Privacy Policy

Last updated: December 1, 2024

Introduction

At Tesi, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your information when you use our habit tracking application. Your privacy is important to us, and this policy details our practices regarding your personal information.

1. Information We Collect

Information You Provide Directly

Account Information:

• Name and email address when you create an account
• Profile preferences and settings
• User-generated content and customizations

Usage Data:

• Habit tracking data (habits, completion status, streaks)
• Personal goals and objectives
• Custom categories and habit configurations
• Progress notes and reflections

Optional Data:

• Feedback and support communications
• Survey responses (when provided voluntarily)
• Beta testing feedback and bug reports

Automatically Collected Information

Device Information:

• Device type, model, and operating system version
• App version and installation details
• Device identifiers (for analytics purposes only)

Usage Analytics:

• App usage statistics and feature interaction data
• Performance metrics and crash reports
• Session duration and frequency of use

Location Data:

• We do not collect precise location data
• General region may be inferred from IP address for service optimization

2. How We Use Your Information

We use the information we collect to:

Core Service Provision

• Provide and maintain the Tesi habit tracking service
• Track your habit progress and provide personalized insights
• Sync your data across multiple devices
• Generate analytics and progress reports

Communication & Support

• Send you notifications and reminders (if enabled by you)
• Provide customer support and respond to your inquiries
• Communicate important updates about the service
• Send security alerts and service notifications

Service Improvement

• Improve our app features and user experience
• Analyze usage patterns to enhance functionality
• Develop new features based on user behavior
• Conduct research to improve habit formation techniques

Legal & Security

• Comply with legal obligations and regulatory requirements
• Protect against fraud, abuse, and security threats
• Enforce our Terms of Service

3. Data Storage and Security

Local Storage

• Most of your habit data is stored locally on your device
• This includes your habits, completion records, and personal settings
• Local data is encrypted and not accessible to us unless you choose to sync
• You maintain full control over locally stored data

Cloud Backup (Optional)

• You may choose to back up your data to our secure cloud servers
• All cloud data is encrypted in transit using TLS 1.3
• Data at rest is encrypted using AES-256 encryption
• We use industry-standard security measures including firewalls and access controls
• Regular security audits and penetration testing
• Data is stored in secure data centers with physical security measures

Security Measures

• Multi-factor authentication for administrative access
• Regular security updates and patches
• Employee security training and background checks
• Incident response plan for potential security breaches
• Data backup and disaster recovery procedures

4. Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except in the following limited circumstances:

With Your Consent

• When you explicitly authorize us to share specific information
• For features that require third-party integration (with your permission)

Legal Requirements

• To comply with applicable laws, regulations, or legal processes
• To respond to valid legal requests from law enforcement
• To protect our rights, property, or safety, or that of our users

Service Providers

• With trusted third-party service providers who assist in app functionality
• These providers operate under strict data protection agreements
• They are only permitted to use data for the specific services they provide
• Examples include cloud hosting, analytics, and customer support tools

Business Transfers

• In the event of a merger, acquisition, or sale of assets
• Users will be notified of any change in ownership or data handling

Anonymized Data

• We may use anonymized, aggregated data for research and improvement purposes
• Individual user data is never shared in identifiable form
• Anonymized data cannot be traced back to individual users

5. Third-Party Services and Integrations

Authentication Services

• Google Sign-In: For secure account creation and login
• Apple Sign-In: For iOS users preferring Apple authentication
• These services have their own privacy policies governing their data practices

Analytics and Performance

• We may use analytics services to understand app usage and performance
• These services collect only anonymized, aggregated data
• No personally identifiable information is shared with analytics providers
• You can opt out of analytics tracking in the app settings

Payment Processing

• Payment information is processed by secure third-party payment processors
• We do not store your complete payment card information
• Payment processors comply with PCI DSS standards

Cloud Services

• We use reputable cloud service providers for data storage and processing
• All providers meet our strict security and privacy requirements
• Data processing agreements are in place with all cloud providers

6. Data Retention and Deletion

Account Data Retention

• Account data is retained while your account is active and for a reasonable period thereafter
• Inactive accounts may be deleted after 3 years of inactivity (with prior notice)
• You can delete your account and associated data at any time through the app settings

Data Deletion Process

• When you delete your account, we delete all personal data within 30 days
• Some data may be retained for legal compliance or security purposes
• Anonymized analytics data may be retained indefinitely for service improvement
• Local data on your device must be deleted manually by uninstalling the app

Backup Data

• Cloud backup data is deleted within 30 days of account deletion
• Multiple deletion confirmations ensure data is permanently removed
• We provide data export options before deletion for your records

7. Your Rights and Choices

You have the following rights regarding your personal data:

Access and Portability

• Right to Access: Request a copy of all personal data we hold about you
• Data Portability: Export your data in a machine-readable format
• Data Summary: Receive a summary of data processing activities

Correction and Updates

• Right to Rectification: Correct any inaccurate or incomplete personal data
• Profile Updates: Modify your account information and preferences at any time
• Data Verification: Request verification of data accuracy

Deletion and Restriction

• Right to Erasure: Delete your account and all associated personal data
• Right to Restriction: Limit how we process your personal data
• Selective Deletion: Delete specific data categories while maintaining your account

Communication Preferences

• Opt-out Rights: Unsubscribe from non-essential communications
• Notification Control: Manage push notification preferences
• Marketing Communications: Control promotional and marketing messages

Analytics and Tracking

• Analytics Opt-out: Disable usage analytics and tracking
• Personalization Control: Manage data use for personalized features
• Third-party Tracking: Control third-party analytics services

To exercise these rights, contact us at tesiapphelp@gmail.com with your request and account information.

8. Children’s Privacy

Age Restrictions

• Tesi is not intended for children under 13 years of age
• We do not knowingly collect personal information from children under 13
• If you believe a child has provided personal information, please contact us immediately

Parental Rights

• Parents have the right to review, delete, or refuse further collection of their child’s information
• We will verify parental identity before processing any requests
• Special protections apply to users between 13-18 years of age

Educational Use

• Schools or educational institutions must obtain proper consent before allowing student use
• Additional privacy protections may apply for educational accounts

9. International Data Transfers

Global Service Provision

• Your information may be transferred to and processed in countries other than your own
• We ensure appropriate safeguards are in place to protect your data during international transfers
• Data processing agreements include adequate privacy protections

Regional Compliance

• GDPR (EU): We comply with European Union data protection regulations
• CCPA (California): California residents have additional rights under state law
• Other Jurisdictions: We adapt our practices to meet local privacy requirements

Transfer Mechanisms

• We use Standard Contractual Clauses (SCCs) for EU data transfers
• Adequacy decisions and certification schemes where available
• Additional safeguards for sensitive data transfers

10. Cookies and Tracking Technologies

Website Cookies

• Our website uses cookies to improve your browsing experience
• Essential cookies are necessary for basic website functionality
• Analytics cookies help us understand website usage patterns
• You can control cookie preferences through your browser settings

Mobile App Tracking

• The mobile app may use local storage and device identifiers
• Tracking is primarily for app functionality and user experience
• No cross-app tracking or advertising networks are used

Third-party Tracking

• We may use third-party analytics tools with privacy-compliant configurations
• These tools operate under strict data processing agreements
• You can opt out of third-party tracking through app settings

11. Changes to This Privacy Policy

Notification of Changes

• We may update this privacy policy from time to time to reflect changes in our practices
• Material changes will be communicated through the app and via email (if you’ve provided one)
• The “Last Updated” date at the top of this policy indicates when changes were made

Your Continued Use

• Your continued use of the app after changes become effective constitutes acceptance of the revised policy
• If you disagree with changes, you may delete your account and discontinue use
• We encourage you to review this policy periodically

Version History

• Previous versions of this policy are available upon request
• We maintain records of policy changes for transparency

12. Regional Privacy Rights

California Residents (CCPA)

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale of personal information (we don’t sell data)
• Right to non-discrimination for exercising privacy rights

European Union Residents (GDPR)

• All rights listed in Section 7 apply with additional protections
• Right to lodge a complaint with supervisory authorities
• Legal basis for processing is typically consent or legitimate interest
• Data Protection Officer contact: tesiapphelp@gmail.com

Other Jurisdictions

• We respect local privacy laws and regulations
• Additional rights may apply based on your location
• Contact us for information about region-specific privacy rights

13. Contact Information and Data Protection

General Privacy Inquiries

Email: tesiapphelp@gmail.com Website: www.gettesi.com Response Time: We respond to privacy inquiries within 72 hours

Data Protection Officer (EU)

Email: tesiapphelp@gmail.com

Scope: European Union data protection matters

Supervisory Authority (EU)

If you’re not satisfied with our response to your privacy concerns, you may lodge a complaint with your local data protection authority.

Privacy Quick Reference

• 🔒 Your data is stored securely and encrypted
• 📱 Most data stays on your device unless you choose cloud sync
• 🚫 We never sell your personal information
• ✅ You control what data is shared and how it’s used
• 🗑️ You can delete your data anytime
• 📧 Contact tesiapphelp@gmail.com for any questions
• ⚡ We respond to privacy requests within 72 hours
• 🌍 Global privacy compliance with local protections

This privacy policy is effective as of the date last updated and will remain in effect until terminated or modified according to the procedures outlined herein.