Privacy Policy

Last updated: June 2026 · Applies to: Nook web app & Android app

Nook ("we", "our", or "the app") is a virtual co-working space made by Moonga Studio. This policy explains what personal data we collect, why, how long we keep it, and your rights under the EU General Data Protection Regulation (GDPR) and India's Digital Personal Data Protection Act 2023 (DPDPA).

1. Who we are (Controller / Data Fiduciary)

Rohan S, trading as Moonga Studio
Email: hello@moonga.studio

Moonga Studio is an independent developer. For all privacy questions, data requests, and complaints, email the address above. We respond within 30 days.

2. Data we collect and why

2a. Device identifier

A random UUID is generated the first time you open the app and stored on your device. It is sent to our database when you join a room or send a message. It is not linked to your real name unless you create an account.

2b. Profile data (optional — you set this)

Field	What it is	Who sees it	Where stored
Nickname	Display name you choose or auto-generated	Others in your room	On-device + our database
Bio	Short note about yourself	Others in your room	On-device + our database
City	City name you optionally enter	Others in your room	On-device + our database
Avatar	Character or image you pick	Others in your room	On-device + our database
Intention	"What I'm working on" — entered when joining a room	Others in your room only	Our database (deleted when you leave)

2c. Account data (if you sign up)

If you create an account with email/password or Google Sign-In, we store your email address securely via Supabase Auth. Your email is used only to authenticate you and is never sold or used for marketing.

2d. Room and message data

Chat messages — stored with your device ID, nickname, and timestamp. Automatically deleted after 24 hours.
Session presence — device ID, nickname, bio, avatar, city, intention, and timestamps stored while you are in a room. Deleted when you leave (or after 2 minutes of inactivity).
Private rooms — creating or joining a private room requires a free account. We store the room name, code, settings, and the account ID of the creator, plus a membership record (which accounts have joined which room) so we can show each member their rooms. Access is enforced at the database level: only the owner and people who have joined with the room code can see a room. Persists until the creator deletes the room.

2e. Anonymous analytics

We use PostHog to collect anonymous usage events (e.g. "entered a room") linked only to your device ID. No personal profile data is sent. No screen recordings are made. You can opt out any time in You → Privacy & data → Anonymous analytics.

2f. Friends and direct messages

Nook lets you connect with specific people as friends and send them private one-to-one messages and room invites.

Friend connections — when you send, accept, decline, or block a friend request, we store the account IDs of both people involved and the request status. This lets us show your friends list and route messages and invites.
Direct messages — private one-to-one messages (and room invites) between you and a friend, stored with the sender and recipient account IDs and a timestamp. Unlike room chat, direct messages are not automatically deleted after 24 hours — they remain until you or the sender delete them, or you delete your account.

Direct messages and friend connections are visible only to the two people involved. Access is enforced at the database level using row-level security: every request carries your signed-in account's credentials, so no other user — and no holder of the app's public key — can read your messages or your friends list.

2g. Keeping the screen on (battery status)

The optional "Keep the room glowing" setting holds your screen awake while you are in a room, so the space stays visible beside you. To avoid draining your battery, the app reads your device's battery level and charging status. This information is used only on your device to decide when to dim the screen — it is never collected, stored, or sent to our servers or any third party. You can turn the setting off any time from the sound controls inside a room.

3. Lawful basis for processing (GDPR Art. 6)

Processing activity	Lawful basis
Room presence, chat, session data	Legitimate interests (Art. 6(1)(f)) — necessary to deliver co-working functionality. Your interest in privacy does not override this for minimal functional data.
Friends & direct messages	Legitimate interests (Art. 6(1)(f)) — necessary to deliver the friends and private-messaging features you choose to use.
Account authentication (email)	Performance of contract (Art. 6(1)(b)) — signing in requires your email.
Anonymous analytics	Legitimate interests (Art. 6(1)(f)) — anonymous product improvement. Opt-out available at any time.

4. Data retention

Data	Retention period
Chat messages	24 hours, then automatically deleted
Direct messages	Until you or the sender delete the message, or you delete your account
Friend connections	Until either person removes the connection, or you delete your account
Session presence	Deleted on room exit or after 2 minutes of inactivity
Profile (nickname, bio, city, avatar)	Until you delete your account, or after 12 months of inactivity
Private rooms & membership	Until the creator deletes the room; your membership record until you leave the room or delete your account
Email (if account created)	Until you delete your account
Analytics events	2 years (PostHog default)
On-device data (tasks, preferences)	Until you clear it in settings or uninstall

5. Third-party processors (GDPR Art. 28)

Service	Purpose	Data location	Privacy policy
Supabase	Database, authentication, real-time	EU — Frankfurt (EEA, no transfer outside)	supabase.com/privacy
PostHog	Anonymous analytics	EU region (no transfer outside EEA)	posthog.com/privacy
Google (OAuth)	Optional Sign-in with Google	Per Google's policy; SCCs in place	policies.google.com/privacy

We have Data Processing Agreements with Supabase and PostHog. We do not sell your personal data to any third party.

6. Your rights

You have the following rights. To exercise any of them, email hello@moonga.studio — we respond within 30 days.

Under GDPR (EU/UK residents) — Art. 15–22

Access — request a copy of your personal data
Rectification — correct inaccurate data (you can do this directly in the app)
Erasure — delete your account and all data. Use You → Privacy & data → Delete my account, or email us.
Restriction — request we limit processing in certain circumstances
Portability — receive your data in a machine-readable format
Object — object to processing based on legitimate interests, including analytics
Lodge a complaint — you have the right to complain to your local supervisory authority (e.g. your national DPA). We'd prefer you contact us first.

Under DPDPA (India residents) — §11–13

Information — know what data we hold and how it is processed
Correction & completion — update your data in-app or by emailing us
Erasure — delete your account via the app or by emailing us
Grievance redressal — raise a complaint with our grievance officer (below)
Withdraw consent — delete your account at any time

7. Grievance officer (DPDPA §8(6))

Name: Rohan S
Email: hello@moonga.studio
Response time: Within 30 days

8. Children

Nook is not directed at children under 13 (or under 18 under DPDPA). We do not knowingly collect personal data from minors. Contact us immediately if you believe a child has used the app.

9. Changes to this policy

We update this policy when new features change how we handle data. The "Last updated" date above will reflect changes. For significant changes we will notify you in the app before they take effect.

10. Contact

Rohan S, trading as Moonga Studio
hello@moonga.studio