Privacy Policy

The Service Provider is committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) in the European Union and the California Consumer Privacy Act (CCPA/CPRA) in the United States. This policy explains how we collect, use, disclose, and safeguard your information. By using the Application, you agree to the terms of this Privacy Policy. If you do not agree, please do not use the Application.

Interpretation and Definitions

For the purposes of this Privacy Policy:

• Personal Data: Any information that relates to an identified or identifiable individual. In this Application, this may include an email address or other contact details only if you voluntarily provide them for feedback or support inquiries.
• Processing: Any operation performed on Personal Data, including collecting, storing, using, or disclosing.
• Service Provider (or "We", "Us", "Our"): Oleksandr Kiptilyi, the developer of the Application.
• You: The individual accessing or using the Application.

What information does the Application obtain and how is it used?

We collect information to provide, maintain, and improve the Application, based on our legitimate interests (e.g., app functionality and analytics), your consent (e.g., for optional features), or legal obligations.

User Provided Information

The Application acquires the information you supply when you download and use the Application. The Application does not require any user registration. However, some optional features (such as Google Drive backup) may require authentication through third-party services like Google OAuth. The only possible communication with users is through voluntary email submissions for feedback or support inquiries. We collect email addresses or other contact details only if you voluntarily provide them via feedback forms or support inquiries. The Service Provider may contact users only in response to feedback requests or support inquiries submitted through the Application.

Support and Feedback Information

When you contact us for support or send feedback through the Application, the message may include additional technical diagnostic information (such as app version, device model, operating system version, or similar technical details).

This information does not include your personal content (such as notes, passwords, or files) and is used solely to help us diagnose problems and improve the Application.

Automatically Collected Information

Certain technical information may be collected automatically by third-party services integrated into the Application (such as Google Play Services or AdMob). This may include device type, unique device ID, IP address, operating system version, mobile browser type, and information about how you use the Application (e.g., usage patterns, crash reports). The Application itself does not directly collect this information.

We rely on our legitimate interest in improving the Application and providing services as a lawful basis for this processing.

Does the Application collect precise real time location information of the device?

The Application does not directly collect or access your device's precise location data. However, third-party advertising services integrated into the Application may use your IP address to determine your approximate geographical location for the following purposes:

• Advertising Services: Third-party advertising networks may use IP-based location data to provide location-relevant advertisements.
• Analytics and Improvements: Aggregated and anonymized location data may be used by third-party services to analyze user behavior and improve ad targeting.
• Service Optimization: External advertising services may use approximate location data to optimize their offerings and improve user experience.

The Application itself does not request location permissions and does not access your device's GPS or other location services directly.

Do third parties see and/or have access to information obtained by the Application?

Only aggregated, anonymized data is periodically transmitted to external services to aid the Service Provider in improving the Application and their service. The Service Provider may share your information with third parties in the ways that are described in this privacy statement. We do not sell your personal data to third parties.

Please note that the Application utilizes third-party services that have their own Privacy Policy about handling data.

Below are the links to the Privacy Policy of the third-party service providers used by the Application:

The Service Provider may disclose User Provided and Automatically Collected Information:

• as required by law, such as to comply with a subpoena, or similar legal process;
• when they believe in good faith that disclosure is necessary to protect their rights, protect your safety or the safety of others, investigate fraud, or respond to a government request;
• with their trusted services providers who work on their behalf, do not have an independent use of the information we disclose to them, and have agreed to adhere to the rules set forth in this privacy statement.

Data may be transferred to the United States or other countries outside the EEA; these transfers are protected by adequate safeguards, such as the EU-US Data Privacy Framework for Google services.

What are my opt-out rights?

You can halt all collection of information by the Application easily by uninstalling the Application. You may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network.

For personalized ads via AdMob, you can opt-out via your device settings (Android: Settings > Google > Ads > Opt out of Ads Personalization) or visit https://adssettings.google.com to manage preferences.

Under GDPR and CCPA, you have the right to:

• Access, correct, delete, or restrict processing of your data;
• Object to processing based on legitimate interests;
• Data portability (receive your data in a structured format);
• Withdraw consent at any time (without affecting prior processing).

To exercise these rights, contact us at dotcodeapp@gmail.com. We will respond within 30 days (or 45 days under CCPA, if extended).

Data Retention Policy, Managing Your Information

The Service Provider will retain User Provided data for as long as you use the Application and for a reasonable time thereafter. The Service Provider will retain Automatically Collected information for up to 24 months and thereafter may store it in aggregate. If you'd like the Service Provider to delete User Provided Data that you have provided via the Application, please contact them at dotcodeapp@gmail.com and we will respond in a reasonable time. Please note that some or all of the User Provided Data may be required in order for the Application to function properly.

Children

This Application is intended for users aged 18 and older as specified in our target audience settings. We comply with the Children's Online Privacy Protection Act (COPPA) and do not knowingly collect Personal Data from children under 13. If we discover such data, we will delete it immediately. If you are a parent or guardian concerned about your child's use of this Application, we recommend monitoring their device usage and utilizing built-in parental controls.

The Application operates primarily with local data storage on the user's device. We do not maintain servers that store users' personal information or notes. The limited information we may receive includes:

• Anonymous feedback messages (when users voluntarily send feedback)
• Technical device information for app improvement purposes

We do not collect age information from users, nor do we have mechanisms to verify user age.

Third-party services integrated into the Application (such as AdMob for advertising) have their own data collection practices and age-related policies. These services are responsible for their own compliance with laws regarding minors.

Security

The Service Provider is concerned about safeguarding the confidentiality of your information. We provide physical, electronic, and procedural safeguards to protect information we process and maintain. No employees or contractors of the Service Provider have access to your personal notes, passwords, or attachments, since the Application does not maintain any server-side databases. Please be aware that, although we endeavor to provide reasonable security for information we process and maintain, no security system can prevent all potential security breaches.

Data Encryption and Local Storage

The Application employs strong encryption methods to protect user data stored locally on the device. All user-generated data, including notes, passwords, audio files, and photos, is always stored locally on your device and encrypted using industry-standard AES-256 encryption algorithms before being stored. The Application does not have any server-side databases, ensuring that your data remains under your control and is not accessible to the Service Provider or third parties unless explicitly shared by you.

When using the optional Google Drive backup feature, your data is encrypted locally on your device before being transmitted and stored in your personal Google Drive account. This feature is entirely optional and requires your explicit consent. The Service Provider does not have access to, cannot decrypt, and cannot view your backed-up data.

Google OAuth Scopes

To enable secure authentication and backup functionality, we request the following minimal Google OAuth scopes with your explicit consent:

• openid — Required for secure OpenID Connect authentication.
• https://www.googleapis.com/auth/userinfo.email — Used to identify your Google Account via email.
• https://www.googleapis.com/auth/userinfo.profile — Used to access your display name and profile picture for optional personalization.
• https://www.googleapis.com/auth/drive.file — Used to create, access, and manage encrypted backup files stored in your personal Google Drive.

All data is encrypted locally on your device before being uploaded. These permissions are used only for the stated purposes and are never shared with third parties. You can revoke access at any time via your Google Account permissions page.

Biometric Data

The Application may use biometric authentication (such as fingerprint or face recognition) for app access security. This biometric information is processed entirely on your device using your device's secure biometric systems and is never transmitted to or stored on external servers.

User Control Over Data

The Application provides users with complete control over their data, including:

• The ability to permanently delete all data using the secure deletion feature
• Optional data backup to your personal Google Drive account (requires explicit user consent)
• Local data storage that remains under your direct control

Changes

This Privacy Policy may be updated from time to time for any reason. The Service Provider will notify you of any changes to the Privacy Policy by updating this page with the new Privacy Policy. You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.

Your Consent

By using the Application, you are giving your consent to the Service Provider's processing of your information as set forth in this Privacy Policy now and as amended by us. "Processing" means using or touching information in any way, including, but not limited to, collecting, storing, deleting, using, combining, and disclosing information.