PRIVACY POLICY - LifeCompass

Last Updated: September 2025

This Privacy Policy describes how Ryan Novinc trading as AppLabs ("we," "us," or "our") collects, uses, and protects your personal information when you use the LifeCompass mobile application ("App").

1. OVERVIEW

1.1 Our Commitment to Privacy

We are committed to protecting your privacy and being transparent about how we handle your personal information. This policy explains what data we collect, why we collect it, how we use it, and your rights regarding your personal data.

1.2 Local-First Data Architecture

LifeCompass is designed with a "local-first" approach, meaning most of your data is stored directly on your device and never leaves your device. This includes:

• Your personal goals, tasks, and projects
• Financial tracking data you enter
• Personal notes and achievements
• App preferences and customizations
• Progress tracking and statistics

1.3 Scope of This Policy

This policy applies to all users of LifeCompass, regardless of geographic location, and covers our practices for handling personal information in compliance with applicable privacy laws including:

• Australian Privacy Principles (APPs)
• General Data Protection Regulation (GDPR) - EU
• California Consumer Privacy Act (CCPA) - USA
• Personal Information Protection and Electronic Documents Act (PIPEDA) - Canada

2. INFORMATION WE COLLECT

2.1 Account Information (Stored in Cloud)

When you create an account, we collect:

• Email address - for account creation and communication
• Phone number - for account security and verification
• Name - for personalization and account management
• Profile photo (optional) - for app personalization
• Country/Region - for feature customization and compliance

2.2 Subscription and Payment Information (Managed by App Stores)

• Subscription status and plan type
• Purchase history (handled by Apple App Store/Google Play Store)
• Referral code usage and generation
• Payment processing is handled entirely by Apple/Google - we never see payment card details

2.2.1 AI Service Assignment Data

For AI subscriptions and packages, we also collect and process:

• Email address for service assignment - provided during purchase to assign AI services to your account
• Purchase product identifiers - to determine which AI services you have purchased
• Service activation timestamps - to track when services become active
• Subscription tier changes - to manage upgrades/downgrades between AI service levels
• Service expiration dates - for AI packages with fixed durations

This information is necessary to:

• Assign purchased AI services to the correct user account
• Activate services immediately upon purchase confirmation
• Manage service stacking between subscriptions and packages
• Handle subscription changes and renewals
• Provide customer support for billing-related issues

2.3 Technical Information (Automatically Collected)

• Device Information: Device model, operating system version, app version
• Usage Analytics: Feature usage patterns, crash reports, performance metrics
• Authentication Data: Secure tokens for maintaining your logged-in state
• Error Logs: Technical information to help us fix bugs and improve the app

2.4 AI Interaction Data (Cloud Processing Required)

When you use AI features:

• Messages sent to AI - your questions and requests
• AI responses - for quality improvement and safety monitoring
• Conversation context - limited context needed for coherent responses
• Usage patterns - to improve AI feature performance

Important: AI conversations are processed by third-party AI services (OpenAI). See section 4.3 for details.

2.5 Local Device Data (Never Leaves Your Device)

The following data is stored locally on your device using AsyncStorage and is NOT transmitted to our servers:

• Personal goals, tasks, and project details
• Financial tracking data you enter (income, expenses, savings, debts)
• Personal notes and journal entries
• Time blocking and calendar data
• Achievement progress and streaks
• App customization preferences
• Research insights and personal statistics

2.6 Third-Party Community Platform Data

Community Platform Information:

When you access third-party community platforms through LifeCompass (such as Discord servers):

• Platform Account Data: Your username, profile information, and messages on third-party platforms are governed by that platform's privacy policy, not ours
• Integration Data: We may collect limited information necessary to facilitate community access, such as your community membership status
• Referral Information: If you access community platforms through LifeCompass links or invitations

Important Disclaimers:

• We do not control, access, or monitor your communications on third-party platforms
• Information shared in community platforms is governed by the third-party platform's privacy practices
• We cannot guarantee the privacy or confidentiality of communications on third-party platforms
• Community interactions may be visible to other community members according to the platform's settings
• We are not responsible for the data handling practices of third-party community platforms

Your Control: You can control your privacy on third-party platforms through their respective privacy settings and policies.

3. HOW WE USE YOUR INFORMATION

3.1 Account Management and Authentication

• Create and maintain your user account
• Authenticate your identity when you log in
• Provide customer support and respond to inquiries
• Send important service-related notifications

3.2 Service Provision and Improvement

• Deliver core app functionality
• Personalize your app experience
• Analyze usage patterns to improve features
• Monitor and maintain app performance
• Prevent fraud and abuse

3.3 AI-Powered Features

• Process your questions to generate helpful responses
• Maintain conversation context for coherent interactions
• Improve AI response quality through analysis
• Ensure AI safety and prevent harmful content

3.4 Communication

• Send welcome messages and onboarding information
• Notify you about important app updates or changes
• Respond to support requests and feedback
• Send subscription-related notifications

3.5 Legal and Compliance

• Comply with applicable laws and regulations
• Respond to legal requests and prevent illegal activity
• Enforce our Terms of Service
• Protect our rights and the rights of our users

3.6 Community and Third-Party Platform Data

Community Integration:

We may use limited data to:

• Verify your eligibility for community access
• Provide customer support related to community issues
• Investigate violations of our Community Guidelines
• Comply with legal obligations related to community conduct

Third-Party Platform Processing:

When you use third-party community platforms:

• Your data is processed according to the third-party platform's privacy policy
• We do not receive, store, or process your communications on third-party platforms
• Community platform providers may share limited information with us for moderation purposes
• We may receive reports about Terms of Service violations that occur on community platforms

4. INFORMATION SHARING AND DISCLOSURE

4.1 We Do NOT Sell Your Personal Information

We do not sell, rent, or trade your personal information to third parties for monetary or other valuable consideration.

4.2 Service Providers

We share limited information with trusted service providers who help us operate the App:

AWS Cognito (Authentication Service)

• Email, phone number, name for account management
• Located in Australia (ap-southeast-2 region)
• Subject to AWS privacy protections and security standards

OpenAI (AI Services)

• Messages you send to AI features
• Limited conversation context for response generation
• Subject to OpenAI's privacy policy and data handling practices
• We do not share your personal identity with OpenAI

App Store Platforms (Apple/Google)

• Basic account information for app distribution
• Subscription management data
• Handled according to platform privacy policies

4.3 Third-Party AI Processing (OpenAI)

Important Information About AI Features:

When you use AI features in LifeCompass:

• Your messages are sent to OpenAI for processing
• OpenAI may temporarily store data to provide the service
• We implement privacy safeguards but cannot guarantee complete data isolation
• OpenAI has their own privacy policy governing their data handling
• We recommend not sharing highly sensitive information in AI conversations

Your Control: You can choose not to use AI features to avoid third-party processing.

4.4 Legal Requirements and Community Safety

We may disclose your information when required by law or to:

• Comply with legal processes (court orders, subpoenas)
• Protect our rights and property
• Ensure user and community safety and prevent harm
• Investigate fraud, abuse, or violations of community guidelines
• Respond to reports of illegal activity or harassment on community platforms
• Cooperate with third-party platforms' safety and moderation efforts
• Protect community members from harm or illegal activity

4.5 Business Transactions

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, with notice provided to you.

5. DATA SECURITY

5.1 Security Measures

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption: Data transmitted between your device and our servers is encrypted using industry-standard protocols (TLS/SSL)
• Access Controls: Strict access controls limit who can access your data
• Secure Storage: Cloud data is stored in secure, encrypted databases
• Regular Security Reviews: We regularly assess and update our security practices

5.2 Local Device Security

Since most of your data stays on your device:

• Use your device's built-in security features (screen lock, biometrics)
• Keep your device's operating system updated
• Don't share your device with untrusted individuals
• We cannot protect locally stored data if your device is compromised

5.3 Account Security

• Choose a strong, unique password for your account
• Don't share your login credentials with others
• Log out of the app on shared or public devices
• Contact us immediately if you suspect unauthorized access

6. DATA RETENTION

6.1 Account Data

We retain your account information for as long as your account is active, plus:

• 30 days after account deletion (to allow for account recovery)
• Longer periods if required by law or for legitimate business purposes

6.2 AI Conversation Data

• AI conversations may be retained for up to 90 days for quality improvement
• You can request deletion of AI conversation history at any time
• Technical logs may be retained longer for security and debugging purposes

6.3 Local Device Data

Data stored on your device remains until you:

• Delete the app from your device
• Clear the app's data through device settings
• Manually delete content within the app

7. YOUR PRIVACY RIGHTS

7.1 Rights for All Users

Regardless of your location, you have the right to:

• Access: Request a copy of the personal data we hold about you
• Correction: Request that we correct inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal obligations)
• Data Portability: Request your data in a commonly used format
• Withdraw Consent: Withdraw consent for data processing where consent is the legal basis

7.2 Additional Rights for EU/UK Users (GDPR)

If you are in the EU or UK, you also have rights to:

• Object to processing based on legitimate interests
• Restrict processing in certain circumstances
• Lodge a complaint with your local data protection authority

7.3 Additional Rights for California Users (CCPA)

If you are a California resident, you have rights to:

• Know what categories of personal information we collect
• Know whether we sell or disclose personal information
• Opt-out of the sale of personal information (we don't sell data)
• Non-discriminatory treatment for exercising privacy rights

7.4 How to Exercise Your Rights

To exercise any of these rights, contact us at Ryan.Novinc@gmail.com with:

• Your name and email address associated with your account
• Clear description of your request
• Verification information to confirm your identity

We will respond within 30 days (or as required by applicable law).

8. INTERNATIONAL DATA TRANSFERS

8.1 Primary Data Storage

Your account data is primarily stored in:

• AWS Asia Pacific (Sydney) region for Australian compliance
• Local device storage for most personal data

8.2 Third-Party Service Transfers

Some data may be transferred to:

• OpenAI (United States) - for AI processing
• Apple/Google (Various locations) - for app store services

These transfers are protected by:

• Contractual data protection clauses
• Compliance with applicable transfer regulations
• Industry-standard security measures

8.3 Third-Party Community Platform Transfers

Community Platform Data:

When you participate in third-party community platforms:

• Your data may be transferred to and processed by third-party platform providers
• These transfers are governed by the third-party platform's privacy policy and terms
• Data may be stored in various international locations according to the platform's infrastructure
• We do not control or guarantee the security of data processed by third-party platforms

Platform-Specific Information:

• Discord: Data processed according to Discord's Privacy Policy and stored on Discord's global infrastructure

Important Note: Community discussions are for educational purposes only. Users acknowledge that discussions about financial, health, parenting, business, or other specialized topics do not constitute professional advice and should consult qualified professionals for personalized guidance in these areas.

• Other Platforms: Each platform maintains its own data handling and transfer practices

Your Responsibility: Review third-party platform privacy policies to understand how your data is handled when participating in community features.

9. CHILDREN'S PRIVACY

9.1 Age Restrictions

LifeCompass is not intended for children under 16 years old. We do not knowingly collect personal information from children under 16.

9.2 Parental Notification

If we become aware that we have collected personal information from a child under 16, we will:

• Delete the information as soon as reasonably possible
• Notify parents/guardians if contact information is available
• Take steps to prevent future collection

9.3 Parental Rights

Parents/guardians can contact us to:

• Review their child's personal information
• Request deletion of their child's data
• Refuse further collection of their child's information

10. COOKIES AND TRACKING TECHNOLOGIES

10.1 Mobile App Context

As a mobile app, LifeCompass does not use traditional web cookies. However, we do use similar technologies:

10.2 Local Storage Technologies

• AsyncStorage: For storing app data locally on your device
• Secure Storage: For storing sensitive authentication information
• Crash Analytics: For collecting crash reports to improve app stability

10.3 Analytics and Performance

• Usage Analytics: Anonymous data about feature usage and app performance
• Error Tracking: Information about app errors and crashes
• Performance Monitoring: Data to help optimize app speed and reliability

10.4 Your Control

You can control these technologies by:

• Disabling crash reporting in app settings
• Turning off usage analytics in app settings
• Clearing app data through device settings

11. MARKETING AND COMMUNICATIONS

11.1 Service Communications

We may send you:

• Welcome and onboarding messages
• Important service updates and security notices
• Subscription and billing notifications
• Response to support requests

These communications are necessary for service provision and cannot be opted out of while maintaining an account.

11.2 Marketing Communications

We may send promotional content about:

• New features and improvements
• Special offers and promotions
• Tips for using the app effectively

Opt-out: You can unsubscribe from marketing communications at any time through:

• Unsubscribe links in emails
• App notification settings
• Contacting our support team

11.3 Push Notifications

The app may send push notifications for:

• Reminders and goal tracking
• Achievement celebrations
• Important app updates

You can control push notifications through your device settings or in-app preferences.

12. CHANGES TO THIS PRIVACY POLICY

12.1 Policy Updates

We may update this Privacy Policy from time to time to reflect:

• Changes in our data practices
• New features or services
• Updates to applicable laws
• Feedback from users and regulators

12.2 Notification of Changes

We will notify you of material changes through:

• In-app notifications
• Email notifications to your registered address
• Prominent notice in the app

12.3 Continued Use

Your continued use of LifeCompass after we post changes constitutes your acceptance of the updated Privacy Policy.

13. REGIONAL PRIVACY INFORMATION

13.1 Australia

We comply with the Australian Privacy Principles under the Privacy Act 1988. You can lodge complaints with the Office of the Australian Information Commissioner (OAIC).

Contact: OAIC at oaic.gov.au or 1300 363 992

13.2 European Union/United Kingdom

We comply with GDPR requirements. You can lodge complaints with your local data protection authority.

UK Contact: Information Commissioner's Office (ICO) at ico.org.uk

13.3 United States

We comply with applicable U.S. privacy laws including CCPA for California residents.

California Contact: California Attorney General's Office for CCPA complaints

13.4 Canada

We comply with PIPEDA requirements for Canadian users.

Contact: Privacy Commissioner of Canada at priv.gc.ca

14. CONTACT INFORMATION

14.1 Privacy Questions and Community Issues

For privacy-related questions or concerns, including community platform issues:

Privacy Officer Email: Ryan.Novinc@gmail.com

General Support: Ryan.Novinc@gmail.com

Community Issues: Ryan.Novinc@gmail.com

Mailing Address: 13 Musson Close Florey

Community Platform Privacy Issues:

For privacy concerns specifically related to third-party community platforms:

1. Contact the third-party platform directly using their privacy contact information

2. Contact us if the issue relates to LifeCompass's integration with the platform

3. We may assist with issues that fall within our control, but cannot resolve third-party platform privacy matters

14.2 Data Protection Officer (EU/UK)

If required by applicable law, our Data Protection Officer can be reached at:

Ryan.Novinc@gmail.com

14.3 Response Times

We aim to respond to privacy inquiries within:

• 30 days for general inquiries
• 72 hours for urgent security matters
• Time periods required by applicable law

---

Last Updated: September 2025

Next Review Date: September 2026

By using LifeCompass, you acknowledge that you have read, understood, and agree to the collection, use, and disclosure of your personal information in accordance with this Privacy Policy.

© 2025 AppLabs. All rights reserved.