Supatext Privacy Policy

Effective Date: April 22, 2025

1. Introduction

Welcome to Supatext! This Privacy Policy explains how INSCODE ("we," "us," or "our"), the owner and data controller, collects, uses, shares, and protects information in relation to our mobile application Supatext (the "App"). This policy applies to all users of the App and is compliant with the General Data Protection Regulation (GDPR) and other relevant European data protection laws.

By using the Supatext App, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect minimal information necessary to provide and improve our service:

• Text Input for Rephrasing: When you use the core functionality of the App, you provide text that you wish to rephrase. This text is sent to our processing servers solely for the purpose of performing the rephrasing task requested by you. We do not store your input text long-term after the processing request is completed. The text is processed ephemerally.
• Usage Data: We automatically collect certain information about how you interact with the App. This may include information such as your device type, operating system version, unique device identifiers, IP address, crash data, and usage patterns within the App (e.g., features used, frequency of use). This data is primarily collected through third-party services like Google Analytics and Firebase.
• Account Information: If you create an account, we may collect information necessary for account management, such as email address, user ID.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To Provide and Operate the App: Primarily to process the text you input and return the rephrased version.
• To Improve and Maintain the App: Analyzing usage data helps us understand user needs, identify bugs, improve performance, and develop new features.
• To Ensure Security: Monitoring for fraudulent or unauthorized activity.
• To Comply with Legal Obligations: Fulfilling legal requirements and responding to lawful requests from authorities.
• To Manage Your Account: If applicable, for authentication and providing user-specific services.

4. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Performance of a Contract: Processing your input text is necessary to perform the core service (rephrasing) you requested when using the App.
• Legitimate Interests: We process usage data based on our legitimate interest in understanding how our App is used, improving our services, and ensuring security, provided these interests are not overridden by your data protection rights.
• Consent: In some cases (e.g., potentially for certain types of analytics or marketing communications if implemented later), we may rely on your explicit consent. You have the right to withdraw your consent at any time.

5. Data Sharing and Third Parties

We do not sell your personal data. We may share your information with trusted third-party service providers only to the extent necessary for them to perform services on our behalf, under strict confidentiality and data processing agreements. These include:

• Azure OpenAI: We share the text you input for rephrasing with Microsoft Azure's OpenAI service, which performs the actual text processing. Your text is processed according to their terms and privacy policies. We do not control their data handling practices after the data is transferred. See Azure Legal Information and OpenAI Privacy Policy.
• Google Firebase: We use Firebase services for backend infrastructure, which may include hosting, database functions (if applicable), and potentially analytics or authentication. Data processed by Firebase is subject to Google's Privacy Policy. See Firebase Privacy and Security and Google Privacy Policy.
• Google Analytics: We use Google Analytics to collect and analyze usage data to understand how our App is used. This helps us improve the user experience. Data collected by Google Analytics is subject to Google's Privacy Policy. You can learn more about how Google uses data here: How Google uses information from sites or apps that use our services.

We may also disclose your information if required by law or in response to valid requests by public authorities (e.g., a court or a government agency).

6. Data Retention

As stated above, the text you input for rephrasing is processed ephemerally and is not stored by us after the rephrasing task is complete.

Usage data collected via analytics services is retained for a period necessary to fulfill the purposes outlined in this policy (e.g., for trend analysis), typically in an aggregated and anonymized form where possible.

Account information is retained as long as your account is active or as needed to provide you services and comply with legal obligations.

7. Data Security

We implement appropriate technical and organizational measures to protect the information we process against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. However, please be aware that no method of transmission over the internet or method of electronic storage is 100% secure.

8. International Data Transfers

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. This is particularly relevant as we utilize services from global providers like Microsoft (Azure) and Google (Firebase, Analytics).

We ensure that any such transfers are conducted in compliance with GDPR requirements, typically through mechanisms like Standard Contractual Clauses (SCCs) or by ensuring the provider adheres to frameworks like the EU-U.S. Data Privacy Framework (where applicable).

9. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following data protection rights:

• The right to access: You can request copies of your personal data.
• The right to rectification: You can request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
• The right to erasure (‘right to be forgotten’): You can request that we erase your personal data, under certain conditions.
• The right to restrict processing: You can request that we restrict the processing of your personal data, under certain conditions.
• The right to object to processing: You can object to our processing of your personal data based on legitimate interests.
• The right to data portability: You can request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The right to withdraw consent: If we are processing based on consent, you can withdraw it at any time.

To exercise any of these rights, including requesting the deletion of your personal data, please contact us at insmobileapps@gmail.com. We will respond to your request, and if applicable, fulfill your data deletion request within one month.

10. Children's Privacy

Supatext is not intended for use by children under the age of 16 (or the relevant age of consent in your jurisdiction). We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data without parental consent, please contact us.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy within the App or on our website and updating the "Effective Date" at the top. You are advised to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact the Data Controller:

INSCODE
insmobileapps@gmail.com