Welcome to CraveX. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
1. Information We Collect
1.1 Personal Information
We may collect the following personal information:
- Account Information: Email address, name, and authentication credentials when you create an account
- Profile Information: Optional profile details such as age, gender, and health goals
- Health Data: Information you provide about your sugar consumption, cravings, progress tracking, and wellness goals
- Device Information: Device type, operating system, unique device identifiers, and mobile network information
- Usage Data: App features used, time spent in the app, and interaction patterns
1.2 Automatically Collected Information
- Log Data: IP address, browser type, pages visited, time and date of visits
- Analytics Data: App performance, crashes, and usage statistics
- Location Data: General location based on IP address (not precise location)
- Cookies and Similar Technologies: We use cookies and similar tracking technologies to track activity and store certain information
2. How We Use Your Information
We use the collected information for various purposes:
- Provide Services: To create and manage your account, deliver personalized content, and enable app features
- Personalization: To customize your experience based on your preferences and usage patterns
- Communication: To send you updates, notifications, educational content, and respond to inquiries
- Analytics: To analyze usage patterns, improve our services, and develop new features
- Security: To detect, prevent, and address technical issues and fraudulent activity
- Legal Compliance: To comply with legal obligations and enforce our terms of service
- Marketing: To send promotional materials (you can opt-out at any time)
3. Third-Party Services
We use the following third-party service providers to help us operate our app:
3.1 Authentication & Infrastructure
- Google Firebase: Authentication, database, analytics, crash reporting, cloud messaging, and file storage
- Apple Sign-In: Secure authentication for iOS users
- Google Sign-In: Secure authentication via Google accounts
3.2 Analytics & Attribution
- Google Analytics for Firebase: App usage analytics and user behavior tracking
- Mixpanel: Product analytics and user engagement tracking
- AppsFlyer: Mobile attribution and marketing analytics
- Facebook App Events: Analytics and advertising optimization
3.3 Payments & Subscriptions
- RevenueCat: Subscription management and in-app purchase processing
- Google Play Billing: Payment processing for Android
- Apple App Store: Payment processing for iOS
3.4 Communication & Support
- Crisp Chat: Customer support and live chat functionality
- Firebase Cloud Messaging: Push notifications
3.5 Content & AI
- OpenAI: AI-powered features for personalized recommendations and content
Each third-party service has its own privacy policy. We encourage you to review these policies.
4. Data Sharing and Disclosure
We may share your information in the following circumstances:
- Service Providers: With third-party vendors who perform services on our behalf
- Community Features: Information you choose to share in community forums is public
- Legal Requirements: When required by law or to protect our rights
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- With Your Consent: When you explicitly consent to sharing your information
We do not sell your personal information to third parties.
5. Data Storage and Security
We implement appropriate technical and organizational measures to protect your personal information:
- Data encryption in transit and at rest
- Secure authentication protocols
- Regular security assessments
- Access controls and monitoring
- Data stored on secure servers provided by Google Firebase
However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
6. Data Retention
We retain your personal information for as long as necessary to:
- Provide our services to you
- Comply with legal obligations
- Resolve disputes and enforce agreements
When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.
7. Your Privacy Rights
7.1 General Rights
You have the right to:
- Access: Request a copy of the personal information we hold about you
- Rectification: Correct inaccurate or incomplete information
- Deletion: Request deletion of your personal information
- Data Portability: Receive your data in a portable format
- Withdraw Consent: Withdraw consent for data processing at any time
- Opt-Out: Unsubscribe from marketing communications
7.2 GDPR Rights (EU Users)
If you are in the European Economic Area, you have additional rights under GDPR:
- Right to restriction of processing
- Right to object to processing
- Right to lodge a complaint with a supervisory authority
7.3 CCPA Rights (California Users)
California residents have specific rights under the California Consumer Privacy Act (CCPA):
- Right to know what personal information is collected
- Right to know if personal information is sold or disclosed
- Right to say no to the sale of personal information
- Right to access personal information
- Right to equal service and price
8. Children's Privacy
Our app is not intended for children under the age of 13 (or 16 in the EU). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information.
9. International Data Transfers
Your information may be transferred to and maintained on servers located outside of your country where data protection laws may differ. By using our app, you consent to such transfers. We ensure appropriate safeguards are in place for international transfers.
10. Push Notifications
We may send you push notifications to provide updates, reminders, and personalized content. You can disable push notifications in your device settings at any time.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by:
- Posting the new Privacy Policy on this page
- Updating the "Last Updated" date
- Sending you a notification through the app or email
Continued use of the app after changes constitutes acceptance of the updated policy.
12. Cookie Policy
We use cookies and similar tracking technologies to:
- Remember your preferences and settings
- Understand how you use our app
- Improve our services
- Provide personalized content
You can control cookies through your browser settings, but disabling cookies may limit some app functionality.
13. Contact Us
14. Legal Basis for Processing (GDPR)
We process your personal information under the following legal bases:
- Consent: You have given consent for processing
- Contract: Processing is necessary to fulfill our contract with you
- Legal Obligation: Processing is required by law
- Legitimate Interest: Processing is necessary for our legitimate business interests
15. Data Protection Officer
For GDPR-related inquiries, you can contact our Data Protection Officer at:
Email: dpo@cravex.app
16. Your Consent
By using our app, you consent to our Privacy Policy and agree to its terms.