Privacy Policy - mobilize-app.com

SUMMARY OF KEY POINTS

This summary provides key points from our privacy notice, but you can find more details about any of these topics by using the table of contents below to find the section you are looking for.

• What personal information do we collect? When you use the Mobilize App, we collect information such as your email, username, workout data, pain scale ratings, device information, and subscription details. Learn more in Section 2.

• How do we use your information? We use your data to provide the Mobilize App’s features including workout tracking, progress monitoring, and subscription management. Learn more in Section 3.

• Do we share your information? We share limited information with service providers like Supabase, RevenueCat, and app stores to provide our services. We don’t sell your personal data. Learn more in Section 5.

• How long do we keep your information? We retain your account data as long as your account is active, and workout data for historical analysis until you delete it. Learn more in Section 7.

• What are your rights? Depending on your location, you may have rights to access, correct, delete, or restrict the processing of your personal information. Learn more in Section 8.

• How do we protect your information? We use security measures like encryption, row-level security, and secure APIs to protect your data. Learn more in Section 6.

• Do we collect information from minors? The Mobilize App is not intended for users under 18 years of age. Learn more in Section 9.

Questions or concerns? Contact us at support@mobilize-app.com if you have questions or concerns about this privacy policy.

TABLE OF CONTENTS

1. DATA CONTROLLER
2. COLLECTION OF PERSONAL DATA
3. USE OF PERSONAL DATA
4. COOKIES AND ANALYTICS
5. SHARING OF PERSONAL DATA
6. DATA STORAGE AND SECURITY
7. DATA RETENTION
8. USER RIGHTS AND CONTROLS
9. CHILDREN’S PRIVACY
10. INTERNATIONAL DATA TRANSFERS
11. SPECIFIC PROVISIONS FOR DIFFERENT JURISDICTIONS
12. CHANGES TO THIS PRIVACY POLICY
13. CONTACT US
14. LEGAL BASES FOR PROCESSING
15. APP-SPECIFIC DATA PRACTICES
16. PRIVACY POLICY DISCLOSURES FOR APP STORES

This Privacy Policy describes how your personal data is collected, used, and shared when you use the Mobility and Recovery App mobile application (“App”), visit the Mobility and Recovery website (“Website”), or use any of our related services (collectively, the “Services”).

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with any part of this policy, please do not use our Services.

1. DATA CONTROLLER

The processing of personal data of users is carried out under the responsibility of:

Soumbos Osteopathy, a sole proprietorship owned and operated by Andrew Soumbos
support@mobilize-app.com

2. COLLECTION OF PERSONAL DATA

2.1 User Account Data

When you create an account with our Services, we collect the following personal information:
• Email address (required)
• Username (required)
• Full name (optional)
• User ID (automatically generated)
• Password (securely stored, not in plaintext)

2.2 Exercise and Program Data

When you create custom exercises or programs, we collect:
• Exercise name, description, and type
• Target body areas
• User-provided instructions
• Associated images or video references (if uploaded)
• Program name and description
• Included exercises
• Program structure and organization
• Target goals

2.3 Workout Tracking Data

When you log workouts, we collect:
• Date and time of workouts
• Completed exercises
• Exercise parameters (reps, sets, duration, weight, band resistance)
• Pain scale ratings (1-10)
• User notes and observations
• Timestamps for creation and updates

2.4 Usage Data

As you use our Services, we may automatically collect:
• Saved exercises and programs
• Viewed content
• Feature usage patterns
• Session duration
• Pages or screens viewed
• Time spent on specific features

2.5 Technical Data

We may collect the following technical information:
• Operating system and version
• Device type and model
• App version
• Connection type (for Data Saver mode)
• IP address
• Browser type (when using the Website)
• Internet service provider
• Language preferences
• Crash reports and error logs (for app improvement and bug fixing)
• Device identifiers (such as IDFA on iOS or Advertising ID on Android, only with your consent)

2.6 Subscription Data

For users who purchase premium features:
• Subscription type (monthly/annual)
• Purchase date
• Expiration date
• Payment information (processed through secure payment providers)
• Trial usage status
• Promotional code usage (if applicable)

2.7 Data We Do Not Collect

For transparency, we want to clarify that we do not collect:
• Precise geolocation data
• Contacts or address book information
• Photos or videos from your device (except those you explicitly upload for custom exercises)
• Health data from Apple HealthKit, Google Fit, or similar services
• Biometric data (like fingerprints or facial recognition data)
• Background location tracking
• Browsing history outside our App

3. USE OF PERSONAL DATA

We use the personal data we collect for the following purposes:

3.1 Providing and Improving Our Services
• To set up and manage your account
• To provide the features and functionality of the Services
• To personalize your experience with the Services
• To respond to your inquiries and provide customer support
• To maintain and improve the Services
• To develop new features and functionality

3.2 Workout and Progress Tracking
• To enable you to log and record your workouts
• To generate visualizations of your pain levels and recovery progress
• To monitor your workout frequency and consistency
• To provide insights about your exercise habits and recovery
• To allow you to review your workout history and notes

3.3 Content Management
• To provide access to pre-loaded exercises and programs
• To store and manage your custom exercises and programs
• To enable you to save and access favorite exercises and programs
• To allow you to search and filter exercises by name or target area

3.4 Subscription Management
• To process payments for premium subscriptions
• To manage access to premium features
• To process and maintain your subscription status
• To communicate about subscription-related matters

3.5 Technical and Security Purposes
• To ensure the proper functioning of the Services
• To diagnose and fix technical issues
• To maintain the security and integrity of the Services
• To prevent fraud and unauthorized access

3.6 Communications
• To send you service-related notifications and updates
• To communicate about changes to our policies or features
• To send you promotional communications (where permitted)
• To respond to your questions and requests

3.7 Analytics and Improvement
• To analyze usage patterns and trends
• To monitor the performance of the Services
• To measure the effectiveness of features
• To identify areas for improvement

3.8 Legal Compliance
• To comply with applicable laws and regulations
• To respond to legal requests and prevent harm
• To enforce our Terms of Service and other policies

4. COOKIES AND ANALYTICS

4.1 Cookies and Similar Technologies

Our Services may use cookies, local storage, and similar technologies to enhance your experience and collect information about how you use our Services.

A cookie is a small file that is placed on your device when you use our Services. Cookies help us analyze web traffic, remember your preferences, and improve our Services. Similar technologies, such as web beacons, pixels, and local storage, may also be used for these purposes.

The types of cookies and similar technologies we may use include:

• Essential cookies: Necessary for the basic functionality of our Services, such as allowing you to remain logged in and access your workout data
• Preference cookies: Remember your settings and preferences, such as language preferences and Data Saver mode settings
• Analytics cookies: Help us understand how you use our Services, which exercises you view most frequently, and how you navigate through the app
• Authentication cookies: Maintain your logged-in state during a session

Most web browsers and mobile devices allow you to manage cookie preferences. You can set your browser or device to refuse all or some cookies, or to alert you when cookies are being sent. However, if you disable or refuse cookies, some parts of our Services may not function properly, such as the ability to save your workout progress or view your exercise history.

4.2 Analytics Services

We use third-party analytics services to help us understand how users engage with our Services. These services may collect information about your use of our Services, including through cookies and similar technologies. The information generated about your use of our Services may be transmitted to and stored by these service providers on servers outside of Canada.

We use the following analytics services:

• Google Analytics: Used to collect information about how users interact with our Services, such as which features are most used, typical workout durations, and app usage patterns. Google Analytics uses cookies and similar technologies to collect and analyze information about the use of the Services and to report on activities and trends. This service may also collect information regarding the use of other websites, apps, and online resources. You can learn more about Google’s practices and opt-out options at www.google.com/policies/privacy/partners/.

The data collected by these analytics services is primarily used in an aggregated and anonymized form to help us improve the App and does not personally identify you.

4.3 Do Not Track Signals

Some browsers offer a “Do Not Track” feature that signals to websites that you do not want to have your online activities tracked. Because there is currently no industry standard for recognizing or implementing Do Not Track signals, we do not currently respond to them. If an industry standard is established and adopted that we follow in the future, we will inform you about that practice in a revised Privacy Policy.

5. SHARING OF PERSONAL DATA

5.1 Service Providers

We may share your personal data with third-party service providers who perform services on our behalf, such as:

• Hosting and cloud storage providers
• Payment processors
• Analytics providers
• Customer support services
• Email and communication providers
• Authentication service providers

These service providers are only authorized to use your personal data as necessary to provide services to us and are contractually obligated to maintain appropriate security measures to protect your data.

5.2 Supabase and Data Processing Partners

We use Supabase as our primary database service provider. All user data is stored in Supabase databases with appropriate row-level security measures in place. For information about Supabase’s privacy practices, you can visit their privacy policy at https://supabase.io/privacy.

5.3 App Stores and Payment Processors

When you download our App through the Apple App Store or Google Play Store, please note that Apple and Google collect certain data related to your download and use of their platforms. Similarly, when you make purchases:

• For iOS users: Apple processes all payments for subscriptions and in-app purchases. We do not receive or store your full payment details, only information about your subscription status. Apple’s privacy policy applies to the payment process: https://www.apple.com/legal/privacy/

• For Android users: Google processes all payments for subscriptions and in-app purchases. We do not receive or store your full payment details, only information about your subscription status. Google’s privacy policy applies to the payment process: https://policies.google.com/privacy

We also use RevenueCat to manage subscriptions across platforms. RevenueCat receives limited data to verify and manage your subscription status. RevenueCat’s privacy policy can be reviewed at: https://www.revenuecat.com/privacy

5.4 Third-Party SDKs

Our App uses the following third-party software development kits (SDKs) that may collect data as described:

• RevenueCat SDK: Used for managing subscriptions and in-app purchases. Collects purchase information, device identifiers, and user IDs to verify subscription status.

• Flutter SDK: Used as our app development framework. May collect crash reports and performance data to improve app stability.

• Supabase SDK: Used for database and authentication services. Processes login information and stored app data.

Each of these SDKs has their own privacy policy and data collection practices. We carefully select third-party services that maintain high privacy standards.

5.5 Legal Requirements

We may disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency). We may also disclose your personal data when we believe in good faith that disclosure is necessary to:

• Comply with a legal obligation
• Protect and defend our rights or property
• Prevent or investigate possible wrongdoing in connection with the Services
• Protect the personal safety of users of the Services or the public
• Protect against legal liability

5.6 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of company assets, your information may be transferred as part of that transaction. We will notify you (for example, via a message to the email address associated with your account) of any such change in ownership or control of your personal data.

5.7 With Your Consent

We may share your personal data with third parties when you have given us your consent to do so.

5.8 Non-Personal and Aggregated Information

We may share non-personal, aggregated, or de-identified information with third parties for research, marketing, analytics, and other purposes, provided such information does not identify a particular individual.

6. DATA STORAGE AND SECURITY

6.1 Data Storage

• User account data and content is stored in secure Supabase databases
• Authentication information is managed through Supabase Auth
• Media content (videos, images) is stored in secure cloud storage with content delivery network (CDN) services
• Local data caching is implemented on your device for performance optimization with appropriate time-to-live (TTL) limitations

6.2 Security Measures

We implement appropriate technical and organizational security measures designed to protect your personal data from accidental loss and unauthorized access, use, alteration, or disclosure. These measures include:

• Row-Level Security (RLS) to ensure users can only access their own data
• Secure management of authentication tokens
• Validation and authentication of API requests
• Secure password storage (not stored in plaintext)
• Restriction of admin-only operations through security policies
• Encryption of data in transit using HTTPS/TLS
• Regular security assessments and updates

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

7. DATA RETENTION

7.1 Account Data

We retain your account data as long as your account is active or as needed to provide you with the Services. If you delete your account, we will delete or anonymize your account data within 30 days following your request, unless we are required to retain it for legal obligations.

7.2 Workout and Exercise Data

• Workout logs and tracking data are retained for historical analysis and to provide you with insights about your progress for as long as your account remains active
• Custom exercises and programs you create are retained until you delete them or your account
• Pain scale tracking information is retained to show trends over time and is stored as long as your account is active

7.3 Usage Data

We may retain usage data in an aggregated and anonymized form for analytical purposes for up to 24 months after you have deleted your account.

7.4 Payment Information

Payment information is retained for a period of 7 years as required for legal and accounting purposes.

7.5 Retention After Account Deletion

After you delete your account:

• Your personal profile information will be deleted from our active databases within 30 days
• Your custom content (exercises, programs, workout logs) will be deleted or anonymized within 30 days
• Information required for legal compliance purposes may be retained in an anonymized form for up to 7 years
• Backup copies may exist in our system for up to 90 days but are not generally accessible

You may request deletion of your account and personal data by contacting us at support@mobilize-app.com. We will respond to your request within a reasonable timeframe.

8. USER RIGHTS AND CONTROLS

8.1 Your Rights

Depending on your jurisdiction, you may have certain rights regarding your personal data, including:

• Right to Access: You have the right to request information about the personal data we hold about you.

• Right to Rectification: You have the right to request correction of inaccurate personal data or completion of incomplete personal data.

• Right to Erasure: You have the right to request deletion of your personal data in certain circumstances.

• Right to Restrict Processing: You have the right to request restriction of processing of your personal data in certain circumstances.

• Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

• Right to Object: You have the right to object to the processing of your personal data in certain circumstances.

• Right to Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.

8.2 How to Exercise Your Rights

To exercise any of the rights described above, please contact us at support@mobilize-app.com. We will respond to your request within a reasonable timeframe and in accordance with applicable data protection laws.

8.3 Account Controls

Our Services provide you with various controls to manage your personal data:

• Profile Settings: You can update your profile information directly in the App through the Profile section.

• Custom Content: You can delete your custom exercises, programs, and workout logs directly in the App.

• Password Management: You can change your password and reset it if needed.

• Account Deletion: You can request to delete your account by contacting us at support@mobilize-app.com.

• Data Saver Mode: You can control video streaming when on cellular networks through the Data Saver mode in the App settings.

• Analytics Opt-Out: You may have the option to opt out of certain analytics features within the App settings.

8.4 Limitations

Please note that there may be circumstances where we cannot fully address your request, for example:

• Where we have a legal obligation to retain certain data
• Where we need to retain data for our legitimate business purposes
• Where the data is necessary to establish, exercise, or defend legal claims

In such cases, we will communicate the reason for our inability to fully address your request.

9. CHILDREN’S PRIVACY

The Services are not directed to children under the age of 18, and we do not knowingly collect personal data from children under 18. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us at support@mobilize-app.com. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

In accordance with our Terms of Service, users must be 18 years of age or older to use our Services and to purchase our paid Services. If you believe we have collected information from a person under the age of 18, please contact us at support@mobilize-app.com.

10. INTERNATIONAL DATA TRANSFERS

Your personal data may be transferred to, and processed in, countries other than the country in which you reside. These countries may have data protection laws that are different from the laws of your country.

Our servers are located in Canada and the United States, and our service providers and partners operate around the world. This means that when we collect your personal data, we may process it in any of these countries.

However, we have taken appropriate safeguards to require that your personal data will remain protected in accordance with this Privacy Policy. These include:

• Implementing the European Commission’s Standard Contractual Clauses for transfers of personal data between our service providers, which require all parties to protect personal data to the standard required by EU data protection law
• Ensuring our data processors in the United States comply with the EU-US Data Privacy Framework
• Using encryption for data in transit and at rest
• Implementing strict access controls to limit who can access your data
• Regular security assessments of our service providers

We comply with the requirements of the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada, and take appropriate measures to ensure that any international transfers of your personal data are lawful.

For users in the European Economic Area (EEA), United Kingdom, or Switzerland, please note that when we transfer your personal data outside these regions, we ensure adequate protection through appropriate safeguards as required by applicable data protection laws.

11. SPECIFIC PROVISIONS FOR DIFFERENT JURISDICTIONS

11.1 Canadian Residents

If you are a resident of Canada, you are entitled to rights under PIPEDA and applicable provincial privacy laws.

11.2 European Economic Area (EEA), United Kingdom, and Swiss Residents

If you are in the EEA, United Kingdom, or Switzerland, you may have additional rights under the General Data Protection Regulation (GDPR) or similar legislation. The legal basis for processing your personal data may include:

• Contractual necessity: Processing is necessary for the performance of a contract to which you are a party.
• Legitimate interests: Processing is necessary for our legitimate interests, such as improving our Services.
• Consent: You have given consent to the processing of your personal data for one or more specific purposes.
• Legal obligation: Processing is necessary for compliance with a legal obligation.

If you believe that our processing of your personal data infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection.

11.3 California Residents

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) or California Privacy Rights Act (CPRA).

Under California law, California residents have the right to:
• Know what personal information is being collected about them
• Know whether their personal information is sold or disclosed and to whom
• Say no to the sale of their personal information
• Access their personal information
• Request deletion of their personal information
• Not be discriminated against for exercising their privacy rights

California residents can exercise these rights by contacting us at support@mobilize-app.com.

California “Shine the Light” Law: California residents may request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at support@mobilize-app.com.

11.4 Virginia, Colorado, Connecticut, and Utah Residents

Residents of Virginia, Colorado, Connecticut, and Utah may have additional privacy rights under their respective state laws. These rights may include the right to access, correct, delete personal data, opt out of targeted advertising, and more. To exercise these rights, please contact us at support@mobilize-app.com.

12. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes to our practices, technology, legal requirements, and other factors. If we make material changes, we will notify you by email (sent to the email address specified in your account) or by means of a notice on the Services prior to the changes becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

The date of the last modification is shown at the top of this Privacy Policy. Your continued use of the Services after any modification to this Privacy Policy will constitute your acceptance of such modifications.

13. CONTACT US

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: support@mobilize-app.com

Postal Address:
Soumbos Osteopathy, a sole proprietorship owned and operated by Andrew Soumbos
support@mobilize-app.com

We will respond to your inquiry within a reasonable timeframe.

14. LEGAL BASES FOR PROCESSING

We only process your personal information when we have a valid legal reason to do so. Depending on your location, these legal bases may include:

14.1 Contractual Necessity

We process your personal data when it is necessary for the performance of a contract to which you are a party, such as our Terms of Service. This includes:
• Creating and managing your account
• Providing access to the exercise library and workout features
• Enabling you to log workouts and track progress
• Processing subscription payments
• Allowing you to create custom exercises and programs

14.2 Legitimate Interests

We may process your personal data when it is necessary for our legitimate interests, provided these interests are not overridden by your rights and freedoms. Our legitimate interests include:
• Improving the Mobilize App’s functionality and user experience
• Analyzing app usage patterns to enhance features
• Ensuring the security and stability of our Services
• Troubleshooting technical issues and bug fixing
• Preventing fraudulent activity and unauthorized access

14.3 Consent

In some cases, we process your personal data based on your consent. This applies to:
• Optional profile information beyond what’s required for account creation
• Marketing communications (where applicable)
• Certain types of cookies and analytics
• Collection of custom images for custom exercises

You have the right to withdraw your consent at any time by contacting us at support@mobilize-app.com or through the app settings.

14.4 Legal Obligations

We may process your personal data when necessary to comply with our legal obligations, such as:
• Responding to valid legal requests from authorities
• Complying with tax and accounting requirements
• Meeting data protection obligations
• Fulfilling consumer protection requirements

15. APP-SPECIFIC DATA PRACTICES

15.1 Exercise Library Data

The App provides access to a library of pre-loaded exercise videos and images. When you interact with this content:

• We record which exercises you view
• We track whether you save exercises to your favorites
• We monitor when you use Data Saver mode for video streaming
• We do not track your physical movements or use device cameras for monitoring exercise form

15.2 Pain Scale Tracking

The App allows you to track subjective pain levels on a scale of 1-10 for each workout session:

• This information is stored in your account
• It is used to generate visualizations and track your recovery progress over time
• Pain scale data is never used for medical diagnosis purposes
• We do not share your pain scale data with third parties unless explicitly authorized by you

15.3 Custom Exercise Content

When you create custom exercises:

• Any images or videos you upload are stored in our secure cloud storage
• You maintain ownership of your custom content
• Your custom exercises are only visible to your account
• You can delete your custom exercises at any time

15.4 Workout Logging

When logging workouts:

• Your workout history is stored indefinitely to enable long-term progress tracking
• Workout logs include timestamps, exercise parameters, and notes
• You can export your workout data through our API (if available)
• You can delete individual workout logs at any time

15.5 Progress Analytics

For progress tracking features:

• Analytics are generated based on your historical workout data
• Insights about consistency and progress are calculated specifically for your account
• We may use anonymized, aggregated workout data to improve our analytics algorithms
• No personally identifiable information is used in the development of our analytics tools

15.6 Offline Functionality

When using the App offline:

• Some data may be cached locally on your device
• This data is synchronized with our servers when connectivity is restored
• Local data is encrypted if your device supports encryption
• You can clear locally cached data through your device settings

15.7 Wearable Device Integration

If you choose to connect wearable devices to the App:

• We may collect activity data, heart rate, and other metrics from connected devices
• This data is only collected when you explicitly enable wearable integration
• Wearable data is subject to the same protection and privacy controls as other data
• You can disconnect wearable devices at any time through the App settings

15.8 Data Saver Mode

When you enable Data Saver mode:

• Video quality is reduced to conserve data usage
• We track your Data Saver preferences to optimize content delivery
• You can toggle this feature on or off at any time in the App settings

15.9 Subscription-Specific Data

For users with premium subscriptions:

• We track your subscription status, type, and renewal date
• Payment processing is handled by secure third-party payment processors
• We store limited payment information as required for subscription management
• You can manage your subscription directly through your App Store account

15.10 Bottom Navigation and UI Interaction

• We track how users navigate within the App to optimize user experience
• We collect data on which sections (Log, Library, Profile) are most frequently used
• Screen transition timing may be measured for performance optimization
• We do not record screen content beyond interaction analytics

15.11 Search and Filtering Features

When you search for exercises:

• Search queries are stored temporarily to improve search functionality
• We analyze common search patterns to improve our categorization
• Search history may be stored in your account to enable quick access to recent searches
• You can clear your search history in the App settings

15.12 Notes and Personal Observations

When you add notes to workout logs:

• Notes are stored securely within your account
• Notes are never analyzed for content except for technical support purposes
• Notes remain private to your account and are not shared with other users
• You can edit or delete notes at any time

15.13 Loading Indicators and App Performance

• We collect performance metrics to optimize the App’s operation
• This includes load times, response times, and crash reports
• Performance data is collected anonymously and used solely for technical improvements
• Critical errors may include limited device information for troubleshooting purposes

By using our Services, you acknowledge and consent to these app-specific data practices as part of our overall Privacy Policy.

16. PRIVACY POLICY DISCLOSURES FOR APP STORES

16.1 Required Disclosures

• Personal Information Collection: We collect personal information only for the specific, limited purposes described in this Privacy Policy. We do not collect more data than necessary to provide our Services.

• Data Minimization: We practice data minimization by only collecting information that is directly relevant and necessary for the functioning of the App and the features you use.

• Third-Party Access: We do not sell your personal information to third parties. We only share information with third parties as described in Section 5 of this Privacy Policy.

• Data Retention Period: We retain your data as described in Section 7 of this Privacy Policy. You may request deletion of your data at any time.

• User Controls: You have control over your personal information as described in Section 8 of this Privacy Policy.

• Privacy Policy Changes: Any changes to our Privacy Policy will be communicated to you as described in Section 12 of this Privacy Policy.

16.2 Apple App Review Guidelines Compliance

In compliance with Apple’s App Review Guidelines (Section 5.1):

• We collect data only for the purpose of providing App functionality
• We have appropriate permissions for any data collection
• We provide clear disclosure of data collection in this Privacy Policy
• We handle all data securely and protect user privacy
• We provide a method for users to revoke consent and request data deletion
• We respect Apple’s privacy standards, including App Tracking Transparency

16.3 Google Play Store Compliance

In compliance with Google’s Developer Program Policies:

• We are transparent about how we collect and use personal and sensitive user data
• We handle data securely, including transmission using HTTPS
• We limit our use of permissions to those necessary for providing App features
• We do not sell personal or sensitive user data
• We provide clear privacy controls for users
• We comply with children’s privacy regulations
• We use appropriate contractual protections for user data shared with third parties

16.4 Declaration of Compliance

We affirm that:

• This Privacy Policy accurately represents our data collection and processing activities
• We comply with all applicable privacy laws in the jurisdictions where our App is available
• We maintain appropriate security measures to protect user data
• We will promptly notify users of any material changes to our data practices
• We are accountable for our data handling practices and will respond to user inquiries about privacy concerns

16.5 App Store Data Collection Transparency Matrix

For complete transparency, we provide this matrix of data collection practices:

16.6 Required SDK Disclosures

In compliance with app store requirements, we provide these additional details about third-party SDKs:

• RevenueCat SDK (Version 4.x)
– Purpose: Subscription management across platforms
– Data collected: App user ID, purchase receipts, subscription status
– Privacy policy: https://www.revenuecat.com/privacy/
– Data sharing: No data sharing beyond subscription verification

• Supabase SDK (Version 1.x)
– Purpose: Database and authentication services
– Data collected: Account information, app data storage
– Privacy policy: https://supabase.io/privacy
– Data sharing: No data sharing beyond service functionality

• Flutter SDK (Various packages)
– Purpose: App framework and functionality
– Data collected: Varies by package, primarily for app functionality
– Privacy policy: https://flutter.dev/privacy
– Data sharing: No data sharing beyond app functionality

16.7 App Store Review Compliance Statement

We commit to maintaining these privacy practices and updating this policy as required by:

• Apple App Store Review Guidelines 5.1.1 – 5.1.5 (Privacy)
• Google Play Developer Program Policies (User Data)
• All applicable privacy laws in jurisdictions where our App is available

The App respects user privacy by only collecting data necessary for its functionality and providing clear options for users to control their data.

16.8 Do-Not-Track Preferences

As mentioned in Section 4.3, some web browsers have a “Do Not Track” feature that lets you tell websites that you do not want to have your online activities tracked. Because these signals are not yet standardized, we currently do not respond to Do Not Track browser signals. However, you can control the collection of certain data through the privacy settings in the App.

16.9 Data Access and Deletion Requests

You can request access to, correction of, or deletion of your personal data by:
• Emailing us at support@mobilize-app.com
• Using the account settings in the App to update profile information
• Requesting account deletion through the App or via email

We will respond to your request within 30 days (or as required by applicable law in your jurisdiction).

16.10 Appeals Process

If we decline to take action regarding your request about your personal data, you may appeal our decision by emailing us at support@mobilize-app.com with the subject line “Privacy Decision Appeal.” We will review your appeal and respond within 30 days with our final decision and explanation. If your appeal is denied, you may have the right to submit a complaint to your local data protection authority.

If you have any questions, please contact us at support@mobilize-app.com.