Privacy Policy- We collect only the personal information necessary to provide, maintain, and improve core service functionality. This includes basic identifiers and usage metrics automatically gathered during normal operation. No sensitive data (such as health, financial, or biometric information) is ever requested. All collection practices are disclosed at the point of data entry.
- Collected information is used to authenticate user sessions, diagnose technical issues, and optimize performance across devices. We also use aggregated, anonymized metrics to guide feature enhancements and reliability improvements. Personal data is never sold or shared with third‑party advertisers. Any additional uses require explicit, opt‑in consent.
- Essential cookies and similar technologies support login, security, and load‑balancing. Optional analytics cookies remain inactive unless you enable them in your settings. No tracking for advertising or profiling occurs without your clear approval. You may disable non‑essential cookies at any time via account controls or browser preferences.
- All data in transit is protected by industry‑standard encryption protocols. Stored records reside in encrypted databases with strict access controls and regular security audits. Internal access is governed by role‑based permissions and recorded via audit logs. We conduct periodic penetration tests to identify and remediate vulnerabilities.
- You may request access to, correction of, or deletion of your personal data at any time. Such requests are handled within thirty days in accordance with applicable regulations. Data that must be retained for legal compliance or dispute resolution will remain until no longer required by law. Non‑identifiable logs and backups are purged according to our retention schedule.
- Personal information is retained only as long as needed to fulfill its original purpose, typically no more than twenty‑four months after last activity. After the retention period, data is securely deleted or irreversibly anonymized. Retention policies are reviewed annually to align with best practices. You may view our full retention schedule upon request.
- Any breach involving personal data triggers our incident response plan, which includes rapid containment and forensic analysis. Affected users are notified within seventy‑two hours of breach confirmation. We also inform relevant regulators in accordance with legal requirements. Post‑incident reviews ensure continuous improvement of our security measures.
- Automated processes may analyze anonymized data to generate system alerts and usage insights. You will be notified if any automated decision significantly affects your account, and you may request human review. Profiles used for non‑critical recommendations are based solely on opt‑in data. You can disable all automated personalization in your privacy settings.
- Third‑party service providers supporting core operations (such as hosting or payment processing) receive only the minimum data necessary and are bound by strict confidentiality agreements. We conduct regular audits to ensure their compliance with our security and privacy standards. No personal information is shared with advertisers or data brokers. All transfers are logged and can be reviewed on request.
- This Privacy Policy is reviewed and updated at least once per year or whenever legal or operational changes dictate. Material changes will be communicated via in‑app notification and email at least fourteen days before they take effect. Continued use after the effective date constitutes acceptance of the revised policy. Archived versions are available upon request for full transparency.
- If you have questions, concerns, or complaints about our data practices, you may contact our data protection team through the support channel in the application. We aim to respond to all inquiries within five business days. If you remain unsatisfied, you may escalate the issue to the relevant supervisory authority. Our commitment to your privacy is an ongoing priority.
