Privacy Policy for Strokes

Effective Date: 09/16/2024

Welcome to the Strokes app Privacy Policy. Your privacy is important, and this document explains how Strokes collects, uses, stores, and discloses your personal information when you use the Strokes app (formerly Playarmo) or related services. By using the app, you consent to the data practices described in this policy.

1. Who We Are

Strokes is a sports matching platform designed to connect users based on shared sports interests. The app is provided by Damini Rijhwani (“I”, “me”, “my”) and aims to provide a secure, safe, and personalized experience for users to find other players in their area.

2. Information We Collect

We collect different types of personal information to provide the best possible user experience. This includes:

a. Personal Information:

  • Identity Data: Full Name, Username, Age, Gender, Email Address, Mobile Number.
  • Profile Information: Sport preferences, Skill level, and profile pictures.
  • Location Data: City and State (manually entered). No real-time GPS data is collected.

b. Photos and Media:

  • The app accesses your camera roll through Apple ID permissions using libraries like ImagePicker and DocumentPicker to allow you to upload profile pictures and other images. Images are stored securely in AWS S3 and may be cached locally for performance improvement.

c. Device Information:

  • Technical Data: Device ID, IP address, operating system, app settings, and error logs are collected to improve functionality and diagnose issues.

d. Messaging and Communication Data:

  • Chat messages exchanged between users are processed via Sendbird and stored securely on Sendbird’s servers.

e. Authentication Information:

  • We use AWS Cognito to authenticate users during sign-up and login. This includes storing access tokens and refresh tokens locally in MMKV storage to facilitate session management.

3. How We Use Your Information

Your data is used for the following purposes:

  • Providing and Enhancing Services: Your personal data helps us match you with other players, facilitate in-app messaging, and improve app performance.
  • User Profile: Profile information, such as your name, age, and sport preferences, is visible to other users for matching purposes.
  • Push Notifications: We send notifications when you receive messages and for occasional admin reminders (e.g., safety disclaimers).
  • Security and Fraud Prevention: We use personal data to verify accounts, prevent fraudulent activities, and investigate potential breaches of the Terms of Service.
  • Admin Messages: We send admin notifications, including safety reminders before messaging begins to remind users to exercise caution when meeting in person.

For users in jurisdictions subject to privacy regulations such as GDPR:

  • Consent: By signing up for the app and using its features, you give us consent to process your personal data as outlined in this policy.
  • Legitimate Interests: We process certain data (such as profile and location information) based on our legitimate interest in providing a functional and secure platform.

5. How We Share Your Information

We only share your personal information in the following ways:

a. Service Providers:

We rely on third-party providers to deliver services and store data:

  • AWS Services: AWS S3 for media storage, AWS Cognito for authentication, and AWS Lambda for backend operations.
  • Sendbird: For in-app chat and messaging functionality, including data storage on Sendbird’s servers.
  • MongoDB Atlas: Stores all profile-related information such as username, email, and sport preferences.

We may disclose your data to law enforcement if required to:

  • Comply with legal obligations (court orders, subpoenas).
  • Respond to legal claims.
  • Protect the rights, safety, and property of Strokes, users, or others.

c. Merger or Sale:

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to a new entity. If this occurs, users will be notified, and the new entity’s privacy practices will apply.

6. Data Retention

a. Active Accounts:

Your personal data is retained as long as your account is active. This includes profile details, chat messages, and app usage data.

b. Deleted or Inactive Accounts:

If you deactivate or delete your account, your data will be retained for 6 months. During this period, you may choose to reactivate your account. After 6 months, all data will be permanently deleted from our servers, except where legal obligations require longer retention.

7. Your Rights and Choices

Depending on your location, you have specific rights regarding your data, including:

a. Access and Correction:

You can request access to your data or ask for corrections if your information is inaccurate.

b. Deletion:

You can request that your personal data be deleted by contacting support. After verification, we will process the request.

c. Opt-Out of Notifications:

You cannot opt-out of admin or security-related notifications. However, you may choose not to receive push notifications by adjusting your device settings.

If you wish to withdraw your consent for data processing, you may deactivate your account. Keep in mind that some features may no longer be accessible.

8. Security Measures

We use a combination of industry-standard security measures to protect your data:

  • Encryption: Data in transit is encrypted using HTTPS/TLS.
  • Token-Based Authentication: User sessions are managed with AWS Cognito tokens.
  • Secure Storage: All sensitive data (including photos and personal details) is stored in AWS S3 and MongoDB Atlas, both of which comply with strict security standards.

However, please note that no method of data transmission or storage is 100% secure. Users are encouraged to take their own precautions by:

  • Logging out of the app after each session.
  • Not sharing passwords or sensitive information.

9. Face ID and Biometric Authentication

We use Face ID for authentication during sign-in, password updates, and when resetting credentials. Face ID authentication is handled entirely on your device, and no biometric data is stored by the Strokes app. You can enable or disable Face ID through your device’s settings at any time.

10. Cookies and Tracking Technologies

The Strokes app does not currently use cookies or other tracking technologies. However, third-party services like Sendbird and AWS may use cookies for their own purposes, and we recommend reviewing their privacy policies for more information.

11. User Reports and Complaints

Users can report others for misconduct or violations of the Terms of Service. This includes:

  • Player issues (e.g., inappropriate behavior or safety concerns).
  • Violence or other serious issues.

Users can submit reports through the chat interface, which will be reviewed by the admin for appropriate action. Reported users may have their accounts suspended or terminated depending on the investigation’s findings.

12. Children’s Privacy

The Strokes app is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from children. If we discover that a user under 18 has registered an account, we will delete their information and terminate their account immediately. If you are a parent or guardian and believe that your child has provided personal information, please contact us.

a. Safety Disclaimer:

We are not responsible for any incidents that occur when users meet in person through connections made on the Strokes app. Users are reminded to exercise caution and take personal responsibility for their safety when meeting others.

b. Compliance with Law:

In the event of a safety incident or a legal request, we may disclose personal information to law enforcement authorities if required by law or if it is necessary to protect the safety of our users or others.

14. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal obligations. Users will be notified via email of any significant changes. Continued use of the Strokes app constitutes acceptance of the updated policy.

15. Contact Us

If you have any questions, concerns, or requests related to your personal data or this privacy policy, you can contact us at: Email: playarmo.app@gmail.com