Privacy Policy for Mobile Applications

Effective as of February 01, 2025

This privacy policy ("Policy") applies to all mobile applications (the "Apps") developed and operated by Pylonex OÜ. If you use our Apps, this Policy explains how we protect your data and respect your privacy.

We last updated this Policy in February 2025.

Who We Are & How to Reach Us

Pylonex OÜ, a company registered at Tornimäe tn 3, 10145, Tallinn, EE.

Any reference to 'us', 'we', 'our', or the Company within this Privacy Policy includes all or any of the direct or indirect parent or subsidiary undertakings.

At Pylonex, we create mobile applications in Utility, Wellness, Lifestyle, Education, and Entertainment categories. We are dedicated to leveraging technology to enhance users' experiences while maintaining the highest standards of privacy and security.

You can contact us at support@pylonex.dev or via post to Tornimäe tn 3, 10145, Tallinn, EE. Please mark the envelope 'Data Protection'.

Personal Data

"Personal Data" is data that identifies you as an individual or relates to an identifiable individual. Pylonex OÜ is the 'controller' of your personal data. This means we decide how and why your data is processed any time you use our Apps. We go into this in more detail below.

Important Note About Data Storage

User-generated content and data created within our Apps remain stored locally on your device only. We do not store, collect, or have access to content you create, photos you edit, or personal files you generate within the Apps unless explicitly stated otherwise in the app.

Third-party service providers we use may collect and process certain technical and analytics data as described below. Any data processed by third parties is subject to their respective privacy policies.

Your Data Collected by Us and Third Parties

As you engage with our Apps, we and our third-party service providers gather personal data through the following means:

  • Data automatically collected by us and third parties: When you use our Apps, we and our service providers automatically collect certain details regarding your engagement and activities within the Apps. This may include specifics about your device, such as its model, operating system version, device identifiers, IP address, and data related to your actions within the Apps.

  • Data acquired via tracking technologies: To understand your interactions with our Apps better, we and our third-party partners utilize tracking technologies and SDKs. These enable us to retain particular details about you, such as your preferences, usage patterns, or previous interactions, thereby enhancing your experience and delivering tailored content.

  • Data collected based on app functionality: Depending on the specific app and features you use, we may collect location data (when relevant to app functionality), access to your camera or photo library (when you choose to use photo-related features), and other permissions you explicitly grant.

What Data We Collect

The personal data we and our third-party service providers may collect includes:

  • Device identifiers (IDFA, advertising ID, or similar identifiers);
  • Device information (model, operating system version, app version);
  • IP address and general location information;
  • Usage analytics and in-app behavior data;
  • Crash logs and diagnostic information;
  • Camera or photo library access (only when you actively use these features);
  • Location data (only when relevant to app functionality and with your permission);
  • Push notification tokens (if you enable notifications);
  • Subscription and payment information (processed by Apple through the App Store);
  • Email address (if you create an account or contact support);
  • Any other information you voluntarily provide when contacting us for support.

The specific data collected depends on which app you use and which features you enable.

Third-Party Service Providers

We use the following categories of third-party service providers, which may collect and process personal data:

  • Analytics Services: Firebase Analytics, Mixpanel, Amplitude
  • Crash Reporting and Logging: Sentry, Bugfinder
  • Subscription Management: RevenueCat
  • Advertising: Facebook SDK, Google Ads
  • Third-Party APIs: Including but not limited to Spotify API and other service-specific APIs depending on app functionality

Each of these service providers operates under their own privacy policies. We encourage you to review their privacy practices:

How We Use Your Data

We and our service providers use personal data in order to:

  • Provide, maintain, and improve our Apps and their functionality;
  • Understand how users interact with our Apps through analytics;
  • Diagnose and fix technical issues, bugs, and crashes;
  • Process subscription payments and manage your subscription status;
  • Send you important service-related notifications;
  • Comply with our legal obligations;
  • Prevent fraud and ensure the security of our Apps;
  • Deliver personalized advertising and content (where applicable);
  • Respond to your support requests and inquiries.

We process your personal data based on the following legal grounds:

  • Legitimate interests: We have a legitimate interest in maintaining and improving our Apps, analyzing usage patterns, and ensuring security, provided those interests are not outweighed by your rights;
  • Contract performance: Processing is necessary to provide the Apps and services you've requested;
  • Consent: Where required by law, we obtain your explicit consent (e.g., for location access, camera access);
  • Legal obligation: We may process data to comply with applicable laws and regulations.

How Long We Keep Your Data

Since user-generated content remains on your device only, we do not retain this content.

For technical and analytics data collected by us and third-party service providers:

  • Analytics and usage data is retained according to each service provider's retention policy (typically 14-26 months);
  • Crash logs and diagnostic data are retained for up to 90 days;
  • Support correspondence is retained for 2 years;
  • Subscription and payment records are retained as required by law (typically 7 years for financial records);
  • Device identifiers and IP addresses may be retained for up to 12 months for security and fraud prevention.

You can request deletion of your personal data at any time by contacting us. Please note that data held by third-party service providers is subject to their respective retention policies.

Sharing Your Data with Third Parties

We share your personal data only in the following circumstances:

  • Service Providers: We share data with third-party service providers listed above who help us operate, analyze, and improve our Apps;
  • Legal Requirements: We will disclose your data if required by law, court order, or to prevent fraud or other crime;
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity;
  • With Your Consent: We may share data with other parties when you explicitly consent.

We will not:

  • Sell or rent your personal data to third parties;
  • Share your personal data for third-party marketing purposes without your explicit consent.

International Data Transfers

Our third-party service providers may store and process your data in various locations, including the United States and the European Economic Area (EEA). When we transfer personal data outside the EEA or your country of residence, we ensure that appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission;
  • Privacy Shield certification (where applicable);
  • Other legally approved transfer mechanisms.

Security

We prioritize your personal data security. Here's how we and our service providers protect it:

  • We use industry-standard encryption for data transmission (HTTPS/TLS);
  • Our service providers maintain secure infrastructure with encryption at rest;
  • We limit access to personal data to authorized personnel only;
  • We regularly review and update our security practices.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

If you need to report a data breach or security concern, please contact us immediately at support@pylonex.dev.

Age Restrictions and Children's Privacy

Our Apps are intended for users aged 18 years or older, or the minimum age required by the specific App Store listing (whichever is higher).

We do not knowingly collect personal data from individuals under the age of 18 without parental consent. If we become aware that we have collected personal data from someone under 18 without proper consent, we will take steps to delete that information promptly.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us.

Your Privacy Rights

Depending on your location, you have rights regarding your personal data, including:

  • Access: Request a copy of your personal data.
  • Rectification: Ask us to correct incorrect or incomplete personal data.
  • Erasure: Request deletion of your personal data.
  • Objection: Object to how we use your personal data.
  • Restriction: Ask us to limit how we use your personal data.
  • Portability: Request your personal data in a machine-readable format.
  • Withdrawal of Consent: Withdraw your consent for personal data use at any time (this does not affect processing based on other legal grounds).
  • File Complaint: Lodge a complaint with your country's data protection supervisory authority.

To exercise these rights, contact us at support@pylonex.dev. We aim to respond within one month. We may need to verify your identity before fulfilling your request.

Please note that data held by third-party service providers may require separate requests to those providers.

Advertising and Tracking

Our Apps may display advertisements through third-party advertising networks (Facebook SDK, Google Ads). These networks may collect data about your device and usage patterns to deliver personalized advertising.

Opt-Out Options:

  • iOS Users: You can limit ad tracking by going to Settings > Privacy > Tracking and disabling "Allow Apps to Request to Track" or by going to Settings > Privacy > Apple Advertising and enabling "Limit Ad Tracking."
  • You can also reset your advertising identifier in your device settings.

Privacy Notice for California Residents, US

This section applies to California residents under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).

Categories of Personal Information Collected: As described above, we collect identifiers, device information, internet activity, and geolocation data.

Sale and Sharing of Personal Information: We do not sell your personal information for monetary consideration. However, some data sharing with advertising partners may be considered "sharing" under CCPA. You have the right to opt out of such sharing.

Sensitive Personal Information: We do not collect or process sensitive personal information as defined by California law, except where necessary to provide App functionality (e.g., precise location data with your consent).

Your California Rights:

  • Right to know what personal information is collected, used, and shared;
  • Right to delete personal information;
  • Right to opt out of the sale or sharing of personal information;
  • Right to correct inaccurate personal information;
  • Right to limit use of sensitive personal information;
  • Right to non-discrimination for exercising your rights.

How to Exercise Your Rights: Contact us at support@pylonex.dev with the subject line "California Privacy Rights Request." We will verify your identity and respond within 45 days.

Authorized Agent: You may designate an authorized agent to make requests on your behalf. The agent must provide proof of authorization.

Privacy Notice for Virginia, Connecticut, Colorado, Utah, and Nevada Residents, US

This section applies to residents of states with comprehensive privacy laws, including the Virginia Consumer Data Privacy Act (VCDPA), Connecticut Data Privacy Act (CTDPA), Colorado Privacy Act (CPA), and Utah Consumer Privacy Act (UCPA).

Data Collection and Use: We collect and use personal data as described in this Policy.

Your Rights: In addition to the rights described above, you may have the right to:

  • Opt out of targeted advertising;
  • Opt out of the sale of personal data;
  • Opt out of profiling in furtherance of decisions that produce legal or similarly significant effects.

Note: We do not sell personal data for monetary consideration. We do not engage in profiling that produces legal or similarly significant effects.

Appealing Our Decision: If we decline to take action on your request, you may appeal by contacting us at support@pylonex.dev with "Privacy Rights Appeal" in the subject line.

Privacy Notice for European Economic Area (EEA), UK, and Swiss Residents

If you are located in the EEA, UK, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) and equivalent laws:

Legal Basis for Processing: We process your personal data based on consent, contract performance, legitimate interests, or legal obligation as described above.

Data Protection Officer: For GDPR-related inquiries, contact us at support@pylonex.dev.

Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection supervisory authority.

International Transfers: We ensure appropriate safeguards for data transfers outside the EEA/UK/Switzerland.

Do Not Track Signals

Our Apps do not currently respond to "Do Not Track" signals or similar mechanisms. However, you can control tracking through your device settings as described in the "Advertising and Tracking" section above.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Apps, legal requirements, or for other operational reasons.

We will notify you of material changes by:

  • Updating the "Effective as of" date at the top of this Policy;
  • Posting a prominent notice within the Apps;
  • Sending you an email notification (if we have your email address).

We encourage you to review this Policy periodically. Your continued use of our Apps after changes are posted constitutes your acceptance of the updated Policy.

Our Apps may contain links to third-party websites, services, or APIs (such as Spotify). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal data.

App-Specific Terms

Some of our Apps may have additional privacy terms specific to their functionality. Where applicable, we will notify you of such terms within the specific App or before you enable certain features. Those app-specific terms will supplement this Privacy Policy.

Medical and Health Disclaimer

Important: Our Apps are not intended to provide medical advice, diagnosis, or treatment. Any health, fitness, nutrition, or wellness-related features are for informational and educational purposes only. Always consult with qualified healthcare professionals before making health-related decisions. We are not liable for any health outcomes resulting from use of our Apps.

Any data related to health, fitness, or wellness that you input into our Apps remains on your device only and is not transmitted to us unless explicitly stated otherwise.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Email: support@pylonex.dev

Mail: Pylonex OÜ, Tornimäe tn 3, 10145, Tallinn, EE (Mark envelope 'Data Protection')

We will respond to your inquiry within a reasonable timeframe, typically within 30 days.

Last Updated: February 01, 2025