Privacy Policy and GDPR Compliance Statement

Last updated: 26.03.2025

Version: 1

This Privacy Policy explains how Sentia (“we,” “our,” or “us”) collects, uses, shares, and protects your personal information when you use our mobile application and related services (collectively, the “Services”). By using our Services, you acknowledge and accept the terms outlined here, including our compliance with the General Data Protection Regulation (GDPR). If you disagree with any part of this policy, you should discontinue using our Services.

We may revise this Privacy Policy from time to time. If substantial updates occur, we will modify the “Effective Date” and notify users via prominent notices on our Services or direct communication using the contact information you have provided (e.g., via email to the address you’ve shared). Continuing to use our Services after such changes indicates your acceptance of the revised terms. We encourage you to review this Privacy Policy regularly.

This Privacy Policy is part of our Terms of Service and is incorporated by reference. By using our Services, you also agree to our Terms of Service. If you do not agree, please stop using our Services.

1. Information We Collect

We collect both information that you provide directly and data gathered automatically from your device. Some of this information is personally identifiable (“Personal Information”), while other data remains anonymous (“Anonymous Information”). If Anonymous Information becomes linked to Personal Information, we will treat it as Personal Information.

Information You Provide This may include:

Name, email, phone number, and login credentials (e.g., via Facebook or Apple). Birth details such as date, time, and place. Payment details (processed through third-party providers; we do not store payment card information). Communications with us, such as support inquiries or survey responses. If you provide your phone number, we may send transactional messages (e.g., account verification, password reset). Standard messaging fees may apply.

Information Collected Automatically When you use our Services, we may collect:

IP address, operating system, device type, screen dimensions, and language settings. Usage data, including feature interactions and activity timestamps. Cookies and tracking technologies to improve functionality and analyze engagement.

2. Do Not Track (DNT) Signals

We respect Do Not Track (DNT) settings in browsers where applicable.

3. How We Use Your Information

We use the information we collect to:

Operate and improve our Services. Manage and authenticate user accounts. Communicate with you about our Services. Process transactions and fulfill orders. Provide customer and technical support. Conduct research and analytics. Detect, prevent, and investigate fraud or security threats. Comply with legal obligations, including those under GDPR.

4. Sharing of Information

We do not sell your personal data. However, we may share information:

With trusted business partners who assist in providing our Services, under strict confidentiality agreements. With customer support teams to resolve inquiries. When legally required or to protect security and law enforcement interests. As part of a business transition (e.g., acquisition or merger).

5. Children’s Privacy

Our Services are not designed for individuals under 13, and we do not knowingly collect data from children under this age. If you believe we have inadvertently collected a child’s data, please contact us at support@hisentia.app.

6. External Links

Our Services may contain links to third-party websites. We are not responsible for their privacy practices, and we encourage you to review their policies before sharing personal data.

7. Data Security and Storage

We implement industry-standard security measures to protect your personal data, including:

Encryption: All data is encrypted during transmission and storage. Secure Servers: Your data is primarily stored on secure servers, including SUPABASE, with restricted access. Regular Audits: We conduct regular security audits to ensure our systems remain secure. However, no system can guarantee complete security. In the event of a data breach, we will notify affected users as required by law, including under GDPR.

8. Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. For example:

Account data is kept while your account is active. Transaction data is retained for legal and accounting purposes. If you request deletion of your data, we will comply unless retention is legally required.

9. International Data Transfers

If you access our Services from outside our primary data storage locations, your information may be transferred across jurisdictions with different data protection laws. By using our Services, you consent to these transfers. We ensure that such transfers comply with GDPR requirements, including the use of Standard Contractual Clauses where necessary.

10. GDPR Compliance and Your Rights

If you are a resident of the European Union (EU) or if your personal data is processed by our Services, you have specific rights under the General Data Protection Regulation (GDPR). These rights include:

Right to Access: You can request a copy of the personal data we hold about you. Right to Correction: You can request that we correct any inaccuracies in your data. Right to Deletion: You can request that we delete your personal data (also known as the "right to be forgotten"). Right to Restrict Processing: You can request that we limit how we use your data. Right to Data Portability: You can request that we provide your data in a structured, commonly used format. Right to Object: You can object to certain types of data processing, such as direct marketing. Right to Withdraw Consent: You can withdraw your consent for data processing at any time. To exercise any of these rights, please contact us at support@hisentia.app. We will respond to your request within 30 days, as required by GDPR.

11. Consent

By using our Services and agreeing to our Terms of Service, you also consent to this Privacy Policy and the processing of your personal data as described herein, in compliance with GDPR. You can withdraw your consent at any time by contacting us at support@hisentia.app, though this may affect your ability to use certain features of the Services.

12. Contact Information

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, including exercising your GDPR rights, please contact us at support@hisentia.app We are committed to addressing your concerns and ensuring your data is handled with care.