Privacy Policy for TouchPoints

Last Updated: July 2025

TouchPoints ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

Information We Collect

Personal Information

Profile Information: Name, email address, and profile details you provide
Account Data: User preferences, settings, and app configuration
Behavioral Data: Information about your wellness tracking and journal entries

Device Information

Device Type: Operating system, device model, and unique device identifiers
App Usage: How you interact with our app and features
Technical Data: App performance, crash reports, and error logs

Camera Access

Profile Photos: When you choose to set a profile photo, you can take a new photo or select from your photo library
Cloud Storage: Profile photos are uploaded to secure cloud storage
URL Storage: Photo URLs are stored in our database to display your profile picture
Optional Feature: Camera access is only used when you explicitly choose to add a photo

How We Use Your Information

Primary Uses

Service Provision: To provide and maintain our wellness tracking service
Personalization: To customize your experience and provide relevant features
Communication: To notify you about app updates and important changes
Support: To provide customer support and technical assistance

Analytics and Improvement

Usage Analysis: To understand how users interact with our app
Feature Development: To improve existing features and develop new ones
Performance Monitoring: To identify and fix technical issues

Marketing (With Consent)

Updates: To send notifications about new features and improvements
Newsletters: To share wellness tips and relevant content (opt-in only)
Promotional Content: To inform you about premium features (with your consent)

Data Storage and Security

Storage Location

Primary Storage: Canada (secure cloud services)
Photo Storage: Secure cloud storage
Local Storage: Some data is stored locally on your device
Security Measures: We implement appropriate security measures to protect your information

Data Protection

Encryption: Data is encrypted in transit and at rest
Access Controls: Limited access to personal information
Regular Audits: We regularly review our security practices

Camera Permission Usage

What We Use Camera For

Profile Photos: Taking or selecting profile pictures
Cloud Storage: Photos are uploaded to secure cloud storage
Database Storage: Photo URLs are stored in our database to display your profile picture
No Sharing: We don't share your photos with third parties

Your Control

Optional Feature: Camera access is completely optional
Permission Management: You can revoke camera permissions anytime in device settings
No Tracking: We don't track or analyze your photos

Third-Party Services

Backend Services

Purpose: Backend services, data storage, and analytics
Data Shared: App usage data and user preferences
Privacy: Subject to the service provider's privacy policy

RevenueCat

Purpose: Subscription management and billing
Data Shared: Purchase history and subscription status
Privacy: Subject to RevenueCat's privacy policy

Your Rights Under PIPEDA

As a Canadian company, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to:

Access: Request access to your personal information
Correction: Request correction of inaccurate information
Withdrawal: Withdraw consent for data processing
Deletion: Request deletion of your personal information
Complaint: File a complaint with the Privacy Commissioner of Canada

Data Retention

Retention Periods

Account Data: Retained while your account is active
Usage Data: Retained for up to 2 years for analytics
Photos: Stored in secure cloud storage
Photo URLs: Stored in our database for profile display
Deletion: Data is deleted when you delete your account

Account Deletion

Complete Removal: All personal data is permanently deleted
No Recovery: Deleted data cannot be recovered
Third-Party: We request deletion from third-party services

Children's Privacy

Our app is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you are a parent and believe your child has provided us with personal information, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

In-App Notification: Posting the new policy in the app
Email: Sending you an email notification
Website: Updating the policy on our website

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@touchpoints.app

Website: https://touchpoints-app.com

Legal Basis

This Privacy Policy is provided in compliance with:

PIPEDA (Personal Information Protection and Electronic Documents Act)
Google Play Console requirements
General Data Protection best practices

This privacy policy is effective as of July 2025 and covers all TouchPoints app versions.