Privacy policy
IMPORTANT INFORMATION
In order to use the Services, we may ask you to enter your gender, date of birth, place of birth, and time of birth. We also automatically collect language settings, IP address, time zone, type and model of a device, device settings, operating system, Internet Service provider, mobile carrier, hardware ID, Facebook ID, and other unique identifiers (such as IDFA and GAID) from your device. We need this data to provide Services, analyze how our customers use Services, and serve advertising.
To improve Services and serve advertising, we may share this data with third parties, including. Meta, TikTok, Google, Apple, Appsflyer, Amplitude, Firebase, and Twillio. We share this data with third parties to (1) analyze how you interact with the Services (e.g. how often users make subscriptions,) and (2) serve advertising and show them only to a particular group of users (e.g., to subscribers). Read the Policy to get more information about what data we collect (Section 2), how we use it (Section 3), and what data privacy rights are available to you (Section 5).
If you are a US resident, check our Privacy Notice for U.S. Residents.
PRIVACY POLICY
This Privacy Policy explains how we (“Nebula”, “Provider”, “we”) collect, use, store, and share your personal data when you use our mobile applications, websites, and related services (collectively, the “App” or “Services”).a
BY USING THE SERVICE, YOU PROMISE US THAT (I) YOU HAVE READ, UNDERSTAND, AND AGREE TO THIS PRIVACY POLICY, AND (II) YOU ARE AT LEAST 16 YEARS OLD. If you do not agree, or are unable to make this promise, you must not use the Services. In such case, you must (a) delete your account and personal data using the account settings in the App, (b) cancel any subscriptions you have using the account settings in the App or the functionality provided by provided by Apple (if you are using iOS) or Google (if you are using Android), and (c) delete the App from your devices.
Any translation from the English version is provided for your convenience and transparency purposes only. In the event of any difference in meaning or interpretation between the English language version of this Privacy Policy available at https://shop.asknebula.com/policies/privacy-policy and any translation, the English language version will prevail. The original English text shall be the sole legally binding version.
TABLE OF CONTENTS
1. PERSONAL DATA CONTROLLER
2. CATEGORIES OF PERSONAL DATA WE COLLECT
2.1 Data you directly provide to us
2.2.Data we receive from third parties
2.3.Data we collect automatically
3. PURPOSES AND LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA
4. HOW WE SHARE YOUR PERSONAL DATA
5. YOUR PRIVACY RIGHTS
6. AGE LIMITATION
7. INTERNATIONAL DATA TRANSFERS
8. DATA RETENTION
9. PRIVACY NOTICE FOR U.S. RESIDENTS
9.1.Applicability
9.2.Categories of Personal Information We Collect
9.3.Purposes of Processing Personal Information
9.4.Categories of Personal Information We Disclose and Share with Third Parties
9.5.Your Rights
10. SECURITY MEASURES
We use reasonable and appropriate organisational, technical, administrative, and physical security measures as required by relevant laws to protect your personal data from unauthorized access, disclosure, use, and modification. We regularly review our security procedures and policies to consider appropriate new technology and methods. However, the Internet is not 100% secure and we cannot promise that your use of the Services of the App will be completely secure. We encourage you to use caution when using the Internet, including not sharing your passwords to our Services.
11. THIRD-PARTY WEBSITES AND APPLICATIONS
12. CHANGES TO THIS PRIVACY POLICY
13. CONTACT US
1. PERSONAL DATA CONTROLLER
Yolo Brothers Inc. (with registered office at 500 North Rainbow Blvd, Suite300, Las Vegas, Nevada 89107) will be the controller of your personal data.
2. CATEGORIES OF PERSONAL DATA WE COLLECT
We collect the following data about you:
- Data you directly provide to us (for example, date of birth).
- Data we receive about you from third parties (for example, when you sign in via Google).
- Data we also collect data automatically when you use the Services (for example, your IP address).
2.1. Data you directly provide to us
Identifiers. This may include your name, phone number, and email address. You provide us with this information when you register for the Services, purchase the Services, subscribe to our newsletters or other communications, or contact us by any other means.
Onboarding and product data. You provide us with onboarding information, quiz answers, and login details when you register for the Services and/or go through the onboarding process and/or use the Services. This may include gender, date of birth, place of birth, time of birth, login and password, and answers to quiz questions. We may ask for your palm image data to provide you with the relevant parts of the Services (i.e., to create a reading for you). We do not process your palm image for identification purposes.
Communications data. When you interact with the experts or our Support Team via online chats or calls, we process the text and/or contents of your conversations. This data includes any information you may share during these conversations such as your inquiries, feedback, questions, goals, interests, photographs, or any other details you may discuss. We also process the personal data and the information you send us when you submit requests through any request, contact, or feedback form available within the Services or the App.
Payment data. When you make payments through the Services, you need to provide financial account data, such as your credit card number, to our third-party service providers that serve us as data and payments processors. We do not collect or store, or have access to full credit card number data, though we may receive some limited information, including credit card-related data (including a secure token reflecting your payment method), data about products or services purchased, date, time and amount of the purchase, the type of payment method used, and limited digits of your card number.
2.2. Data we receive from third parties
Third-party account ID numbers. When you create an account or login in the App using your third-party account (Google, Apple, Meta), we get personal data from that third party. This data may include your account ID number, name, profile picture, and verified email address.
Apple Sign-in. When you sign in with Apple to register an account in the App, we get personal data from your Apple ID account. This data may include, in particular, your name and verified email address. You may choose to share your real email address or an anonymous one that uses the private email relay service. Apple will show you their detailed privacy information on the sign in with the Apple screen. Find more about sign-in with Apple here.
Facebook Sign-In. When you decide to log in using Facebook, we get personal data from your Facebook account. This includes your name and Facebook ID. Unless you opt out on the Facebook Login screen, we will also collect your email address. For more information, please refer to the Facebook Permissions Reference (describes the categories of information, which Facebook may share with third parties and the set of requirements) and to the Facebook Data policy. In addition, Facebook lets you control the choices you made when connecting your Facebook profile to the Website on their Apps and Websites page.
Google Sign-In. When you decide to log in using Google, we receive personal data from your Google Account: name, email address, and profile picture associated with your Google Account. You can revoke access provided to us on the Apps Permissions page. To know more about how Google processes your data, visit their Privacy Policy.
Mobile application marketplace data. When you download Nebula’s mobile application from the marketplace, they automatically share with us data regarding your interaction with their platform and the marketplace's webpage of our application. This data may include your click time, time when the application’s download process started, total time of download, search keyword ID, and type of your conversion and engagement with the marketplace.
2.3. Data we collect automatically
Advertising performance data. We collect data about your referring application or URL (the application or place on the Web you were on when you tapped on our advertising). This may include user ID number, name and type of the advertising campaign, name and ID number of the advertising, and advertising click time.
Device and Location data. We collect data from your mobile device. This may include device ID number, language settings, user ID number, IP address, time zone, type and model of a device, device settings, operating system, screen resolution, Internet Service provider, mobile carrier, hardware ID, and Facebook ID. Also, if your device settings allow us to do so, we may collect your location data when you visit our websites or open our mobile application, including such parameters as city, region, country, postal code, designated market area, longitude, and latitude.
Online activity data and Consumption information. We record how you interact with our Services. For example, we log what features and content you interact with, how often you use the Services or the App, how long you stay in the Services or the App, what sections you use, your subscription orders, whether you view communications we send you, to what extent you consume in-app purchases, and other. This category of personal data includes Consumption Information, which may be shared with Apple’s App Store.
Advertising IDs. Depending on the operating system of your device, we collect your Apple Identifier for Advertising (“IDFA”), Apple Identifier for Vendors (“IDFV”), or Google Advertising ID (“GAID”). You can typically reset these numbers through the settings of your device’s operating system; we do not control these settings or the reset process.
Cookies and similar tracking technologies. We employ technologies (cookies, SDKs, etc.) to process your data to enhance your user experience, optimize ads, and analyze traffic. For example, we use proprietary cookies necessary to operate the Services: they enable page loading, session management, security and fraud prevention, remember your preferences, and support evaluation of user interactions with new features. They collect limited information about your use of the Services, such as page requests, load times, error logs, etc., for operational and diagnostic purposes. We also use Meta Pixel, TikTok Pixel, and Google tracking technologies to collect data about your actions while using the Services, including which pages you visit, the time you spend on each page, and the actions you take. This data is used to measure the effectiveness of our advertising campaigns and to personalize the content and advertising we show to customers. Unless the applicable laws permit otherwise, we activate these technologies upon your consent when you interact with the Service, visit our websites, use the App, or enable certain features of the Services. Disabling these technologies may affect the functionality of certain features, although the Services will remain usable. Furthermore, we and our partners utilize targeting technologies to tailor advertising, potentially displaying them to you at relevant moments. When enabled, your interactions with the Services or the App could result in seeing our advertising on social media platforms, assisting us in measuring advertising campaign effectiveness. Check our Cookie Policy for more information.
2.4. Nebula online store data
When you buy physical products in our online store, we collect personal data you provide to us when you place an order - this may include your name, email address, billing and shipping addresses, phone number, and details about your order, including discounts and delivery method. Payments are processed by Shopify Payments or your selected payment provider; we do not receive full card details, only limited information such as card type, last four digits, payment token, and payment status.
When you browse the online store, our service provider, Shopify, also collects and sends us your technical and usage information - this information may include IP address, device and browser type, cookie or session identifiers, pages viewed, timestamps, referrer, and approximate location.
If you choose to sign in with Shopify’s “Shop” login, Shopify provides us with your Shop account identifier and verified email address. If your account settings permit that, Shopify may also provide us with your name and saved address/phone for faster checkout and account setup. You can manage your preferences and access settings in the Shop app or at Shopify website.
For more information on Shopify’s data processing practices, please check Shopify’s Privacy Policy.
2.5. Aggregated and de-Identified data
We may aggregate, anonymize, or de-identify your personal data to ensure it cannot reasonably be used to identify you individually. This processed data may be used for statistical analysis and trend identification, to improve our Services, develop new features, or other lawful purposes. For example, we may analyse aggregated online activity, payment, and advertising performance data to identify common interest patterns among customers, which helps us enhance our Services and contribute to their overall quality. Such aggregated data no longer constitutes personal information under applicable privacy laws.
3. PURPOSES AND LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA
We collect and use your data primarily to (1) provide and improve our Services, (2) enhance overall quality of Services, and (3) attract new customers to our Services. Below is a detailed explanation of the legal bases for and purposes of processing your personal data.
|
Purpose of processing |
Category of personal data |
Lawful basis |
|
To provide Services (e.g., provide content for you) and administer your account |
|
Performance of a contract with you |
|
To process your orders |
|
Performance of a contract with you |
|
To research, analyze, and enhance performance of the Services |
|
Legitimate interest |
|
To ensure quality control and safety of the Services |
|
Performance of contract (to ensure communications between customers and experts are of a proper quality, safe, and compliant with laws, our agreements and policies; to resolve issues and disputes with customers; to respond to crash error system reports; to ensure that individuals responsible for providing the Services deliver the necessary quality of work) |
|
To provide customer support |
|
Performance of a contract with you |
|
To enable communication with the experts |
|
Performance of a contract with you |
|
To process payments, refunds, and chargebacks |
|
Performance of a contract with you (if we fulfil contractual terms) Legal obligation (if we take action as required by the law) |
|
To enforce Terms and Conditions of Use, prevent and combat fraud, violations of law and misbehavior, and ensure informational security of the Services |
|
Legal obligation (if we take action as required by the law) Legitimate interest (to enforce our legal rights, policies, rules, prevent and address fraud, violations of law, misbehaviour or unauthorized use of the Services; to prevent attacks on and unauthorised access to the Services; to ensure compliance with our Terms and Conditions of Use. This helps provide a secure and reliable Services for all users) |
|
To send communications about the Services (by emails, SMS, push or in-chat notifications) |
|
Performance of a contract with you |
|
To send marketing communications |
|
Your consent Legitimate interest (in jurisdictions where consent is not required: to encourage you to use Services, for example, to notify you that the expert is online; to promote the Services, for example, if you didn’t complete the purchase before, we keep your palm image data for a limited period of 3 months to send reminder emails inviting you to purchase your palm reading — we use your palm image data solely to create reading). |
|
To serve personalized advertising |
|
Your consent Legitimate interest (in jurisdictions where consent is not required, to promote the Services in a measured and reasonably targeted way, showing you content that's more likely to be relevant to your interests rather than generic advertising) |
|
To analyze performance of advertising (measuring impression accuracy, ensuring proper ad placement and quality, confirming compliance with industry standards) |
|
Your consent Legitimate interest (in jurisdictions where consent is not required, to promote the Services in a measured and appropriate way and to ensure the accuracy and quality of our advertising campaigns and complying with industry standards. This helps us measure effectiveness and maintain transparent business practices) |
|
To comply with legal obligations |
|
Legal obligation |
4. HOW WE SHARE YOUR PERSONAL DATA
We share information with third parties that help us operate, provide, improve, integrate, customize, support, and market our Services. We may share some sets of personal data, in particular, for purposes and with parties indicated in Section 3 of this Policy. We strive to conclude specific data processing agreements with all such parties to establish the rules for processing of your data specifically on our behalf and limited to it.
The types of third parties we share information with include the following:
Third-party providers. We share personal data with third parties that we hire to provide services or perform business functions on our behalf, based on our instructions. We process your personal information using the following types of service providers (and in certain cases, their subprocessors):
a. Cloud storage: We use Amazon Web Services to host personal data and enable our Services to operate.
b. Monitoring of the Services: We use Firebase Performance Monitoring and Firebase Crash Reporting to monitor infrastructure and performance of the Services, identify and resolve errors and crashes in our Services across different platforms.
c. Data analytics:
- We use Appsflyer to attribute your data, research and analyse how users interact with the App, and measure performance of our advertising.
- We use Amplitude to record how you use and interact with the Services.
- We use GrowthBook to run A/B tests, evaluate feature performance, and improve the Services by analysing feature experiment results and user interactions with the Services.
- We use Meta Pixel, TikTok Pixel, and Google Analytics to analyze how you use the Services and measure the effectiveness of some advertising.
- We use Tableau from Salesforce to create interactive dashboards, charts, reports, and visualise data about your use and interaction with the Services.
- We use Microsoft Clarity to understand how you interact with the Services through session recordings and heatmaps.
d. Gateway service and payment processing: We use various payment processing and payment gateway providers that help us connect with different banks and payment systems around the world. Due to the large number of payment processing providers we work with, we cannot list them all here. However, some examples are Solidgate, Pay.com, Checkout, and Worldpay.
e. Email verification and login: We use Debounce.io to validate, check and verify email addresses of users. We also use Google, Meta, and Apple APIs to enable social sign-in features.
f. Functionality of the Services:
- We use AstrologyAPI to generate readings and reports for you.
- We use OneTrust to display our cookie banner, manage your consent and privacy preferences, and store proof of consent. This is necessary to help us comply with the applicable laws.
g. Communications:
- We use Zendesk as a customer service software to enable the work of our customer support team and maintain the request, contact, and feedback forms. We also use Twilio to enable phone calls between the customer support team and users.
- We use Customer.io (for emails), Twilio (for audio calls), and WhatsApp (for text messages) to send service-related and marketing communications to you.
- We use Firebase and Apple Push Notification to send Services messages and notifications to you.
h. Security: We use Cloudflare as a content delivery network provider to improve the security and performance of our websites and protect them from malicious attacks.
i. Technical, administrative, and information service providers: From time to time, we may use various third-party tools to ensure project and task management, launch feedback and Services-related surveys, enable communication, collaboration and productivity across our departments, automate workflow, etc. In some cases, limited personal data may be shared with these service providers. Examples of such tools include Google Workspace, Slack, Notion, and Atlassian Jira.
j. E-commerce. We use Shopify to maintain and manage our online store. In particular, Shopify allows us to display our products, and track orders and inventory, and process payments. Some of your information such as your name, email address, shipping address, and payment details are transferred to Shopify when you make a purchase on our online store. The transfer is required to enable us to fulfill your order and provide you with a smooth shopping experience.
k. Advisors, consultants, and independent contractors. We may, from time to time, share limited personal information with our independent contractors, consultants, third-party specialists, partners, and legal, accounting, or compliance advisors. They process this information on our behalf to operate, maintain, secure, improve the Services, and ensure legal and regulatory compliance. We require them to use the information only for these purposes, protect it appropriately, and keep it confidential.
l. Marketing and advertising:
- We use Meta Ads Manager and MetaMeta Custom Audience, TikTok Ads Manager, and Pinterest Ads Manager to choose audiences that will see our advertising and deliver advertising Meta’s, TikTok’s, and Pinterest’s platforms.
- We use Google Ads and Bing Ads to deliver advertising to users in Google and Bing browsers.
- From time to time, we may use third-party ad networks, ad agencies, and direct publishers that provide us with advertising solutions for displaying our advertising on various websites and apps.
Law enforcement agencies and other public authorities. We may use and disclose personal data to enforce our Terms and Conditions of Use, to protect our rights, privacy, safety, or property, and/or that of our affiliates, you or others, and to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, or in other cases provided for by law.
Third parties as part of a merger or acquisition. As we develop our business, we may buy or sell assets or business offerings. Customers’ information is generally one of the transferred business assets in these types of transactions. We may also transfer such information in the course of a corporate transaction, such as the sale of our business, a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.
Affiliates. We may share your personal information with our partner organizations that are part of our corporate group. These are the companies that are owned by, own, or are jointly-owned with us. These partner organizations will use the information in ways that align with this Policy, ensuring that your privacy is respected and protected across all our affiliated services.
5. YOUR PRIVACY RIGHTS
We encourage you to contact us first regarding any issues related to your personal data processing. Feel free to contact us using this request form.
To be in control of your personal data, you have the rights specified below. Depending on where you reside, the applicable laws may not grant you some of these rights or they may be named differently.
|
Your Rights |
How to Exercise Them |
|
Right to Access / Know An individual’s right to receive information about what personal data about you we process, how we use it, and with whom we share it |
We provide this information throughout this Privacy Policy, incuding what categories of personal data we process (Section 2), the purposes of and the legal bases for the processing, (Section 3), and with whom we share personal data (Section 4). We encourage you to check this Policy to find the information you are interested in. |
|
Right to Delete / Erase An individual’s right to request the deletion of their personal data except when the data deletion is limited under the applicable laws |
You can delete your personal data using “Delete Account” functionality in your Nebula account settings. Otherwise, you can send a data deletion request via this request form. When you request to erase your personal data, we will use reasonable efforts to honor your request. In some cases we may be legally required to keep some of the data for a certain time as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements; in such event, we will fulfill your request after we have complied with our obligations. |
|
Right to Rectify / Correct An individual’s right to request the correction of inaccurate personal data about that individual |
You can easily correct (rectify) your personal data in the account settings of your Nebula account. Some information may not be available for updating in the account settings. This information is collected automatically on the system level and cannot be manually rectified due to its nature. Instead, it updates in real-time every time you use the Services. This approach is aimed to ensure integrity and confidentiality of your personal data and reflects the best practices recommended by the applicable laws. |
|
Right to Withdraw / Revoke Consent When the processing of individual’s personal data is based on their consent, an individual’s right to withdraw consent to the processing of personal data they earlier provided |
Only a limited number of processing activities is based on your consent; see Section 3 for details. To withdraw consent to the processing of your personal data for personalised advertising, use the Consent Settings or Do Not Sell or Share My Personal Information menu on our website. To revoke consent to the processing of your personal data for sending marketing communications, use “Unsubscribe” link available in the email or submit your request using this request form. |
|
Right to Access a Copy / Port An individual’s right to request data controller to send them a copy of their personal data |
You can submit a request to send you a copy of your personal data using this request form. |
|
Right to Object or Restrict Processing In a limited amount of situations, an individual has a right to restrict the processing of or to object to the processing of their personal data |
You can submit a request objecting to the processing of your personal data or restricting the processing of your personal data using this request form. |
In certain countries, including in the European Economic Area and the United Kingdom, you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about how we process your personal data. You can find information about your data protection regulator in the European Economic Area here, and in the United Kingdom here.
We may be required to verify your identity before being able to process your request. The verification process may include confirming your name, age, email address, date of subscription purchase, date of account creation, or other relevant Services usage data that reasonably identify you as the account owner. We may also request additional proof of identity, if necessary, but we strive to minimize the information required. For certain requests, we may send a verification code or ask you to sign a declaration under penalty of perjury to authenticate your identity.
If you designate an authorized agent to exercise your rights on your behalf, they will need to provide the necessary verification information to confirm their identity and authorization.
6. AGE LIMITATION
We do not knowingly process personal data from persons under 16 years of age. If you learn that anyone younger than 16 has provided us with personal data, please contact us using this request form.
7. INTERNATIONAL DATA TRANSFERS
We may transfer personal data to countries other than the country in which the data was originally collected (1) to provide the Services set forth in the Terms and Conditions of Use and (2) to achieve purposes indicated in this Policy. If these countries do not have the same data protection laws as the country in which you initially provided the information, we employ special safeguards.
In particular, if we transfer personal data originating from the European Economic Area or the United Kingdom area, to countries with adequate level of data protection, we rely on the adequacy decision of the European Commission for this country (details available here); for example, we transfer personal data to the USA based on the EU-U.S Data Privacy Framework program (check details here). If we transfer personal data originating from the European Economic Area or the United Kingdom area to countries without adequate level of data protection, we rely on the Standard Contractual Clauses approved by the European Commission (details available here).
8. DATA RETENTION
We retain your personal data for as long as necessary to fulfill the purposes described in this Privacy Policy and the Terms and Conditions of Use, including providing the Services to you. When determining the appropriate retention period, we consider the volume, nature, and sensitivity of the personal data; the data’s relevance to performing the contract and providing the Services (including the possibility of re-enrollment); the potential risk of harm from unauthorized use or disclosure; the purposes for which we process your personal data and whether those purposes can be achieved by other means; and applicable legal requirements, including mandatory retention periods, statutes of limitation, legal holds, and litigation requirements.
As a general rule, we keep your personal data for as long as you maintain a registered account with us. However, we may retain your personal data for shorter or longer periods depending on the lawful basis for processing (see Section 3 for more information):
- When we process data on a basis of consent: until you withdraw your consent.
- When we process data to perform a contract: for the duration of the contract.
- When we process data to pursue our legitimate interest: for the time needed to achieve the stated interest, considering necessity and impact on your privacy.
- When we process data to comply with legal obligation: until we fulfill the legal obligation imposed on us by the applicable laws.
If multiple lawful bases apply, we keep the personal data until the latest applicable period expires. In any of the above situations, if you decide to delete your account, we delete or anonymise the related personal data unless retention is required to comply with our legal obligations, establish, exercise, or defend legal claims, resolve disputes, and enforce our agreements. For example, certain accounting and tax laws require us to store Payment Data for long periods of time to comply with laws we are subject to. Therefore, even if you submit a data deletion request, a small portion of the data that relates to our compliance obligations will be stored even after the request is satisfied.
9. PRIVACY NOTICE FOR U.S. RESIDENTS
9.1.Applicability
This Privacy Notice for U.S. Residents (“Notice”) supplements our Privacy Policy and provides disclosures required by laws in the U.S. states that have enacted consumer privacy laws. If you reside in one of these states, this section applies to you. For California residents, this also serves as our California Notice at Collection.
The scope of “Personal Information” may vary by state law. Generally, it refers to information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.
9.2.Categories of Personal Information We Collect
Section 2 of our Privacy Policy specifies the categories of Personal Information we collect and the categories of sources from which we collect Personal Information. Some of the Personal Information we collect might be considered as sensitive personal information under certain U.S. states consumer privacy laws, namely:
- Contents of communication: We collect the contents of chat or call communications.
- Account access information: We collect a username or account number in combination with a password or other credential that allows access to an account.
- Precise geolocation: Depending on your device and app settings, we might collect precise geolocation data when you use our Services.
9.3.Purposes of Processing Personal Information
For each category of Personal Information, Section 3 of our Privacy Policy describes the intended purposes of collecting, processing, and sharing of Personal Information, including for targeted advertising.
9.4.Categories of Personal Information We Disclose and Share with Third Parties
For additional details regarding the third parties with whom we share Personal Information and the purposes for that sharing, please see Section 4 of this Privacy Policy.
Please note: we do not disclose Personal Information to any third parties for their direct marketing purposes. To our reasonable knowledge, no third party to whom we disclose Personal Information uses it for its own direct marketing purposes.
Please note: from time to time, we may engage technical, administrative, and information service providers, advisors, consultants, and independent contractors (check here) and may disclose to them any categories of Personal Information specified below for business purposes as necessary to operate and support the Services. When we do so, we disclose only the minimum information required for these purposes and apply appropriate security and confidentiality measures.
We disclose the following Personal Information for business purposes to ensure business’ operation as specified below:
|
Enumerated Category of Personal Information under Cal. Civ. Code Section 1798.140(v) |
Third Parties to Whom We Disclose Personal Information |
|
Identifiers |
|
|
Categories of Personal Information in Cal. Civ. Code Section 1798.80(e) |
|
|
Commercial information |
|
|
Characteristics of Protected Classifications under California or Federal Law |
|
|
Internet or other electronic network activity information |
|
|
Geolocation data |
|
|
Sensitive personal information |
|
|
Biometric information |
We do not collect or process this information |
|
Inferences Drawn from Personal Information |
|
|
Sensory Information (Audio, electronic, visual, thermal, olfactory, or similar information) |
|
|
Professional or employment-related information |
|
|
Non-Public Education Information (as defined in 20 U.S.C. 1232g; 34 C.F.R. Part 99) |
We do not sell or otherwise monetize Personal Information except for sharing it only for cross-context behavioral advertising as described below:
|
Enumerated Category of Personal Information under Cal. Civ. Code Section 1798.140(v) |
Third Parties with Whom We Share Personal Information |
|
Identifiers |
|
|
Commercial information |
|
|
Internet or other electronic network activity information |
|
|
Categories of Personal Information in Cal. Civ. Code Section 1798.80(e) |
We do not share this information for cross-context behavioral advertising |
|
Geolocation data |
|
|
Characteristics of Protected Classifications under California or Federal Law |
|
|
Sensitive personal information |
|
|
Biometric Information |
We do not collect or process this information |
|
Inferences Drawn from Personal Information |
|
|
Sensory Information (Audio, electronic, visual, thermal, olfactory, or similar information) |
|
|
Professional or employment-related information |
|
|
Non-Public Education Information (as defined in 20 U.S.C. 1232g; 34 C.F.R. Part 99) |
9.5. Your Rights
Certain U.S. state consumer privacy laws provide you with specific rights regarding your Personal Information. Beyond the rights described in Section 5 of Privacy Policy, you may have the following rights depending on the U.S. state you reside in:
- Right to Opt-Out of Sale, Sharing, and Targeted Advertising. You may opt out of certain uses of your personal information, including the “sale” or “sharing” of your Personal Information as defined under state consumer privacy laws and the use of your Personal Information for targeted advertising. To exercise this right, use the Do Not Sell or Share My Personal Information menu on our website. We also recognize and honor browser- or device-based opt-out preference signals such as the Global Privacy Control (GPC). For California residents, this also serves as our California Notice of Right to Opt-out of Sale or Sharing.
- Right to Appeal. If we deny your request to exercise any of your rights, you may have the right to appeal our decision. To do so, please contact us via a dedicated contact form and explain your concerns.
In those limited cases when we collect sensitive Personal Information as might be defined under the U.S. state consumer privacy laws, we process this information solely under the lawful exemptions, namely to (1) perform the requested Services, (2) ensure the security of the App and Services, and (3) maintain the quality and improve the App and Services. Therefore, this use cannot be limited as long as you use the App or Services.
You can exercise your rights as described in Section 5 of this Policy. Alternatively, you can submit your request via this request form using the option “I want to submit a request related to my personal data”.
We do not discriminate or retaliate against users because they exercise their privacy rights.
10. SECURITY MEASURES
We use reasonable and appropriate organisational, technical, administrative, and physical security measures as required by relevant laws to protect your personal data from unauthorized access, disclosure, use, and modification. We regularly review our security procedures and policies to consider appropriate new technology and methods. However, the Internet is not 100% secure and we cannot promise that your use of the Services of the App will be completely secure. We encourage you to use caution when using the Internet, including not sharing your passwords to our Services.
11. THIRD-PARTY WEBSITES AND APPLICATIONS
The Services may contain links to other websites or applications and other websites or applications may reference or link to our Services. These third-party services are not controlled by us. We encourage our users to read the privacy policies of each website and application with which they interact. We do not endorse, screen or approve, and are not responsible for, the privacy practices or content of such other websites or applications. Visiting these other websites or applications is at your own risk.
12. CHANGES TO THIS PRIVACY POLICY
We may modify this Privacy Policy from time to time. If we decide to make material changes to this Privacy Policy, we will notify you through our Services or by other available means and will provide you with an opportunity to review the revised Privacy Policy. By continuing to access or use the Services or the App after those changes become effective, you agree to be bound by the revised Privacy Policy.
13. CONTACT US
You may contact us at any time for details regarding this Privacy Policy and its previous versions. For any questions concerning your account or your personal data please contact us using this request form.
Effective as of: October 17, 2025