|
| 1 | +<div class="container mx-auto px-4 py-8"> |
| 2 | + <div class="max-w-4xl mx-auto"> |
| 3 | + <div class="bg-white border-2 border-black shadow-[5px_5px_0] shadow-black p-8 mb-8"> |
| 4 | + <h1 class="text-4xl font-bold mb-4 uppercase">Privacy Policy</h1> |
| 5 | + |
| 6 | + <p class="text-sm font-bold text-gray-700 mb-6 pb-6 border-b-2 border-gray-200"> |
| 7 | + Last Updated: October 21, 2025 |
| 8 | + </p> |
| 9 | + |
| 10 | + <div class="space-y-8"> |
| 11 | + <section class="mb-8"> |
| 12 | + <h2 class="text-2xl font-bold mb-4">1. Introduction</h2> |
| 13 | + <p class="mb-4"> |
| 14 | + Welcome to FoundIT ("we," "our," or "us"). We are committed to protecting your privacy and personal information. |
| 15 | + This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our |
| 16 | + platform at foundit.passionfruits.dev (the "Service"). |
| 17 | + </p> |
| 18 | + <p class="mb-4"> |
| 19 | + By using FoundIT, you agree to the collection and use of information in accordance with this policy. |
| 20 | + </p> |
| 21 | + </section> |
| 22 | + |
| 23 | + <section class="mb-8"> |
| 24 | + <h2 class="text-2xl font-bold mb-4">2. Information We Collect</h2> |
| 25 | + |
| 26 | + <h3 class="text-xl font-semibold mb-3">2.1 Personal Information</h3> |
| 27 | + <p class="mb-4">When you register for an account, we collect:</p> |
| 28 | + <ul class="list-disc pl-6 mb-4"> |
| 29 | + <li>Email address</li> |
| 30 | + <li>Name (if provided)</li> |
| 31 | + <li>Password (encrypted)</li> |
| 32 | + <li>Account creation date</li> |
| 33 | + </ul> |
| 34 | + |
| 35 | + <h3 class="text-xl font-semibold mb-3">2.2 Item Information</h3> |
| 36 | + <p class="mb-4">When you register items on our platform, we collect:</p> |
| 37 | + <ul class="list-disc pl-6 mb-4"> |
| 38 | + <li>Item descriptions and names</li> |
| 39 | + <li>Item categories</li> |
| 40 | + <li>Contact preferences for found items</li> |
| 41 | + <li>Any additional information you choose to provide about your items</li> |
| 42 | + </ul> |
| 43 | + |
| 44 | + <h3 class="text-xl font-semibold mb-3">2.3 Usage Information</h3> |
| 45 | + <p class="mb-4">We automatically collect certain information when you use our Service:</p> |
| 46 | + <ul class="list-disc pl-6 mb-4"> |
| 47 | + <li>IP address</li> |
| 48 | + <li>Browser type and version</li> |
| 49 | + <li>Device information</li> |
| 50 | + <li>Pages visited and features used</li> |
| 51 | + <li>Date and time of access</li> |
| 52 | + <li>QR code scans and found item reports</li> |
| 53 | + </ul> |
| 54 | + |
| 55 | + <h3 class="text-xl font-semibold mb-3">2.4 OAuth Information</h3> |
| 56 | + <p class="mb-4">If you choose to sign in with Google OAuth, we receive:</p> |
| 57 | + <ul class="list-disc pl-6 mb-4"> |
| 58 | + <li>Your email address</li> |
| 59 | + <li>Your name</li> |
| 60 | + <li>Your profile picture (if you choose to share it)</li> |
| 61 | + <li>Basic account information necessary for authentication</li> |
| 62 | + </ul> |
| 63 | + </section> |
| 64 | + |
| 65 | + <section class="mb-8"> |
| 66 | + <h2 class="text-2xl font-bold mb-4">3. How We Use Your Information</h2> |
| 67 | + <p class="mb-4">We use the collected information for the following purposes:</p> |
| 68 | + <ul class="list-disc pl-6 mb-4"> |
| 69 | + <li><strong>Account Management:</strong> To create and manage your account</li> |
| 70 | + <li><strong>Service Delivery:</strong> To provide item registration, QR code generation, and found item reporting features</li> |
| 71 | + <li><strong>Communication:</strong> To notify you when your items are reported as found</li> |
| 72 | + <li><strong>Security:</strong> To protect against unauthorized access and fraudulent activity</li> |
| 73 | + <li><strong>Improvement:</strong> To analyze usage patterns and improve our Service</li> |
| 74 | + <li><strong>Legal Compliance:</strong> To comply with applicable laws and regulations</li> |
| 75 | + </ul> |
| 76 | + <h3 class="text-xl font-semibold mb-3">3.1 Legal Bases for Processing (GDPR)</h3> |
| 77 | + <p class="mb-4">Where the GDPR applies, we process your personal information on the following legal bases:</p> |
| 78 | + <ul class="list-disc pl-6 mb-4"> |
| 79 | + <li><strong>Contract:</strong> To provide and operate the Service you request</li> |
| 80 | + <li><strong>Legitimate Interests:</strong> To secure, maintain, and improve the Service</li> |
| 81 | + <li><strong>Consent:</strong> Where required (e.g., certain communications); you may withdraw consent at any time</li> |
| 82 | + <li><strong>Legal Obligation:</strong> To comply with applicable laws</li> |
| 83 | + </ul> |
| 84 | + </section> |
| 85 | + |
| 86 | + <section class="mb-8"> |
| 87 | + <h2 class="text-2xl font-bold mb-4">4. How We Share Your Information</h2> |
| 88 | + <p class="mb-4">We do not sell your personal information. We may share your information in the following circumstances:</p> |
| 89 | + |
| 90 | + <h3 class="text-xl font-semibold mb-3">4.1 With Finders</h3> |
| 91 | + <p class="mb-4"> |
| 92 | + When someone scans your item's QR code and reports it as found, we share only the contact information |
| 93 | + you've designated for that specific item (such as an email address or phone number). |
| 94 | + </p> |
| 95 | + |
| 96 | + <h3 class="text-xl font-semibold mb-3">4.2 Service Providers</h3> |
| 97 | + <p class="mb-4"> |
| 98 | + We may share information with third-party service providers who assist us in operating our Service, |
| 99 | + such as hosting providers, email services, and analytics tools. These providers are contractually |
| 100 | + obligated to protect your information. |
| 101 | + </p> |
| 102 | + |
| 103 | + <h3 class="text-xl font-semibold mb-3">4.3 Legal Requirements</h3> |
| 104 | + <p class="mb-4"> |
| 105 | + We may disclose your information if required by law, court order, or governmental request, or to |
| 106 | + protect our rights, property, or safety. |
| 107 | + </p> |
| 108 | + </section> |
| 109 | + |
| 110 | + <section class="mb-8"> |
| 111 | + <h2 class="text-2xl font-bold mb-4">5. Data Security</h2> |
| 112 | + <p class="mb-4"> |
| 113 | + We implement appropriate technical and organizational security measures to protect your personal information |
| 114 | + against unauthorized access, alteration, disclosure, or destruction. These measures include: |
| 115 | + </p> |
| 116 | + <ul class="list-disc pl-6 mb-4"> |
| 117 | + <li>Encryption of data in transit using SSL/TLS</li> |
| 118 | + <li>Encrypted password storage</li> |
| 119 | + <li>Regular security assessments</li> |
| 120 | + <li>Access controls and authentication mechanisms</li> |
| 121 | + <li>Secure hosting infrastructure</li> |
| 122 | + </ul> |
| 123 | + <p class="mb-4"> |
| 124 | + However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security. |
| 125 | + </p> |
| 126 | + </section> |
| 127 | + |
| 128 | + <section class="mb-8"> |
| 129 | + <h2 class="text-2xl font-bold mb-4">6. Data Retention</h2> |
| 130 | + <p class="mb-4"> |
| 131 | + We retain your personal information for as long as your account is active or as needed to provide you services. |
| 132 | + You may request deletion of your account and associated data at any time. We will retain and use your information |
| 133 | + as necessary to comply with legal obligations, resolve disputes, and enforce our agreements. |
| 134 | + </p> |
| 135 | + </section> |
| 136 | + |
| 137 | + <section class="mb-8"> |
| 138 | + <h2 class="text-2xl font-bold mb-4">7. Your Rights and Choices</h2> |
| 139 | + <p class="mb-4">You have the following rights regarding your personal information:</p> |
| 140 | + <ul class="list-disc pl-6 mb-4"> |
| 141 | + <li><strong>Access:</strong> Request access to the personal information we hold about you</li> |
| 142 | + <li><strong>Correction:</strong> Request correction of inaccurate or incomplete information</li> |
| 143 | + <li><strong>Deletion:</strong> Request deletion of your account and personal information</li> |
| 144 | + <li><strong>Data Portability:</strong> Request a copy of your data in a structured, machine-readable format</li> |
| 145 | + <li><strong>Opt-Out:</strong> Opt out of marketing communications (if applicable)</li> |
| 146 | + <li><strong>Withdraw Consent:</strong> Withdraw consent for data processing where consent is the legal basis</li> |
| 147 | + </ul> |
| 148 | + <p class="mb-4"> |
| 149 | + To exercise these rights, contact us at the email address in the Contact section below. We may request information to verify your identity. We aim to respond within 30 days (or the timeframe required by applicable law). You may also request account and data deletion via email. |
| 150 | + </p> |
| 151 | + </section> |
| 152 | + |
| 153 | + <section class="mb-8"> |
| 154 | + <h2 class="text-2xl font-bold mb-4">8. Cookies and Tracking Technologies</h2> |
| 155 | + <p class="mb-4"> |
| 156 | + We use cookies and similar tracking technologies to track activity on our Service and store certain information. |
| 157 | + Cookies are files with a small amount of data that are sent to your browser from a website and stored on your device. |
| 158 | + </p> |
| 159 | + <p class="mb-4">We use cookies for:</p> |
| 160 | + <ul class="list-disc pl-6 mb-4"> |
| 161 | + <li>Authentication and session management</li> |
| 162 | + <li>Security purposes</li> |
| 163 | + <li>Analyzing usage patterns</li> |
| 164 | + <li>Remembering your preferences</li> |
| 165 | + </ul> |
| 166 | + <p class="mb-4"> |
| 167 | + You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, |
| 168 | + if you do not accept cookies, you may not be able to use some portions of our Service. |
| 169 | + </p> |
| 170 | + </section> |
| 171 | + |
| 172 | + <section class="mb-8"> |
| 173 | + <h2 class="text-2xl font-bold mb-4">9. Third-Party Links</h2> |
| 174 | + <p class="mb-4"> |
| 175 | + Our Service may contain links to third-party websites or services that are not operated by us. We have no |
| 176 | + control over and assume no responsibility for the content, privacy policies, or practices of any third-party |
| 177 | + sites or services. We encourage you to review the privacy policy of every site you visit. |
| 178 | + </p> |
| 179 | + </section> |
| 180 | + |
| 181 | + <section class="mb-8"> |
| 182 | + <h2 class="text-2xl font-bold mb-4">10. Children's Privacy</h2> |
| 183 | + <p class="mb-4"> |
| 184 | + Our Service is not intended for children under the age of 13. We do not knowingly collect personal information |
| 185 | + from children under 13. If you are a parent or guardian and believe your child has provided us with personal |
| 186 | + information, please contact us so we can delete such information. |
| 187 | + </p> |
| 188 | + </section> |
| 189 | + |
| 190 | + <section class="mb-8"> |
| 191 | + <h2 class="text-2xl font-bold mb-4">11. International Data Transfers</h2> |
| 192 | + <p class="mb-4"> |
| 193 | + Your information may be transferred to and maintained on computers located outside of your state, province, |
| 194 | + country, or other governmental jurisdiction where data protection laws may differ. Where required, we use appropriate safeguards for such transfers, such as Standard Contractual Clauses approved by the European Commission. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy. |
| 195 | + </p> |
| 196 | + </section> |
| 197 | + |
| 198 | + <section class="mb-8"> |
| 199 | + <h2 class="text-2xl font-bold mb-4">12. Changes to This Privacy Policy</h2> |
| 200 | + <p class="mb-4"> |
| 201 | + We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new |
| 202 | + Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy |
| 203 | + Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. |
| 204 | + </p> |
| 205 | + </section> |
| 206 | + |
| 207 | + <section class="mb-8"> |
| 208 | + <h2 class="text-2xl font-bold mb-4">13. Google OAuth Disclosure</h2> |
| 209 | + <p class="mb-4"> |
| 210 | + FoundIT's use and transfer to any other app of information received from Google APIs will adhere to |
| 211 | + <a href="https://developers.google.com/terms/api-services-user-data-policy" target="_blank" rel="noopener noreferrer" class="text-blue-600 hover:underline">Google API Services User Data Policy</a>, |
| 212 | + including the Limited Use requirements. |
| 213 | + </p> |
| 214 | + <p class="mb-4"> |
| 215 | + We only use the information received from Google APIs to: |
| 216 | + </p> |
| 217 | + <ul class="list-disc pl-6 mb-4"> |
| 218 | + <li>Authenticate your identity</li> |
| 219 | + <li>Create and manage your FoundIT account</li> |
| 220 | + <li>Communicate with you about your items</li> |
| 221 | + </ul> |
| 222 | + <p class="mb-4"> |
| 223 | + We do not use this information for serving advertisements or any other purposes beyond the core functionality of FoundIT. |
| 224 | + </p> |
| 225 | + </section> |
| 226 | + |
| 227 | + <section class="mb-8"> |
| 228 | + <h2 class="text-2xl font-bold mb-4">14. Contact Us</h2> |
| 229 | + <p class="mb-4"> |
| 230 | + If you have any questions about this Privacy Policy or our data practices, please contact us at: |
| 231 | + </p> |
| 232 | + <p class="mb-4"> |
| 233 | + <strong>Email:</strong> privacy@passionfruits.dev<br> |
| 234 | + <strong>Website:</strong> <%= link_to "foundit.passionfruits.dev", "https://foundit.passionfruits.dev", class: "text-blue-600 hover:underline" %> |
| 235 | + </p> |
| 236 | + </section> |
| 237 | + </div> |
| 238 | + </div> |
| 239 | + </div> |
| 240 | +</div> |
0 commit comments