Privacy Policy for InkHeart
Last Updated: October 28, 2024
Introduction
Welcome to InkHeart ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.
By using InkHeart, you agree to the collection and use of information in accordance with this policy.
Information We Collect
Information You Provide
- Account Information: When you create an account, we may collect your email address, username, and password (if you choose to register).
- Reading Preferences: We collect information about the books you read, chapters you unlock, and your reading progress.
- Payment Information: When you make purchases, payment information is processed by third-party payment processors (Apple App Store, Google Play Store). We do not store your full payment details.
- Communications: If you contact us for support, we collect your email and message content.
Automatically Collected Information
- Device Information: Device type, operating system version, unique device identifiers, mobile network information.
- Usage Data: App features used, reading sessions, time spent in app, crash reports, and performance data.
- Analytics: We use analytics services to understand how users interact with our app.
Anonymous Usage
- You can use InkHeart without creating an account. In this case, we create an anonymous session tied to your device to track your reading progress locally.
How We Use Your Information
We use the collected information for:
- Service Delivery: Providing reading content, managing subscriptions, and unlocking chapters.
- Personalization: Recommending books based on your reading history and preferences.
- Payment Processing: Processing purchases, managing subscriptions, and preventing fraud.
- Communication: Sending notifications about new chapters, subscription renewals, and important updates.
- Improvement: Analyzing usage patterns to improve app performance and user experience.
- Support: Responding to your inquiries and providing customer support.
- Legal Compliance: Complying with legal obligations and enforcing our terms.
Data Storage and Security
Where We Store Data
- Supabase: Our backend infrastructure is hosted on Supabase (https://supabase.com), which uses AWS data centers.
- Data Location: Your data may be processed and stored in the United States and other countries.
Security Measures
We implement industry-standard security measures including:
- Encryption in transit (HTTPS/TLS)
- Encryption at rest for sensitive data
- Row-level security policies on database tables
- Regular security audits and monitoring
- Secure authentication protocols
However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
Third-Party Services
We use the following third-party services:
Supabase (Database & Authentication)
- Purpose: Backend infrastructure, data storage, user authentication
- Privacy Policy: https://supabase.com/privacy
Sentry (Error Monitoring)
- Purpose: Crash reporting and performance monitoring
- Privacy Policy: https://sentry.io/privacy/
- Data Collected: Error logs, device information, app performance metrics
Apple App Store / Google Play Store
- Purpose: Payment processing, app distribution
- Privacy Policies:
- Apple: https://www.apple.com/legal/privacy/
- Google: https://policies.google.com/privacyAnalytics Services
- We may use analytics services to understand app usage
- You can opt out of analytics tracking in app settings
Your Data Rights
Depending on your location, you may have the following rights:
Access and Portability
- Right to Access: Request a copy of your personal data.
- Data Portability: Receive your data in a structured, machine-readable format.
Correction and Deletion
- Right to Correct: Update or correct inaccurate personal information.
- Right to Delete: Request deletion of your personal data (subject to legal retention requirements).
Control and Objection
- Opt-Out: Unsubscribe from marketing communications.
- Restrict Processing: Limit how we use your data.
- Object to Processing: Object to certain uses of your data.
How to Exercise Your Rights
To exercise these rights, contact us at: privacy@inkheart.app (or your actual contact email)We will respond to your request within 30 days.
Children's Privacy
InkHeart is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
Age rating: 12+ (may contain mild suggestive themes, infrequent/mild horror/fear themes)
Subscriptions and Payments
Subscription Management
- Subscriptions are managed through Apple App Store or Google Play Store.
- Billing is handled by the respective platform.
- You can cancel subscriptions through your App Store/Play Store account settings.
Automatic Renewal
- Subscriptions automatically renew unless canceled at least 24 hours before the end of the current period.
- Your account will be charged within 24 hours prior to the end of the current period.
Refunds
- Refund requests are handled by Apple/Google according to their policies.
- We do not have access to process refunds directly.
Cookies and Tracking
The app does not use cookies in the traditional sense, but we do use:
- Local Storage: To store reading progress and preferences on your device.
- Session Tokens: To maintain your logged-in state.
- Analytics Identifiers: To track app usage (can be disabled in settings).
Data Retention
We retain your information for as long as:
- Your account is active
- Needed to provide services
- Required by law or for legitimate business purposes
When you delete your account:
- Personal information is deleted within 30 days
- Some data may be retained in backups for up to 90 days
- Anonymized usage data may be retained for analytics
International Data Transfers
If you are accessing InkHeart from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located.
For EU users:
- We rely on standard contractual clauses for data transfers.
- Your data is protected by GDPR-compliant safeguards.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy in the app
- Updating the "Last Updated" date
- Sending you an email notification (for significant changes)
Your continued use of InkHeart after changes constitutes acceptance of the updated policy.
California Privacy Rights (CCPA)
If you are a California resident, you have additional rights:
- Right to Know: What personal information we collect and how it's used.
- Right to Delete: Request deletion of your personal information.
- Right to Opt-Out: Opt out of the sale of personal information (we do not sell your data).
- Non-Discrimination: We will not discriminate against you for exercising your rights.
European Privacy Rights (GDPR)
If you are in the EU/EEA, you have rights under GDPR:
- Legal basis for processing: Consent, contract performance, legitimate interests.
- Right to withdraw consent at any time.
- Right to lodge a complaint with your supervisory authority.
Contact Us
If you have questions about this Privacy Policy or our privacy practices:
Email: privacy@inkheart.app
Mail: [Your Company Name and Address]
In-App: Settings > Help & Support > Contact Us
For data protection inquiries in the EU, contact our Data Protection Officer:
Email: dpo@inkheart.app
Consent
By using InkHeart, you consent to this Privacy Policy and agree to its terms.
---
Note to Developer:
1. Replace all placeholder email addresses with actual contact emails
2. Add your company name and mailing address
3. Consider having a lawyer review this before publishing
4. Host this on a public URL (e.g., https://inkheart.app/privacy)
5. Update the "Last Updated" date when you publish