This Privacy Policy describes how we collect, use, store, and protect information obtained from visitors to our website and users of our suite of mobile applications, including the E-Commerce Platform, Music Streaming App, and Fitness Tracker. We are committed to maintaining the highest standards of privacy protection and transparency in our data handling practices across all digital platforms and services we provide.
Consent and Legal Basis
By using any of our digital properties (website or mobile applications), you hereby consent to this Privacy Policy and agree to its terms. Where required by law (e.g., GDPR), we rely on your explicit consent or the necessity of processing your data to perform a contract (such as providing account services).
Information We Collect
We collect various types of information depending on how you interact with our services. This includes data collected directly from our website and specific data points gathered by our mobile applications. This collection is performed through secure API interactions with services like Firebase.
- Contact & Account Data (Website & Apps): This includes your name, email address, and any personal information provided when submitting a contact form on the website, or user credentials (email/password) required to manage accounts securely. These credentials are managed via Firebase Authentication.
- Activity & Log Data (Website): We use standard internet logging procedures (Log Files) and "cookies" (small data files). Log data includes your IP address, browser type, Internet Service Provider (ISP), date/time stamp, and referring/exit pages. This is used for analyzing website trends and performance.
- E-Commerce Specific Data (E-Commerce Platform App) - Payment Information: All payment transactions are processed securely through a third-party service, Stripe. We do not store your credit card details on our servers.
- E-Commerce Specific Data (E-Commerce Platform App) - Usage Data: We track product views, cart contents, and purchase history, stored in Firebase Firestore, to provide personalized recommendations and manage inventory.
- Health & Location Data (Fitness Tracker App) - Health Data: With your explicit, opt-in permission, we may access health-related data (e.g., step count, calories burned) to display your progress. This data is primarily stored locally on your device via Room Database and, optionally, synchronized to Firebase Firestore for backup and cross-device functionality only.
- Health & Location Data (Fitness Tracker App) - Location Data: We request access to your precise location to track running or cycling routes. This location data is used solely for the functionality of tracking workouts and is stored in encrypted format.
- Media Access Data (Music Streaming App) - Storage Permissions: We request access to your device's storage to save downloaded music files for offline playback.
- Media Access Data (Music Streaming App) - Preferences: We track listening history and playlist creations, stored in Firebase Realtime Database, to refine our recommendation algorithms.
How We Use Your Information
The collected information is used to ensure the functionality, security, and continuous improvement of all our services:
- To provide, operate, and maintain all our digital properties and applications.
- To authenticate users, manage user profiles, and deliver essential services like order fulfillment (E-Commerce) or workout tracking (Fitness).
- To monitor, analyze, and diagnose usage and technical performance.
- To improve and personalize user experience, including developing new features and refining algorithms (e.g., music and product recommendations).
- To communicate with you regarding service updates, security alerts, and customer support.
Data Security, Retention, and International Transfer
Data Security Measures
We are committed to protecting your data. We implement technical and organizational security measures designed to protect the security of any personal information we process. Key measures include:
- Encryption: All sensitive data (including passwords and payment tokens) is encrypted both in transit (using SSL/TLS) and at rest (using Google Cloud's encryption services, as utilized by Firebase).
- Access Control: Access to stored data is strictly limited to necessary personnel via multi-factor authentication and role-based access control.
- Data Minimization: We only collect personal data that is strictly necessary for the purposes outlined in this policy.
Data Retention Policy
We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless otherwise required by law (e.g., tax, accounting, or legal requirements). The typical retention periods are:
- Account Data: Retained until the user requests account deletion, after which a grace period of 90 days allows for recovery before permanent deletion.
- Transactional Data: Retained for 7 years for tax and auditing purposes, even after account deletion.
- Health/Workout Data: Retained indefinitely unless specifically deleted by the user, as this data is necessary to maintain historical records for the Fitness Tracker App.
International Data Transfers
Since we utilize Firebase (Google Cloud Platform) for data storage, your information may be processed and stored in countries outside of your own, including the United States. We ensure that these transfers comply with all applicable data protection laws by relying on recognized legal mechanisms, such as Standard Contractual Clauses (SCCs), to guarantee an adequate level of protection for your data.
Third-Party Services & Data Sharing
We only share information with third-party service providers necessary to facilitate our operations. These providers include:
- Google Firebase: Provides authentication, cloud database services (Firestore/Realtime DB), and cloud functions, forming the core infrastructure for all apps.
- Stripe: Secure payment gateway used by the E-Commerce App.
- Google AdSense & Analytics: Used on the website for traffic analysis and personalized advertising (Google uses DART cookies for this purpose).
Contact Us
If you have any questions about this Privacy Policy, data access requests, or wish to exercise your data rights (including the right to delete your account data), please contact us at:
Email: contact.waxben@gmail.com