Privacy Policy

1. Scope

• This policy explains how our iOS application Uben and our website at [your domain] collect, use, and share information.
• It covers app users and website visitors. If a term differs between the app and website, we state it explicitly.

3. Information We Collect

• Device Identifier (pseudonymous):A random UUID stored in iOS Keychain to prevent duplicates, reduce abuse, and enable session continuity. Not your Apple ID/IDFA; used only within our service and may persist across reinstalls.
• Usage Data:Article impressions and reactions (viewed, liked, bookmarked, dismissed), timestamps, minimal context to operate feeds and avoid repeats, and search terms to return relevant results.
• App Preferences & Local History:Theme preference and local session history (viewed items), likes, and bookmarks stored on‑device. You can clear this in‑app.
• Network/Log Data:Standard network information (e.g., IP address, device type) may be processed by hosting/infrastructure partners to deliver content and secure the service.
• No Sensitive/Intrusive Data:We do not request or collect precise location, contacts, photos, camera, microphone, health, or motion data. We do not collect advertising identifiers (IDFA) and do not show personalized ads.

4. How We Use Information

• Provide and Improve the Service:Deliver content and images; protect content links; prevent duplicate recommendations and keep a fresh feed (e.g., via aggregated impressions).
• Search:Handle your search queries to return relevant articles.
• Personalization (Limited and Non‑Tracking):Arrange content suggestions and avoid immediate repeats using pseudonymous interaction summaries. No cross‑app profiles, and we do not buy/sell audience segments.
• Security and Abuse Prevention:Use pseudonymous device identifiers and basic instrumentation to prevent abuse and maintain service quality.
• Legal Compliance:Comply with law and enforce our terms and policies.

5. Legal Bases (EEA/UK)

• Performance of a contract: Provide the app and core features you request.
• Legitimate interests: Secure the service, measure quality (aggregated), prevent abuse, and understand usage to improve content delivery.
• Consent: Not required for current behaviors because we do not perform cross‑app tracking or collect sensitive categories. If this changes, we will request consent where required.

6. Sharing and Disclosure

• Service Providers (Processors):Supabase (database, storage, serverless functions) processes data on our behalf; some requests include a pseudonymous header (e.g., x‑device‑id) to deduplicate and secure content delivery. Apple and platform/CDN providers also process network‑level data to deliver the app and content.
• No Sale or Advertising Sharing:We do not sell personal information. We do not share data for cross‑context behavioral advertising.
• Legal/Compliance:We may disclose information if required by law, court order, or to protect rights, safety, or security.

7. Data Retention

• On‑Device: Likes, bookmarks, and viewed history remain on your device until you clear them in the app or uninstall the app.
• Server‑Side: Pseudonymous impression and search logs are retained only as long as needed to operate and improve the service and protect integrity. We may aggregate or delete old records.

To request deletion (or reset) of records keyed to your device ID, contact offthegully@gmail.com and provide your in‑app device identifier.

8. Security

We use reasonable technical and organizational measures to protect data in transit and at rest, including TLS for transport and access controls on our infrastructure. No method of transmission or storage is completely secure.

9. Your Choices and Controls

• Clear Local Data: Use in‑app controls to clear viewing history and related likes. You can also remove bookmarks individually.
• Resetting the App: Uninstalling the app removes on‑device data. The pseudonymous device ID is stored in Keychain and may persist across reinstalls; contact us to disassociate server‑side logs.
• Do Not Track/ATT: We do not engage in cross‑app tracking and do not request App Tracking Transparency permission.

10. Your Rights

Depending on where you live, you may have rights to access, correct, delete, or export your information, or to object/restrict certain processing. Because we do not have accounts or direct identity information, requests may require you to provide the device identifier from the app so we can locate and delete server‑side records. To exercise rights, contact offthegully@gmail.com.

11. Children’s Privacy

The app is not directed to children under 13 (or under the age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child provided data, contact us so we can delete it.

12. International Data Transfers

We may process and store data in the United States and other countries. Where required, we use appropriate safeguards for cross‑border transfers (e.g., Standard Contractual Clauses).

13. Changes To This Policy

We may update this policy to reflect changes to our practices. We will post the updated version with a new effective date. If we make material changes, we will provide additional notice in the app or on our website.

14. Contact

• Email: offthegully@gmail.com
• Address: [Company name and address]