Privacy Policy

1. Introduction

Welcome to MicroCoach ("we," "our," or "us"). We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered compliance training module generator application.

2. Information We Collect

2.1 Personal Information

We collect the following personal information when you register and use our services:

• Email address (required for account creation and verification)
• Password (encrypted and stored securely using industry-standard hashing)
• Payment information (processed securely through Stripe or Google Play Billing)
• IP address for security and fraud prevention

2.1.1 Android App Permissions

The Android app may request the following permissions:

• Internet Access: Required to connect to our servers and AI services
• Network State: To detect connectivity and optimize performance
• Storage: To cache training modules for offline viewing (optional)

We do not access your camera, microphone, contacts, or location data.

2.2 Content and Usage Data

• Uploaded Documents: Regulatory text and compliance documents you upload for training module generation
• Generated Content: AI-generated training modules, lessons, quizzes, and assessments
• Training History: Records of your generated training modules and quiz results
• Usage Analytics: Information about how you interact with our application

2.3 Automatically Collected Information

• Device information (device model, operating system version, browser type)
• Android device identifiers (for crash reporting and analytics)
• Access times and dates
• Pages viewed and actions taken
• App performance and crash data
• Cookies and similar tracking technologies

2.4 Google Play Billing Information

If you subscribe through the Google Play Store, Google processes your payment and shares limited information with us:

• Purchase verification tokens (to validate subscriptions)
• Subscription status and expiration dates
• Product IDs of purchased items

We do not receive your credit card or payment details from Google Play. All payment processing is handled securely by Google. Please review Google's Privacy Policy for information about how Google handles your payment data.

3. How We Use Your Information

We use your information for the following purposes:

• Service Delivery: To generate AI-powered training modules from your regulatory text
• Account Management: To create, maintain, and secure your account
• Payment Processing: To process subscription payments through Stripe
• Email Verification: To verify your email address and send account-related notifications
• Content Storage: To save and retrieve your training modules and quiz history
• AI Processing: To process your uploaded documents using OpenAI and Claude AI services
• Customer Support: To respond to your support requests and inquiries
• Service Improvement: To analyze usage patterns and improve our application
• Security: To detect, prevent, and address technical issues and fraudulent activities

4. AI Services and Third-Party Processing

MicroCoach uses artificial intelligence services to generate training content:

• OpenAI: Your uploaded regulatory text is processed by OpenAI's API to generate training modules, lessons, and quiz questions
• Claude AI (Anthropic): May be used for content generation and processing

These AI services process your content according to their respective privacy policies. We do not control how these third-party AI providers handle your data, but we use enterprise-grade APIs with strong privacy protections.

5. Data Sharing and Disclosure

We share your information only in the following circumstances:

• Service Providers: With trusted third-party services:
  • Stripe for web payment processing
  • Google Play Billing for Android in-app purchases
  • OpenAI and Anthropic Claude for AI content generation
  • Supabase for secure database hosting
  • Email service providers for transactional emails (account verification, password resets)
• Shared Modules: When you choose to share a training module, the recipient can access that specific module through a secure link
• Legal Requirements: When required by law, court order, or government regulations
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Protection of Rights: To protect our rights, privacy, safety, or property, and that of our users

6. Data Security

We implement appropriate technical and organizational security measures to protect your information:

• SSL/TLS encryption for data transmission
• Encrypted password storage using SHA-256 hashing
• Secure authentication and session management
• Regular security audits and updates
• Access controls and data minimization practices

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.

7. Data Retention

We retain your information for as long as necessary to:

• Provide you with our services
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Maintain your training history and generated modules

When you cancel your subscription, we retain your data for 90 days to allow for reactivation. After this period, your data may be deleted unless required for legal compliance.

8. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information and account
• Export: Request a copy of your data in a portable format (JSON)
• Opt-Out: Unsubscribe from marketing communications (we send minimal emails)
• Restriction: Request restriction of processing in certain circumstances

How to Delete Your Data

To request deletion of your account and personal data:

1. Email us at support@blackfyre.us with the subject "Data Deletion Request"
2. Include your registered email address
3. We will verify your identity and process the request within 30 days
4. Upon completion, we will send a confirmation email

What gets deleted: Your account, email, password, generated training modules, quiz history, and subscription information.

What we retain: Minimal records required for legal compliance, fraud prevention, and financial reporting (typically transaction IDs and dates, without personal identifiers).

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Maintain your login session
• Remember your preferences
• Analyze usage patterns
• Improve application performance

You can control cookies through your browser settings, but disabling cookies may limit your ability to use certain features of our application.

10. Children's Privacy

Our service is designed for adults and educational institutions. We do not knowingly collect personal information from children under 13 years of age in compliance with the Children's Online Privacy Protection Act (COPPA).

Users between 13-18 years old should use MicroCoach only with parental or guardian consent and supervision.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@blackfyre.us. We will promptly delete such information from our systems.

10.1 Third-Party Links and Services

Our application may contain links to third-party websites, services, or resources that are not operated by us. This Privacy Policy does not apply to third-party services.

Third-party services we use:

• OpenAI: OpenAI Privacy Policy
• Anthropic (Claude): Anthropic Privacy Policy
• Stripe: Stripe Privacy Policy
• Google Play: Google Privacy Policy
• Supabase: Supabase Privacy Policy

We encourage you to review the privacy policies of any third-party services you access through our application.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using MicroCoach, you consent to the transfer of your information to the United States and other countries where our service providers operate.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information
• Right to opt-out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your CCPA rights

13. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Rights related to automated decision-making

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending you an email notification (for significant changes)
• Displaying a notice in the application

Your continued use of MicroCoach after changes are posted constitutes your acceptance of the updated Privacy Policy.

15. Google Play Store Compliance

This section provides additional information for users who download MicroCoach from the Google Play Store:

App Developer Information

• Developer: Blackfyre LLC
• App Name: MicroCoach - AI Training Generator
• Package Name: us.blackfyre.microcoach.twa
• Support Email: support@blackfyre.us

Data Safety Summary

As required by Google Play's Data Safety section:

• Data Collection: Yes, we collect email, password, and uploaded training content
• Data Sharing: Yes, with service providers (OpenAI, Stripe, Supabase) for app functionality
• Security Practices: Data is encrypted in transit using TLS/SSL
• Data Deletion: You can request deletion of your data at any time
• No Ads: We do not display third-party advertisements
• No Sale of Data: We do not sell your personal information

In-App Purchases

MicroCoach offers subscription-based in-app purchases through Google Play Billing. All purchases are processed by Google, and you can manage your subscriptions through the Google Play Store app or your Google account.

Refund Policy: Refund requests should be submitted through Google Play Store within the applicable refund window, typically within 48 hours of purchase.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Response Time: We typically respond to privacy-related inquiries within 48 hours and will complete data deletion requests within 30 days.