Privacy Policy

Last Updated: December 10, 2024

1. Introduction

Meridio ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

2. Information We Collect

Personal Information

• Account Information: Email address, display name, leaderboard name
• Profile Data: Test date, daily XP goals, study preferences
• Progress Data: Flashcard reviews, practice question responses, mastery levels, streaks

Usage Data

• Study Activity: Cards reviewed, questions answered, time spent studying, accuracy rates
• App Interactions: Features used, buttons clicked, settings changed
• Play Mode Data: Match history, Elo ratings, leaderboard positions, challenge interactions

Device Information

• Device Identifiers: Device ID, advertising identifier (for analytics and attribution)
• Technical Data: IP address, operating system version, device model, app version
• Diagnostic Data: Crash reports, performance metrics, error logs

Purchase Information

• Subscription Data: Purchase history, subscription tier, payment transactions (processed by Apple)
• Transaction Details: Product ID, purchase date, subscription status

3. How We Use Your Information

• Provide Services: Enable spaced repetition learning, track study progress, personalize content
• Account Management: Create and manage your account, sync data across devices
• Analytics: Understand app usage, improve features, optimize performance
• Competitive Features: Calculate Elo ratings, maintain leaderboards, facilitate matches
• Communication: Send notifications about study reminders, achievements, updates
• Marketing Attribution: Measure effectiveness of advertising campaigns, understand user acquisition

4. Third-Party Services

Analytics & Advertising Partners

We share data with the following third-party services for analytics, attribution, and advertising purposes:

• Meta/Facebook: We use the Facebook SDK to track app installs, activations, in-app purchases, and user events for analytics and advertising attribution. This includes sharing device identifiers, app usage data, purchase data, and device information. Data shared with Meta is subject to Meta's Data Policy: https://www.facebook.com/privacy/policy
• Supabase: Database and authentication services (data stored securely with encryption)
• Google Sign-In: Authentication service (only with your explicit consent)
• Apple Sign-In: Authentication service (only with your explicit consent)

Payment Processing

All subscription payments are processed by Apple through the App Store. We do not store your credit card information. Apple's privacy policy applies: https://www.apple.com/legal/privacy/

5. Data Sharing

We do not sell your personal information. We share data only in the following circumstances:

• Service Providers: With trusted third-party services (like Meta, Supabase) to operate our app
• Legal Requirements: When required by law or to protect our rights
• Public Leaderboards: Your leaderboard name and statistics are publicly visible to other users

6. Data Security

We implement industry-standard security measures to protect your data, including:

• Encryption of data in transit and at rest
• Row-level security policies in our database
• Secure authentication protocols
• Regular security audits

7. Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and data
• Opt-Out: Disable tracking through your device settings (Settings → Privacy → Tracking)
• Data Portability: Request your data in a portable format

8. Children's Privacy

Our app is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

9. Data Retention

We retain your data for as long as your account is active or as needed to provide services. You can request deletion of your account at any time through the app settings. After deletion:

• Personal data is permanently deleted within 30 days
• Anonymized usage data may be retained for analytics
• Legal and financial records retained as required by law

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in compliance with applicable laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy in the app and updating the "Last Updated" date. Your continued use of the app after changes constitutes acceptance of the updated policy.

12. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, and shared
• Right to delete personal information
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to non-discrimination for exercising your privacy rights

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Email: contact@meridio.dev

14. Consent

By using Meridio, you consent to this Privacy Policy and the collection, use, and sharing of your information as described herein.