Privacy Policy

Last updated: January 29, 2025

This Privacy Policy describes how MyPinSpot ("we", "us", or "our") collects, uses, and discloses your information when you use our service.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Email address, password (encrypted), and optional nickname
  • Item Data: Item names, locations, descriptions, categories, and tags you create
  • Voice Data: Voice recordings temporarily processed for transcription (not stored)
  • Payment Information: Processed securely through Stripe (we don't store card details)

1.2 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on service
  • Device Information: Browser type, operating system, IP address
  • Cookies: Session cookies for authentication and preferences

2. How We Use Your Information

  • Provide, maintain, and improve our service
  • Process payments and manage subscriptions
  • AI-powered categorization and search (using OpenAI API)
  • Send transactional emails (OTP codes, subscription updates)
  • Respond to support requests
  • Detect and prevent fraud or abuse
  • Comply with legal obligations

3. Data Sharing and Disclosure

3.1 Third-Party Service Providers

  • Stripe: Payment processing (Privacy Policy)
  • OpenAI: AI features for categorization (Privacy Policy)
  • Hosting Provider: Secure data storage and infrastructure

3.2 We Do NOT

  • Sell your personal information to third parties
  • Share your data for advertising purposes
  • Use your data to train AI models

3.3 Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights or safety.

4. Data Security

  • Encryption in transit (TLS/SSL) and at rest
  • Password hashing using industry-standard algorithms
  • Regular security audits and updates
  • Access controls and authentication requirements

No method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Data Retention

  • Account Data: Retained while your account is active
  • Backups: May be retained for up to 90 days
  • Payment Records: Retained for 7 years for tax compliance
  • Deleted Accounts: Data permanently deleted within 30 days

6. Your Rights (GDPR & CCPA)

Depending on your location, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in JSON format
  • Restriction: Limit how we process your data
  • Objection: Object to data processing
  • Withdraw Consent: Opt-out at any time

To exercise these rights, contact us at privacy@yourdomain.com

7. Children's Privacy

Our service is not intended for users under 13 years old. We do not knowingly collect data from children under 13. If we become aware of such collection, we will delete the data immediately.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place for such transfers.

9. Cookies and Tracking

We use essential cookies for:

  • Authentication and session management
  • Language preferences
  • Security features

You can disable cookies in your browser settings, but this may affect functionality.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or prominent notice on our service. Continued use after changes constitutes acceptance.

11. Contact Us

For privacy-related questions or requests:

EU Representative (if applicable)

If you are in the EU, you can contact our EU representative at [EU Contact]