Privacy Policy
Scope
This policy applies whenever personal data is collected through your use of the service on any platform. It outlines our handling of data, including collection, processing, sharing, and deletion. Continued use indicates acceptance of these practices. Please check back regularly for updates.
Personal Data Collected
We collect only the data necessary to operate the service: names, email addresses, IP addresses, device types, and usage logs. Collection occurs via user forms (e.g., signup) and automated tracking (e.g., cookies, server logs). Sensitive data categories are never collected. Each collection instance specifies its purpose.
Use of Data
Collected data is used to verify identity, maintain security, and resolve issues. Aggregate, anonymized metrics help optimize performance and guide new features. We do not share personal data with advertisers or data brokers without explicit consent. Any change in data usage will be communicated and require opt‑in.
Cookies & Tracking Tools
Essential cookies facilitate core functionality like session maintenance and security. Analytics cookies remain inactive until you enable them. No third‑party advertising trackers are used without your separate permission. You can manage cookie settings through your browser or account preferences.
Security
All data in transit is encrypted using TLS or equivalent protocols. Data at rest is stored encrypted in secure environments with strict access controls. Internal access requires multi‑factor authentication and minimal privileges. Regular security assessments and penetration tests are conducted.
Retention
We retain personal data only as long as needed—typically 24 months from the last user interaction. After this period, data is securely deleted or irreversibly anonymized. Backup copies are purged within 90 days of retention expiration. Retention schedules are reviewed annually.
User Rights
You may request access to, correction of, or deletion of your personal data at any time. Valid requests are processed within 30 days, in accordance with applicable law. Data required for compliance or dispute resolution may be retained in anonymized form. You can also withdraw consent for optional processing.
Data Breach Notification
In the event of a confirmed breach, affected users will be notified within 72 hours of confirmation. Notifications will detail the breach’s nature, data categories affected, and recommended mitigation steps. Regulatory authorities will be informed as required. A post‑incident analysis will improve future defenses.
Anonymization
Direct identifiers are removed or replaced with pseudonyms before analytic use. Aggregated data contains no individual‑level details and cannot be re‑identified. Anonymized data may be retained indefinitely for research and performance monitoring. This ensures privacy without losing insight.
Third‑Party Processors
We only share data with essential third‑party service providers under strict data protection agreements (e.g., hosting, payment, email). Each provider is regularly audited for compliance. No data is shared with marketing or advertising networks without your explicit consent. All transfers are logged for audit.
Policy Updates
This policy is updated at least once per year or upon significant legal or operational changes. Material revisions are announced via email and in‑service notifications at least 14 days before taking effect. Continued use after the effective date constitutes acceptance. Archived versions remain available for review.
