Privacy Policy

Last Updated: March 10, 2026

Mohammad Sajjadur Rahman ("we," "our," or "us") is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our mobile applications and website (collectively, the "Services"). By accessing or using our Services, you agree to the terms outlined in this Privacy Policy. Where you use AI-powered features, your chart images are sent to Google Gemini for analysis. We obtain your explicit consent before any such transmission occurs.

1. Information We Collect

We collect several types of information to provide and improve our Services:

1.1 Personal Information You Provide

We may collect personal information that you voluntarily provide to us, including but not limited to:

Contact Information: Name, email address, and other contact details you provide when registering for our Services, contacting us through our contact form, or subscribing to updates.
Account Information: Username, password, and profile information when you create an account within our mobile applications.
User-Generated Content: Any information, preferences, or content you provide while using our Services, such as settings, favorites, and user-created materials.
Communication Data: Information you provide when you contact us for support, feedback, or inquiries.

All personal information collected is voluntary and provided directly by you. We do not collect personal information from visitors to our website unless they voluntarily submit it.

1.2 Information Automatically Collected

When you use our Services, we automatically collect certain technical information about your device and usage patterns:

Device Information: Device type, model, manufacturer, operating system, system version, unique device identifiers (such as IDFA on iOS or Advertising ID on Android), mobile network information, and hardware model.
Usage Data: Information about how you interact with our Services, including features used, pages visited, time spent on different sections, search queries, and in-app actions.
Log Data: IP address, browser type and version, Internet service provider (ISP), referring/exit pages, date and time stamps, clickstream data, and crash logs or diagnostic reports.
Location Data: With your permission, we may collect precise or approximate location data based on your IP address, GPS, Wi-Fi networks, or cell tower information.

1.3 Cookies and Similar Technologies

Our website and Services use cookies, web beacons, pixels, and similar tracking technologies to enhance user experience and analyze usage patterns:

Essential Cookies: Required for basic website functionality, authentication, and security.
Analytics Cookies: Used to understand how visitors interact with our Services through tools like Google Analytics.
Preference Cookies: Remember your settings, language preferences, and customization choices.
Advertising Cookies: Used by third-party advertising networks to deliver relevant advertisements based on your interests.

You can control cookie preferences through your browser settings. However, disabling certain cookies may limit functionality of our Services.

1.4 Information from Third-Party Sources

We may receive information about you from third-party services you connect with our Services, including:

Social Media Platforms: When you link your social media accounts or share content from our Services.
Third-Party Service Providers: Analytics providers, advertising networks, and other partners.
Payment Processors: Transaction information when you purchase premium features or subscriptions through app stores.

1.5 Chart Images and Visual Data

TradeSight AI allows you to photograph or upload trading charts for AI-powered analysis.

We access your camera or photo library only when you explicitly choose to use the scan feature.
Chart photos are sent to Google's Gemini AI service via a secure intermediary solely to generate technical analysis results.
We do not perform facial recognition, create biometric identifiers, or analyze any personal visual information.
Chart images are stored locally on your device to enable scan history. You can delete this at any time through the app.
Images are not permanently stored on our servers or by Google Gemini beyond the time required to process your request.
We do not sell or share your chart images with any third party for advertising or any purpose unrelated to generating your analysis result.

2. How We Use Your Information

We use the information we collect for legitimate business purposes, including:

2.1 Service Provision and Improvement

Providing, maintaining, and improving the functionality and features of our Services
Processing your account registration and managing user accounts
Delivering personalized content, recommendations, and user experiences
Analyzing usage patterns to optimize performance and develop new features
Troubleshooting technical issues and providing customer support

2.2 Communication

Responding to your inquiries, feedback, and support requests
Sending important notices about Service updates, policy changes, and security alerts
Providing newsletters, promotional materials, and marketing communications (with your consent)
Conducting surveys and research to improve user satisfaction

2.3 Analytics and Research

Conducting internal research, analytics, and statistical analysis
Understanding user behavior, preferences, and trends
Testing new features and evaluating Service performance
Creating aggregated, anonymized data for business intelligence

2.4 Advertising and Marketing

Delivering targeted advertisements through third-party advertising networks
Measuring advertising campaign effectiveness
Creating user segments for personalized marketing (where permitted by law)
Retargeting users who have shown interest in our Services

2.5 Legal Compliance and Protection

Complying with legal obligations, court orders, and regulatory requirements
Enforcing our Terms of Service and other agreements
Protecting against fraud, abuse, and security threats
Defending our legal rights and interests
Investigating and preventing violations of our policies

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process personal data based on the following legal grounds:

Consent: When you have given explicit consent for specific processing activities (e.g., marketing communications, optional features).
Contract Performance: When processing is necessary to provide the Services you have requested or to enter into a contract with you.
Legitimate Interests: When we have a legitimate business interest (e.g., improving our Services, preventing fraud, direct marketing), provided your rights and freedoms do not override these interests.
Legal Obligation: When we must process your data to comply with legal requirements.

You have the right to withdraw consent at any time, which will not affect the lawfulness of processing based on consent before its withdrawal.

4. Sharing Your Information

We respect your privacy and do not sell, rent, or trade your personal information to third parties for their marketing purposes. However, we may share your information in the following circumstances:

4.1 Third-Party Service Providers

We work with trusted third-party service providers who process data on our behalf to support our Services:

Analytics Services: Google Analytics, Mixpanel, and similar services that help us understand user behavior and improve our Services.
Advertising Networks: Google AdMob, Facebook Audience Network, and other advertising partners that deliver personalized advertisements within our mobile applications.
Cloud Infrastructure: Amazon Web Services (AWS), Google Cloud Platform, and other hosting providers that store and process data.
Customer Support Tools: Email service providers, help desk software, and communication platforms.
Payment Processors: Apple App Store, Google Play Store, and other payment platforms that handle subscription and purchase transactions.

These service providers are contractually obligated to protect your data, use it only for the purposes we specify, and comply with applicable privacy laws.

4.2 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred to the successor organization. We will notify you of any such change and provide choices regarding your information.

4.3 Legal Requirements and Protection

We may disclose your information when required by law or when we believe in good faith that disclosure is necessary to:

Comply with legal obligations, court orders, subpoenas, or regulatory requests
Enforce our Terms of Service and other agreements
Protect the rights, property, or safety of Mohammad Sajjadur Rahman, our users, or the public
Detect, prevent, or address fraud, security issues, or technical problems
Investigate potential violations of law or our policies

4.4 With Your Consent

We may share your information with other third parties when you provide explicit consent or at your direction.

4.5 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you with partners, researchers, or the public for various purposes, including industry analysis and demographic research.

5. International Data Transfers

Mohammad Sajjadur Rahman operates globally, and your information may be transferred to, stored, and processed in countries outside your country of residence, including the United States and other jurisdictions where our service providers operate.

These countries may have data protection laws that differ from those in your country. When we transfer personal data internationally, we implement appropriate safeguards to protect your information, including:

Standard Contractual Clauses: Using European Commission-approved Standard Contractual Clauses (SCCs) for transfers from the EEA.
Adequacy Decisions: Relying on adequacy decisions issued by the European Commission or other relevant authorities.
Service Provider Commitments: Ensuring our service providers implement adequate technical and organizational measures.

By using our Services, you acknowledge and consent to the international transfer of your personal data as described in this Privacy Policy.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods:

Account Data: Retained for the duration of your account's active status plus up to 90 days after account deletion (to allow for account recovery and prevent fraud).
Usage and Analytics Data: Typically retained for 24-36 months for analysis and Service improvement.
Communications: Customer support inquiries and communications retained for up to 3 years.
Legal and Compliance Data: Retained for the applicable statute of limitations period or as required by law (typically 3-7 years).
Marketing Data: Retained until you withdraw consent or unsubscribe, plus reasonable administrative time to process the request.

When personal information is no longer needed, we securely delete or anonymize it. Anonymized data may be retained indefinitely for statistical and analytical purposes.

You can request deletion of your personal data at any time by contacting us. We will comply with deletion requests subject to legal retention requirements and legitimate business needs.

7. Your Privacy Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

7.1 Rights Under GDPR (EEA, UK, Switzerland)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the following rights:

Right to Access: Request access to your personal data and receive a copy of the information we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete personal data.
Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data under certain circumstances.
Right to Restriction of Processing: Request that we limit the processing of your personal data in specific situations.
Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.
Right to Object: Object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal.
Right to Lodge a Complaint: File a complaint with your local supervisory authority if you believe your data protection rights have been violated.

7.2 Rights Under CCPA/CPRA (California)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Right to Know: Request disclosure of the categories and specific pieces of personal information we collect, use, disclose, and sell.
Right to Delete: Request deletion of your personal information, subject to certain exceptions.
Right to Correct: Request correction of inaccurate personal information.
Right to Opt-Out: Opt out of the sale or sharing of your personal information. Note: We do not sell personal information in the traditional sense.
Right to Limit Use of Sensitive Personal Information: Request limitation on the use of sensitive personal information.
Right to Non-Discrimination: Exercise your privacy rights without receiving discriminatory treatment.

7.3 Other Privacy Rights

Regardless of location, you can:

Update Account Information: Modify your account details and preferences directly within our mobile applications through the settings menu.
Opt-Out of Marketing Communications: Unsubscribe from promotional emails using the unsubscribe link in each message or by contacting us.
Manage Cookie Preferences: Control cookies through your browser settings or device preferences.
Disable Location Services: Turn off location access through your device settings.
Opt-Out of Targeted Advertising:
- iOS: Go to Settings > Privacy > Advertising > Enable "Limit Ad Tracking"
- Android: Go to Settings > Google > Ads > Opt out of Ads Personalization
Manage Push Notifications: Disable push notifications through your device settings or within the app.

7.4 Exercising Your Rights

To exercise any of these rights, please contact us using the information provided in Section 14 below. We will respond to your request within the timeframes required by applicable law (typically 30 days for GDPR requests and 45 days for CCPA requests).

We may need to verify your identity before processing your request to protect your privacy and security. We will never discriminate against you for exercising your privacy rights.

8. Account Deletion

You have the right to delete your account and associated personal data at any time:

How to Delete Your Account:

Within the Mobile App: Navigate to Settings > Account > Delete Account and follow the prompts.
Contact Us Directly: Submit a deletion request via our contact form or email us at contact@robustdevs.tech.

What Happens When You Delete Your Account:

Your account will be deactivated immediately, and you will lose access to all features.
We will delete your personal information within 30 days of your request, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention, legal compliance).
Some information may remain in backup systems for up to 90 days before permanent deletion.
Anonymized or aggregated data that cannot identify you may be retained indefinitely.

Please note that account deletion is permanent and cannot be undone. You will need to create a new account if you wish to use our Services again.

9. Data Security

We implement industry-standard technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction:

Security Measures:

Encryption: Data is encrypted in transit using HTTPS/TLS protocols and, where appropriate, encrypted at rest using AES-256 or equivalent standards.
Access Controls: Strict access controls ensure that only authorized personnel can access personal data on a need-to-know basis.
Authentication: Secure authentication mechanisms, including password hashing and multi-factor authentication for administrative access.
Monitoring: Continuous monitoring and logging of system activity to detect and respond to security incidents.
Regular Security Assessments: Periodic security audits, vulnerability assessments, and penetration testing.
Secure Development Practices: Following secure coding standards and conducting code reviews.
Third-Party Security: Requiring service providers to implement appropriate security measures and conducting vendor security assessments.

Limitations:

While we strive to protect your information, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security, and you acknowledge that you provide information at your own risk. If you discover any security vulnerability, please report it to us immediately at contact@robustdevs.tech.

Your Responsibilities:

Keep your account credentials confidential
Use strong, unique passwords
Enable two-factor authentication where available
Log out of your account when using shared devices
Promptly notify us of any unauthorized account access

10. Children's Privacy

Our Services are intended for general audiences and are not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction, which may be 16 in some countries).

Our Commitment:

We do not knowingly collect personal information from children under 13 without verifiable parental consent.
We do not knowingly allow children under 13 to create accounts or use features that require personal information.
If we discover that we have inadvertently collected personal information from a child under 13, we will promptly delete such information from our systems.

Parental Rights:

If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at contact@robustdevs.tech. You have the right to:

Review your child's personal information
Request deletion of your child's personal information
Refuse further collection or use of your child's information

We encourage parents and guardians to monitor their children's online activities and to help enforce this Privacy Policy by instructing children never to provide personal information through our Services without permission.

11. Third-Party Links and Services

Our Services may contain links to third-party websites, applications, or services that are not owned or controlled by Mohammad Sajjadur Rahman. This Privacy Policy applies only to our Services.

Important Information:

We are not responsible for the privacy practices or content of third-party services.
Third-party services have their own privacy policies and terms of use, which we encourage you to review.
When you click on third-party links or use integrated services, those parties may collect information about you.
We do not endorse or assume any responsibility for third-party services.

Third-Party Analytics and Advertising:

Our Services use third-party analytics and advertising services as described in Section 4.1. These third parties may use cookies, SDKs, and similar technologies to collect information about your use of our Services and other websites/apps. Their data collection and use practices are governed by their own privacy policies, not this Privacy Policy.

12. App Store Privacy Requirements

Our mobile applications comply with Apple App Store and Google Play Store privacy requirements:

Apple App Store Compliance:

Privacy Nutrition Label: We provide detailed information about our data collection practices in the App Store listing, including data types collected, data linked to you, and data used for tracking.
App Tracking Transparency (ATT): For iOS 14.5 and later, we request your permission before tracking you across apps and websites owned by other companies for advertising purposes.
Privacy Manifest: Our apps include privacy manifests for third-party SDKs that declare the types of data they access.
In-App Privacy Policy: A link to this Privacy Policy is easily accessible within the app through the Settings menu.

Google Play Store Compliance:

Data Safety Section: We complete the Google Play Data Safety form detailing what data we collect, how it's used, and security practices.
In-App Disclosure: For data collection unrelated to core app functionality, we provide prominent in-app disclosure and obtain user consent before collection.
Privacy Policy Link: This Privacy Policy is linked in our Google Play Store listing and accessible within the app.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, Services, legal requirements, or for other operational, legal, or regulatory reasons.

How We Notify You:

The "Last Updated" date at the top of this Privacy Policy will be revised to reflect the effective date of changes.
For material changes that significantly affect your rights or how we handle your information, we will provide prominent notice through one or more of the following methods:
- Email notification to the address associated with your account
- In-app notification or banner
- Notice on our website homepage
- Push notification (where you have enabled notifications)

Your Continued Use:

Your continued use of our Services after the effective date of the updated Privacy Policy constitutes your acceptance of the changes. If you do not agree to the updated Privacy Policy, you should discontinue use of our Services and may delete your account as described in Section 8.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information and your privacy rights.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please don't hesitate to contact us:

Mohammad Sajjadur Rahman
Email: contact@robustdevs.tech
Contact Form: Available on our website

Response Time: We strive to respond to all inquiries within 5 business days. For privacy rights requests, we will respond within the timeframes required by applicable law.

Data Protection Officer:

For users in the European Economic Area or other jurisdictions that require a Data Protection Officer, you may contact our designated representative for data protection inquiries.

Supervisory Authority:

If you are located in the EEA, UK, or Switzerland and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.

For California residents: You may contact the California Attorney General's office regarding privacy concerns.

15. Additional Information for Specific Jurisdictions

15.1 European Economic Area, United Kingdom, and Switzerland

Data Controller: Mohammad Sajjadur Rahman is the data controller responsible for processing your personal data.

Lawful Basis: We process your data based on consent, contract performance, legitimate interests, or legal obligations as described in Section 3.

Data Protection Officer: Contact us at contact@robustdevs.tech for data protection inquiries.

EU Representative: If required under GDPR, we will appoint an EU-based representative.

Data Transfers: Transfers outside the EEA are protected by appropriate safeguards, including Standard Contractual Clauses.

15.2 California

California Notice at Collection: We collect the categories of personal information described in Section 1 for the purposes described in Section 2.

Shine the Light: California residents may request information about disclosure of personal information to third parties for direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

Do Not Sell My Personal Information: We do not sell personal information as defined by CCPA. However, you can opt out of targeted advertising through device settings as described in Section 7.3.

Financial Incentives: We do not offer financial incentives for the collection, sale, or deletion of personal information.

15.3 Brazil

For users in Brazil, we comply with the Lei Geral de Proteção de Dados (LGPD). You have rights to access, correct, delete, and port your data, and to withdraw consent. Contact us at contact@robustdevs.tech to exercise these rights.

15.4 Other Jurisdictions

We comply with applicable privacy laws in all jurisdictions where we operate. If you have specific questions about how local laws apply to your data, please contact us.

16. Accessibility

We are committed to ensuring this Privacy Policy is accessible to everyone. If you have difficulty accessing this Privacy Policy due to a disability, please contact us at contact@robustdevs.tech, and we will provide the information in an alternative format.

By using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

Mohammad Sajjadur Rahman
Last Updated: March 10, 2026