete-account.

Instant deletion

Your personal profile, name, and contact identifiers are removed immediately from our active databases upon account deletion.

Delayed or retained data

Some business-related data, such as project logs or site visit history, may be retained for a limited time (up to 90 days) to ensure team continuity for other project members or for legal and security purposes. We may also retain certain data (such as financial records) where required by law or for legitimate security and fraud prevention.

We retain your information for as long as your account exists and as needed to provide the service, enforce our terms, and comply with law.

8. Your choices and rights

  • You can edit your profile (name, photo) and delete your account from the app or via the web link above.
  • You can control notification toggles in Settings (tasks, comments, members).
  • You can revoke contacts permission in your device settings; we will not use your contacts after that.
  • You can uninstall the app to stop further collection from your device. Data already stored in our cloud will be handled according to this policy and your account status.
  • You may request access, correction, or deletion of your personal information by contacting us (see Contact below). We will respond subject to applicable law and our ability to verify your identity.

9. Security of data

The security of your data is important to us. We use industry-standard encryption (SSL/TLS) to protect your data during transit from your device to our servers.

10. Children

The app is not directed at children under 13 (or equivalent minimum age in your country). We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us so we can delete it.

11. Changes to this privacy policy

We reserve the right to update our Privacy Policy at any time. We will notify you of any changes by posting the new policy on this page and updating the “Effective Date” at the top. You are advised to review this policy periodically for any changes. Continued use of the app after changes means you accept the updated policy. For material changes, we may provide additional notice (e.g. in the app or by email) where required by law.

12. Contact us

For data requests or privacy questions, contact us at: support@binmek.com.

You can also reach us by visiting our website at binmek.com or through our Support page for general help, access/correction/deletion requests, or complaints.