Privacy Policy for TipsyPal

Version 2.5 — Extended Enterprise Edition
Last Updated: 2025-12-10

Introduction

This Privacy Policy explains how OakDev & AI AB (“Company”, “we”, “us”, “our”), a registered Swedish corporation, collects, uses, stores, protects, and processes data when you use the TipsyPal application (“TipsyPal”, “App”, “Service”).

OakDev & AI AB is the sole owner, operator, and data controller of TipsyPal. We take privacy extremely seriously and are committed to full compliance with:

GDPR (EU General Data Protection Regulation)
Swedish Data Protection Act (Dataskyddsförordningen)
ePrivacy Directive
Apple App Store and Google Play policies
Industry-leading technical and organizational security measures

By accessing or using TipsyPal, you acknowledge that you have read, understood, and agreed to the terms described in this Privacy Policy.

1. Data Controller Information

The entity responsible for processing your data is:

OakDev & AI AB
Org.nr: 5594316787
Sweden
Email: hello@oakdev.app

All references to “we”, “us”, or “our” in this policy refer exclusively to OakDev & AI AB.

2. Scope of This Policy

This Privacy Policy applies to:

The TipsyPal mobile app
AI features and interactions
In-app purchases and subscriptions
Customer support communication
Data stored in Firebase and OpenAI systems
Marketing communication (if applicable)
Any future services integrated into TipsyPal

This policy does not apply to:

Third-party websites you may link to
External platforms outside our control

3. Data We Collect (Extended)

3.1. Account Information

We may collect the following account-related information:

Email address
Display name (optional)
Authentication token
Firebase User ID
Password hash (never your plain password)

We do not collect payment card numbers or financial credentials. Payment processing is handled by Google Play and Apple App Store.

3.2. AI Input & Output Data

This includes any text you submit to TipsyPal for:

Correction
Transformation
Rewriting
Idea generation
Social media message improvement
Tone and style adjustments

We may also store:

Output generated by the AI
Metadata associated with the request
Selected tone/style options

User Content is processed solely to deliver the requested functionality.

3.3. Purchase & Subscription Data

Collected via Google Play and Apple App Store:

Purchase tokens
Subscription renewal status
Expiration dates
Refunds or cancellations
SKU identifiers (Basic / Champion)

We do not receive credit card numbers or bank details.

3.4. Device & Technical Data

Automatically collected technical data may include:

Device model and manufacturer
Operating system version
IP address (short-term retention only)
App version
Crash logs (via Firebase Crashlytics)
Performance data (via Firebase Analytics)
Browser data (if using webview)
Time zone and locale

3.5. Diagnostic & Telemetry Data

Used to improve app stability and reliability:

Crash stack traces
Error events
API latency metrics
Unexpected behavior reports

3.6. Optional Data

If you choose to provide it, we may process:

Profile information
Feedback or support messages
Uploaded content
Feature usage patterns

3.7. Marketing & Partner Communication (With Consent)

We may use your email address to send marketing messages, service updates, promotions, and partner offers – but only if you have explicitly given your consent in accordance with GDPR Article 6(1)(a).

We may also send sponsored content or partner-related communication directly from OakDev & AI AB without sharing your email with the partner. Your personal data is never sold, rented, transferred, or disclosed to external partners without your explicit consent.

You may withdraw your marketing consent at any time through account settings or by contacting us at hello@oakdev.app.

4. How We Use Your Data (High Detail)

4.1. Service Delivery

We process your data in order to:

Authenticate your account
Provide AI-driven writing assistance
Maintain Basic/Champion access
Store and display chat history
Restore purchases and subscriptions

4.2. Service Improvement

Understand which features are used
Identify bugs or crashes
Enhance AI accuracy
Optimize performance and stability

4.3. Legal & Compliance

Implement anti-fraud measures
Maintain tax documentation for purchases
Respond to lawful requests from authorities
Verify subscription status when required

4.4. Security

Monitor unauthorized access attempts
Prevent misuse or abuse of the App
Ensure compliance with app store policies

5. Legal Basis Under GDPR

We process your personal data under the following legal bases:

Art. 6(1)(b) – Contractual necessity: to provide the App and its core features.
Art. 6(1)(c) – Legal obligations: for tax and regulatory compliance.
Art. 6(1)(f) – Legitimate interests: to prevent abuse, ensure security, and improve the service.
Art. 6(1)(a) – Consent: for optional marketing and certain processing activities.

You may withdraw consent at any time.

6. OpenAI & AI Processing Disclosure

Your text may be transmitted securely to our AI provider (e.g., OpenAI) for the purpose of generating responses and transformations.

We ensure that:

Data is sent over encrypted channels (HTTPS/TLS)
Data is not used to train AI models for other customers
Data is retained only as long as necessary for processing
Only the minimum necessary data is transmitted

We do not transmit passwords, payment details, or unnecessary device identifiers.

7. Data Retention (Detailed)

We retain data for the following periods:

User accounts: until account deletion is requested.
Chat history: until deleted by the user or account removal.
Subscription data: as required by law (up to 7 years for tax records).
Crash logs: typically up to 90 days (via Crashlytics).
Analytics data: anonymized or aggregated after approximately 14 months.

After these periods, data is deleted or irreversibly anonymized.

8. Data Sharing

We never sell or rent your personal data.

We may, with your explicit consent:

Send you promotional or partner-related content
Use your data for segmentation to deliver relevant offers
Monetize sponsored messages that OakDev & AI AB sends directly

We do not share your email address or personal information with partners unless you explicitly agree to such sharing.

We may share limited necessary data with:

Firebase (Google Cloud) – for authentication, database, analytics, crash reporting
OpenAI – for AI text processing
Google Play / Apple – for billing and subscription verification
Law enforcement – only if legally required

9. Cookies and Tracking Technologies

The App itself does not use traditional browser cookies. However, third-party services such as Firebase may use device identifiers, analytics, and crash reporting tools that behave similarly for diagnostic and performance purposes.

These tools comply with platform policies and do not track your general web browsing behavior outside the App.

10. International Transfers

Data may be processed in the EU, USA, or other regions supported by Firebase and OpenAI. All such transfers are carried out in compliance with GDPR through mechanisms such as:

Standard Contractual Clauses (SCCs)
Data minimization principles
Additional contractual and technical safeguards

11. User Rights (Comprehensive)

Under GDPR, you have the right to:

Access your personal data
Request correction of inaccurate data
Request deletion (“right to be forgotten”)
Request restriction of processing
Object to certain types of processing
Request data portability
Withdraw consent where processing is based on consent

To exercise these rights, contact us at hello@oakdev.app. We aim to respond within 30 days.

12. Account Deletion

When you delete your account, we will remove or anonymize your personal data, including:

Account details
Chat history
AI-generated content tied to your profile
Notification tokens

Some data (such as purchase and billing records) may be retained where required by law, for example for tax or fraud prevention.

13. Children’s Privacy

The App is not intended for children under 13. We do not knowingly collect personal data from children under 13. If we become aware that we have collected such data, we will delete it promptly.

14. Security Measures

We apply a range of technical and organizational measures to protect your data, including:

AES encryption at rest (via Firebase/Google Cloud infrastructure)
HTTPS/TLS encryption in transit
Strict access controls and least-privilege principles
Rate limiting and abuse detection mechanisms
Secure password hashing (e.g., bcrypt or equivalent)
Regular audits and security assessments

15. No Warranty

The Service is provided on an “AS IS” and “AS AVAILABLE” basis, without warranties of any kind, whether express or implied. We do not guarantee:

Accuracy of AI responses
Availability or uptime of the Service
That content generated by the AI will be suitable for any specific purpose
That the Service will be error-free or uninterrupted

16. Limitation of Liability

To the maximum extent permitted by law:

We are not liable for indirect, incidental, special, consequential, or punitive damages.
We are not liable for losses caused by AI output or your reliance on it.
Your sole remedy in case of dissatisfaction with the Service is to stop using the App.

17. Indemnification

By using the App, you agree to indemnify, defend, and hold harmless OakDev & AI AB from any claims, liabilities, damages, losses, and expenses arising from:

Your misuse of the App
Your violation of applicable laws
Your violation of this Privacy Policy
Your use of AI-generated content

18. Changes to This Policy

We may update this Privacy Policy as needed to reflect changes in our practices, legal requirements, or service features. We will indicate the date of the latest update at the top of this document. Continued use of the App after changes are published constitutes acceptance of the updated Policy.

19. Contact

For privacy concerns, GDPR requests, or questions about this Policy, please contact:

OakDev & AI AB
Sweden
z Email: hello@oakdev.app