This Application collects some Personal Data from its Users.
Data Controller and Owner
Budfox Messenger Ltd – 3rd Floor Crown House, 151 High Road – Loughton IG10 4LG, United Kingdom. Owner contact email: firstname.lastname@example.org
Storing and sharing data
Budfox only stores the data it needs to function properly, and all data is stored heavily encrypted.
We never share your data with advertising company. Personal Data concerning the User is only collected to allow the Owner to provide its services, as well as for the following purposes: Hosting and backend infrastructure, Infrastructure monitoring, Location-based interactions and Registration and authentication.
We store messages, photos, videos and documents from your cloud chats on our third-party servers (like DigitalOcean), so that you can access your data from your device anytime and use instant server search to quickly access your messages.
Types of Data collected
Among the types of Personal Data that this Application collects, by itself or through third parties, there are: geographic position, first name, last name, phone number, company name, country, city and profile picture.
All Data requested by this Application is mandatory and failure to provide this Data may make it impossible for this Application to provide its services. In cases where this Application specifically states that some Data is not mandatory, Users are free not to communicate this Data without any consequences on the availability or the functioning of the service.
Users are responsible for any third party Personal Data obtained, published or shared through this Application and confirm that they have the third party’s consent to provide the Data to the Owner.
Mode and place of processing the Data
Methods of processing
The Data Controller processes the Data of Users in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Data Controller at any time.
The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved with the processing are located. For further information, please contact the Data Controller.
The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that the Data Controller suspend or remove the data.
The use of the collected Data
The Data concerning the User is collected to allow the Owner to provide its services, as well as for the following purposes: Hosting and backend infrastructure, Infrastructure monitoring, Location-based interactions and Registration and authentication.
The Personal Data used for each purpose is outlined in the specific sections of this document.
Detailed information on the processing of Personal Data
Personal Data is collected for the following purposes and using the following services:
Hosting and backend infrastructure
This type of service has the purpose of hosting data and files that enable this Application to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of this Application. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.
DigitalOcean Cloud Services
DigitalOcean Cloud Services is a hosting and backend service provided by DigitalOcean Inc.
MessageBird is a SMS Gateway company who connect companies to their customers on billions of devices around the world. Their versatile and reliable communication APIs have been built in-house by some of the top telephony engineers in the business.
Non-continuous geolocation (This Application)
This Application may collect, use, and share User Location Data in order to provide location-based services. Most browsers and devices provide tools to opt out from this feature by default. If explicit authorization has been provided, the User’s location data may be tracked by this Application.
The geographic location of the User is determined in a manner that isn’t continuous, either at the specific request of the User or when the User doesn’t point out its current location in the appropriate field and allows the application to detect the position automatically.
Personal Data collected: geographic position.
This type of service allows this Application to monitor the use and behavior of its components, so its performance, operation, maintenance and troubleshooting can be improved.
Which Personal Data are processed depends on the characteristics and mode of implementation of these services, whose function is to filter the activities of this Application.
App Store Connect (Apple Inc.)
iTunes Connect is the way for members of the iOS Developer Program and Mac Developer Program to upload their apps, edit their descriptions and metadata, and view finances earned.
Amplitude track user actions every year to help product teams instantly understand user behavior, build engaging experiences, and grow their digital businesses.
Registration and authentication
By registering or authenticating, Users allow this Application to identify them and give them access to dedicated services.
Depending on what is described below, third parties may provide registration and authentication services. In this case, this Application will be able to access some Data, stored by these third-party services, for registration or identification purposes.
Direct registration (This Application)
The User registers by filling out the registration form and providing the Personal Data directly to this Application.
Personal Data collected: city, country, occupation, company name, first name, last name, phone number and profile picture.
Further information about Personal Data
Access the address book
This Application may request access to your address book.
Budfox uses phone numbers as unique identifiers. We ask your permission before syncing your contacts. We store your contacts in order to notify you as soon as one of your contacts signs up for Budfox and to properly display names in notifications.
User identification via a universally unique identifier (UUID)
This Application may track Users by storing a so-called universally unique identifier (or short UUID) for analytics purposes or for storing Users’ preferences.
This identifier is generated upon installation of this Application, it persists between Application launches and updates, but it is lost when the User deletes the Application. A reinstall generates a new UUID.
This Application may send push notifications to the User.
If you would like to delete your account, you can do this on the in the Application settings. Deleting your account permanently removes all your messages, groups and contacts. This action must be confirmed via your Budfox account and cannot be undone.
Everything you delete is deleted forever. When you delete a message, you delete it from your message history. This means that a copy still stays on the server as part of your partners message history. As soon as your partner deletes it too, it’s gone forever.
Messages in Secret Chats can be ordered to self-destruct. As soon as such a message is read, the countdown starts. When the time is out, both devices participating in a secret chat are instructed to delete the message (photo, video, etc.).
Additional information about Data collection and processing
The User’s Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of this Application or the related services.
The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities.
Additional information about User’s Personal Data
System logs and maintenance
For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (System logs) or use for this purpose other Personal Data (such as IP Address).
Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information at the beginning of this document.
The rights of Users
Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the Data Controller at the contact information set out above.
This Application does not support “Do Not Track” requests.
To determine whether any of the third-party services it uses honor the “Do Not Track” requests, please read their privacy policies.
« Do Not Track » Signals Under California Online Privacy Protection Act (CalOPPA)
We do not support Do Not Track (« DNT »). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
Definitions and legal references
Personal Data (or Data)
Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.
Information collected automatically from this Application (or third party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User’s IT environment.
The individual using this Application, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refers.
The legal or natural person to whom the Personal Data refers.
Data Processor (or Data Supervisor)
Data Controller (or Owner)
The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.
The hardware or software tool by which the Personal Data of the User is collected.
Legal Basis for Processing Personal Data Under General Data Protection Regulation (GDPR)
Budfox Messenger Ltd may process your Personal Data because:
• We need to perform a contract with you
• You have given us permission to do so
• The processing is in our legitimate interests and it’s not overridden by your rights
• To comply with the law
Retention of Data
with applicable laws), resolve disputes, and enforce our legal agreements and policies.
Budfox Messenger Ltd will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
Transfer of Data
Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
If you are located outside United Kingdom and choose to provide information to us, please note that we transfer the data, including Personal Data, to United Kingdom and process it there.
Disclosure of Data
Budfox Messenger Ltd may disclose your Personal Data in the good faith belief that such action is necessary to:
• To comply with a legal obligation
• To protect and defend the rights or property of Budfox Messenger Ltd
• To prevent or investigate possible wrongdoing in connection with the Service
• To protect the personal safety of users of the Service or the public
• To protect against legal liability
Security of Data
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations under Art. 10 of EC Directive n. 95/46/EC, under the provisions of Directive 2002/58/EC, as revised by Directive 2009/136/EC, on the subject of Cookies, and in compliance with the last directive and Regulation (EU) 2016/679 (General Data Protection Regulation) applicable as of May 25th, 2018 in all member states to harmonize data privacy laws across Europe, and, compliance with the California Online Privacy Protection Act of 2003 (CalOPPA), effective as of July 1, 2004 and amended in 2013.