Serico is a privacy-first safety app operated by MJK APPS SRL (“MJK APPS”, “we”, “our”, or “us”), a limited liability company registered in Romania (trade registry no. J24/866/22.03.2019, unique registration code CUI RO40832934). Serico helps you stay connected with your family, friends, or caregivers through event-based location sharing—without continuous tracking. We take your privacy seriously and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, store, and protect information when you use the Serico mobile application and related services (“Services”).
Please read this Policy before using our Services. By using Serico, you agree to the practices described here.
1. Information We Collect
The information we collect depends on how you use Serico.
1.1 Information You Give Us Directly
Account information. When you create an account, we collect your mobile phone number (used for sign-in via one-time code), a display name you choose, and, if you provide it, a profile photo (avatar).
Nest information. When you create a Nest and invite others, we process invite codes or QR-based joins. We store which users belong to which nests and any nest name or settings you set.
Places. If you add “Places” (e.g. home, school) to a Nest, we store the address, name, and radius you set for geofence-based “arrived” and “left” events.
Feedback. If you contact us through the in-app feedback form, we collect your message and, if you choose to provide it, your name and email address.
1.2 Information We Collect When You Use the App
Location data. We collect location data only when necessary for the features you use: for example when you share your location with your Nest (e.g. during check-in, “arrived”/“left” at a Place, time-limited live sharing, or when you trigger an SOS). We do not continuously track your location in the background beyond what is needed for these event-based features and for geofence monitoring for Places you have set up.
Device and app usage. We may collect device type, operating system, app version, language, and crash diagnostics to provide and improve the Services and to troubleshoot issues. We use Firebase (Firebase Auth, Cloud Messaging, Crashlytics, Analytics) as described in Section 4.
Analytics data. If you consent, we use Firebase Analytics (provided by Google) to understand how the app is used (e.g. which screens are visited, which features are tapped, session duration). This includes a Firebase Installation ID / app instance ID, event data, device and OS details, and an approximate (country-level) location derived from your IP address. We do not use Firebase Analytics to track you across other apps or websites, and we do not link analytics data to advertising profiles. You can withdraw consent at any time in the app settings (see Section 5).
Push notification token. To send you notifications (e.g. when a Nest member checks in, arrives or leaves a Place, requests live sharing, or sends an SOS), we register and store your device’s push token on our servers.
1.3 Information We Do Not Collect
We do not collect your contacts, calendar, or other apps’ data unless you explicitly use a feature that requires it (e.g. scanning a QR code for joining a Nest, which uses the device camera with your permission).
2. How We Use Your Information
We use the information we collect to:
Provide the Serico Services, including account creation and sign-in, Nests, Places, check-ins, arrived/left events, time-limited live sharing, SOS alerts, and maps.
Send you push notifications relevant to your Nests (e.g. check-ins, arrivals/departures, live sharing requests, SOS).
Improve and secure our Services, including fixing bugs, analyzing usage in aggregated form, and ensuring the security and integrity of our systems.
Communicate with you about your account, important service changes, or in response to your feedback or support requests.
Comply with legal obligations and enforce our Terms of Service and this Privacy Policy.
We do not use your information for advertising targeting or to build a profile for third-party advertising.
3. Advertising and Data Sales
Serico is a privacy-first app. We do not sell your personal information. We do not use your data for third-party advertising or targeted advertising within our app. We do not share your location or other personal information with advertisers or data brokers.
We may use analytics (e.g. Firebase Analytics) in a way that does not identify you personally, to understand how the app is used and to improve it.
4. Disclosure of Information
We may disclose your information only as follows:
To other members of your Nest(s). When you use features like check-in, arrived/left, live sharing, or SOS, we share the information necessary for those features (e.g. your location at the relevant time, your display name, and event type) only with the members of the Nest(s) you have chosen to share with.
To service providers. We use trusted service providers who help us operate the Services, such as:
Firebase / Google (authentication, cloud messaging, Crashlytics, Firestore, storage, and — subject to your consent — Firebase Analytics). Google acts as a data processor on our behalf under the Firebase Data Processing and Security Terms. Analytics data may be processed outside the European Economic Area (including in the United States), in which case transfers are protected by Standard Contractual Clauses and Google's supplementary measures. For details, see Google's Privacy Policy and Firebase privacy information.
Hosting and infrastructure providers that run our backend (e.g. Serverpod, cloud hosting). These providers process data on our instructions and are bound by confidentiality and data protection obligations.
For legal reasons. We may disclose information if required by law, court order, or government request, or when we believe in good faith that disclosure is necessary to protect the rights, safety, or property of Serico, our users, or others, or to enforce our terms and policies.
We do not disclose your personal information to third parties for their own marketing or advertising purposes.
5. Your Choices About Your Information
Account information. You can update your display name and profile photo in the app settings.
Location. You can revoke location permission in your device settings. Some features (e.g. check-in, live sharing, SOS, arrived/left) will not work without location when they are used.
Notifications. You can disable push notifications in your device settings or in the app. You may miss important alerts (e.g. SOS or live sharing requests) if you turn them off.
Nests and Places. You can leave a Nest or delete Places at any time through the app.
Analytics. You can enable or disable Firebase Analytics at any time in Settings → Privacy. Disabling it stops further analytics collection; data already collected is retained for the period described in Section 8 and then automatically deleted or anonymized by Google.
Access and deletion. You may request access to or deletion of your personal information by contacting us at the address in Section 12. We will respond in accordance with applicable law. Deleting your account will remove your profile and membership in Nests and will stop us from collecting new data; we may retain some data as needed for legal or safety reasons or in anonymized form.
6. Our Policy Towards Children
Serico is intended for general use. If you are under the minimum age required in your country to use the Services without parental consent, you should use Serico only with the involvement and consent of a parent or guardian. We do not knowingly collect personal information from children below the applicable age without verifiable parental consent. If we learn that we have collected such information, we will take steps to delete it. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at the address in Section 12.
7. How We Protect Your Information
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. This includes secure transmission (e.g. HTTPS), access controls, and secure storage. No system is completely secure; we cannot guarantee absolute security but we work to protect your data. If we become aware of a breach that affects your personal information, we will take steps to notify you and relevant authorities as required by law.
You are responsible for keeping your device and account secure (e.g. not sharing your one-time codes with others).
8. Data Retention
We retain your information for as long as your account is active or as needed to provide the Services. After you delete your account, we may retain certain information for a limited period for legal, safety, or legitimate operational purposes (e.g. resolving disputes, enforcing agreements, complying with law). After that, we delete or anonymize your data where possible.
Firebase Analytics retention. Analytics event data is retained by Google for up to 14 months from collection (per our Firebase configuration), after which it is automatically deleted or aggregated. Crashlytics diagnostic data is retained for up to 90 days.
9. International and Region-Specific Terms
Data location. Your data may be processed and stored on servers in the European Union or other countries where our service providers operate. We ensure appropriate safeguards (e.g. contracts, adequacy decisions) when transferring data outside your country.
EEA, UK, Switzerland. If you are in the European Economic Area, the United Kingdom, or Switzerland, we process your personal data on the basis of: (i) performance of our contract with you (providing the Services), (ii) your consent where we ask for it (e.g. optional feedback), (iii) our legitimate interests (e.g. security, improving the app) where they are not overridden by your rights, and (iv) legal obligation. You have the right to access, rectify, erase, restrict, or object to certain processing, and to data portability where applicable. You may also lodge a complaint with your local data protection authority. As our lead supervisory authority is in Romania, you may also contact the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) at www.dataprotection.ro.
Other regions. Where local law provides additional rights (e.g. California, other U.S. states, Australia), we will honor them in accordance with those laws. You may contact us to exercise such rights.
10. Links to Other Websites and Services
Our app or communications may contain links to third-party websites or services (e.g. maps, support pages). This Privacy Policy does not apply to those third parties. We are not responsible for their privacy practices. We encourage you to read their privacy policies before providing any information.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated version in the app or on our website and indicate the “Last updated” date. If the changes are material, we may notify you by in-app message or email where required by law. Your continued use of Serico after the effective date of changes constitutes acceptance of the updated Policy. If you do not agree, you should stop using the Services and may request account deletion.
12. Contact Us
If you have questions about this Privacy Policy or our privacy practices, or if you want to exercise your rights (e.g. access or deletion), please contact us: