PRIVACY POLICY

1. Categories of Personal Data Processed

1.1 Identification & Account Data

• Name, username, email address, phone number
  
• Password or authentication tokens
  
• Optional profile photo, age range, or group role
  Used for authentication, account management, and communication.
  

1.2 Geospatial Data

Collected only upon granting system permissions:

• Real-time GPS coordinates
  
• Geofence entry/exit events
  
• Movement analytics (distance, route segments)
  
• Network-based approximate positioning
  

Used solely to enable core locator functionality, notifications, and safety services.

1.3 Device, System & Diagnostic Data

• Device identifiers, model, OS version
  
• IP address, locale, language
  
• Performance metrics, crash diagnostics
  Used for security monitoring, troubleshooting, and Platform optimization.
  

1.4 Communication & Content Data

• Messages, attachments, voice clips, or location requests
  Retained only for operational or troubleshooting purposes.
  

1.5 Transaction & Subscription Data

• Subscription status and purchase confirmations
  Processed by third-party payment providers; no credit card data is stored by us.

2. Purposes & Legal Bases for Processing

We process personal data for the following purposes under applicable laws:

2.1 Contractual Necessity

• Provision of location updates
  
• Enabling group visibility and shared safety features
  
• Account maintenance and support
  

2.2 Legitimate Interests

• Preventing fraud or misuse
  
• Improving Platform reliability and UX
  
• Analytics to optimize features
  

2.3 Consent

• Access to precise location services
  
• Optional marketing communications
  
• Access to device permissions
  

You may withdraw consent at any time via device settings or by contacting us.

2.4 Legal Obligations

• Responding to lawful requests or regulatory requirements
  
• Maintaining security logs
  

3. Disclosure of Personal Data

3.1 Service Providers (Processors)

We engage vetted third parties for:

• Cloud storage and hosting
  
• Crash and performance analytics
  
• Push notifications
  
• Subscription and billing management
  

All processors act under strict contractual confidentiality and security requirements.

3.2 Group Visibility

If you participate in a shared group or family environment, your location and selected profile fields will be visible to authorized members within that group.

3.3 Legal & Regulatory Bodies

Disclosed only when required by law or to protect rights, safety, or property.

3.4 Corporate Restructuring

In the event of a merger, acquisition, or asset transfer, your personal data may be transferred under equivalent protective terms.

4. International Data Transfers

Your data may be stored or processed in regions outside your jurisdiction.
When required, we implement recognized safeguards (Standard Contractual Clauses, adequacy decisions) to ensure protection.

5. Data Security Measures

We deploy administrative, technical, and organizational controls including:

• Encryption in transit and at rest
  
• Access control policies
  
• Secure server architecture
  
• Continuous monitoring and incident-response procedures
  

No digital system is immune to breaches; we follow legally required notification procedures in the event of an incident.

6. Retention Schedule

• Account data → retained for the life of the account.
  
• Location data → retained only as necessary to fulfill feature functionality, then minimized or anonymized.
  
• Logs & backups → retained under operational cycles before secure deletion.
  
• Legal compliance data → retained in accordance with statutory timelines.
  

7. User Rights

Depending on your jurisdiction, you may exercise:

• Right to access personal data
  
• Right to rectification
  
• Right to erasure (“right to be forgotten”)
  
• Right to restrict processing
  
• Right to data portability
  
• Right to withdraw consent
  
• Right to object to processing
  

Requests may be submitted via the contact information below.
Verification of identity may be required.

8. Children’s Data

The Platform may support supervised child accounts.
Data relating to minors is visible only to designated guardians and is not shared with external third parties.
We do not knowingly permit minors to create standalone accounts without guardian consent.

9. Amendments

We may revise this Notice periodically.
A revised “Last Updated” date will be posted, and material changes may be communicated through the Platform.
Continued use after publication constitutes acceptance.

10. Contact Information

For questions, rights requests, or data concerns, contact:
Emai: help@impactlab.services