Privacy Policy for PinkFlag

Introduction

PinkFlag ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the PinkFlag mobile application (the "App").

Our Privacy Commitment

PinkFlag is built with privacy as a core principle. We collect minimal personal information and never sell or share your data with third parties for marketing purposes.

Information We Collect

1. Account Information

When you create an account, we collect:

• Email address - Used for account authentication and password recovery
• Password - Encrypted and securely stored (we never see your actual password)

2. Usage Information

We collect:

• Search credits balance - To track your available searches
• Search history - Stored securely in your account to prevent duplicate charges
• Transaction records - For in-app purchase verification and support

3. Information We DO NOT Collect

PinkFlag does NOT collect:

• ❌ Your real name or physical address
• ❌ Your location or GPS data
• ❌ Your contacts or phone number
• ❌ Photos or camera access
• ❌ Device identifiers for tracking
• ❌ Browsing history or app usage outside PinkFlag
• ❌ Any biometric data

How We Use Your Information

We use collected information only for:

1. Account Management - Creating and maintaining your account
2. Service Delivery - Processing searches and managing credit balance
3. Purchase Processing - Handling in-app purchases through Apple's payment system
4. Customer Support - Responding to your inquiries and technical issues
5. Security - Preventing fraud and unauthorized access

Data Storage and Security

Secure Infrastructure

• Database: Your data is stored in Supabase's secure PostgreSQL database with encryption at rest
• Authentication: Passwords are hashed using industry-standard bcrypt encryption
• Connection: All data transmission uses HTTPS/TLS encryption

Data Retention

• Active Accounts: We retain your data while your account is active
• Deleted Accounts: When you delete your account, all personal data is permanently removed within 30 days
• Search History: Stored for 90 days, then automatically deleted

Third-Party Services

PinkFlag integrates with the following third-party services:

Your Privacy Rights

You have the right to:

Children's Privacy

PinkFlag is not intended for users under 17 years of age due to the nature of sex offender registry content. We do not knowingly collect information from children under 17. If we discover that a child under 17 has created an account, we will immediately delete it.

Age Rating: 17+ (Mature Content)

Search Data and Public Records

Anonymous Searches

When you perform a search:

• Search queries (names, locations) are sent to public registry APIs
• Searches are NOT linked to your personal identity
• We do NOT share who is searching for whom

Data Accuracy Disclaimer

PinkFlag sources data from public sex offender registries. We make no guarantees about:

• Accuracy or completeness of data
• Real-time updates
• Identity verification

Always verify information through official government sources.

Emergency Resources

When you use the emergency calling feature:

• Phone calls are placed directly by your device
• We do NOT track, record, or store call logs
• Call history remains private on your device

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do:

• We will update the "Last Updated" date at the top
• Major changes will be announced within the app
• Continued use of the app constitutes acceptance of the updated policy

Data Breach Notification

In the unlikely event of a data breach affecting your personal information, we will:

1. Notify affected users within 72 hours
2. Explain what data was compromised
3. Provide steps to protect your account
4. Report to relevant authorities as required by law

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of the sale of personal information (we never sell your data)
• Right to non-discrimination for exercising your rights

European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing

Legal Basis for Processing

We process your data based on:

• Consent: You provide consent by creating an account
• Contract: Processing is necessary to provide the service you requested
• Legitimate Interest: Fraud prevention and security

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:

Email: support@pinkflag.app

Response Time: Within 48 hours

For urgent privacy concerns:

Email: privacy@pinkflag.app

Legal Compliance

PinkFlag complies with:

• California Consumer Privacy Act (CCPA)
• General Data Protection Regulation (GDPR)
• Children's Online Privacy Protection Act (COPPA)
• Apple App Store Privacy Guidelines

Governing Law

This Privacy Policy is governed by the laws of the State of California, United States, without regard to conflict of law principles.