Privacy Policy

Introduction

Manojos ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services.

Information We Collect

Personal Information You Provide

Account Information:

• Email address (required for registration and authentication)
• Full name (optional)
• Password (encrypted and stored securely using bcrypt hashing)

User-Generated Content:

• Custom metrics you create (names, types, colors, icons)
• Entry data you log (values, timestamps, notes)
• Settings and preferences

Automatically Collected Information

• Device information (iOS version, device model)
• App usage statistics (crashes, errors, performance)
• Authentication tokens (JWT, stored securely in iOS Keychain)

Biometric Data

How We Use Your Information

• Service Provision: Create and manage your account, authenticate identity, store and sync data
• Service Improvement: Monitor usage patterns, diagnose issues, improve performance
• Communication: Send service-related notifications, respond to support requests
• Security: Detect fraud, protect against threats, enforce terms

How We Store Your Information

On Your Device

• Core Data: Metrics and entries stored locally in encrypted SQLite database
• iOS Keychain: Authentication tokens with iOS-level encryption
• UserDefaults: App preferences and last login email

On Our Servers

• Backend hosted on Google Cloud Platform (US data centers)
• Database encrypted at rest and in transit (HTTPS/TLS)
• JWT tokens with expiration (1 hour access, 30 days refresh)

Data Sharing and Disclosure

We may share information only in these circumstances:

• Service Providers: Google Cloud Platform (infrastructure)
• Legal Requirements: To comply with laws or protect rights
• Business Transfers: In connection with merger or acquisition
• With Your Consent: Any other disclosure with explicit consent

Data Security

Technical Safeguards:

• HTTPS/TLS encryption for all data in transit
• Encrypted storage for tokens (iOS Keychain)
• Database encryption at rest
• JWT-based authentication with expiration
• Password hashing using bcrypt

Your Privacy Rights

• Access: Request a copy of your personal information
• Correction: Update account information in Settings
• Deletion: Delete metrics/entries in app or request account deletion
• Data Portability: Export your data (feature coming soon)
• Opt-Out: Disable biometric authentication anytime

To exercise these rights, contact: privacy@smallblocksoftware.com

Children's Privacy

Manojos is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe your child has provided us with information, contact us immediately.

Third-Party Services

We do NOT use:

• Third-party analytics (no Google Analytics, Firebase, etc.)
• Advertising networks
• Social media tracking pixels
• Cookies or tracking technologies

California Privacy Rights (CCPA)

California residents have additional rights including:

• Right to know what data we collect
• Right to delete personal information
• Right to opt-out of data sales (we don't sell data)
• Non-discrimination for exercising rights

European Privacy Rights (GDPR)

EEA residents have rights including access, rectification, erasure, restriction, portability, and the right to object to processing.

Data Protection Officer: dpo@smallblocksoftware.com

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification. Continued use after changes constitutes acceptance.

Contact Us

App Store Privacy Labels

Data Used to Track You: None

Data Linked to You: Email address, metrics, entries, User ID

Data Not Linked to You: None - all data is associated with your account