What should I choose for export compliance option?

I was told I should just choose "No" by people but I've recently been incorporating the following in my app: Firestore Phone Authentication, POST/GET requests to a Heroku app (with data including location information, the phone numbers, database IDs). I THINK this means that I need to choose the option 'Yes', but I'm not sure if these are exempt (under the 'c' option). Any insight would be appreciated, thank you!