Privacy Policy

1. Introduction

Welcome to bxo ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "App").

Please read this Privacy Policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide to Us

Account Information:

• Username (case-insensitive)
• Name
• Email address
• Password (encrypted)
• Profile picture
• Bio
• Phone number (optional)

Content You Create:

• Ratings and reviews of movies and TV shows
• Posts about your viewing experiences
• Comments on other users' content
• Watchlists and lists
• Journal entries
• Survey responses for persona assessment
• Likes and other interactions

Profile Information:

• Followers and following relationships
• User level and experience points (XP)
• Activity statistics
• Viewing persona
• Content preferences

2.2 Information Collected Automatically

Usage Information:

• App features you use
• Content you view
• Time spent on the App
• Interaction patterns
• Search queries

Device Information:

• Device type and model
• Operating system version
• Device identifiers
• IP address
• Mobile network information
• Push notification tokens

Analytics Data:

• App performance metrics
• Crash reports
• Feature usage statistics
• Session duration

2.3 Information from Third Parties

Movie and TV Show Data:

• We collect information about movies and TV shows from third-party databases to provide you with content information, images, and metadata
• This data is used solely to enhance your experience within the App

Authentication Services:

• If you sign in using third-party authentication (if applicable), we may receive basic profile information from those services

3. How We Use Your Information

We use the information we collect to:

3.1 Provide and Improve the App

• Create and maintain your account
• Display your profile and content to other users
• Enable social features (following, comments, likes)
• Calculate and display your XP and user level
• Generate your viewing persona
• Provide personalized recommendations
• Maintain watchlists and viewing history
• Send push notifications about activity on your content

3.2 Communicate with You

• Send important updates about the App
• Respond to your inquiries and support requests
• Send promotional communications (with your consent)
• Notify you of changes to our policies

3.3 Ensure Safety and Security

• Detect and prevent fraud and abuse
• Enforce our Terms of Service
• Protect against security threats
• Resolve disputes

3.4 Analytics and Research

• Understand how users interact with the App
• Improve App performance and features
• Conduct research and development
• Generate aggregated, non-identifiable statistics

3.5 Legal Compliance

• Comply with legal obligations
• Respond to legal requests from authorities
• Protect our rights and interests

4. How We Share Your Information

4.1 Public Information

The following information is publicly visible to other users:

• Username and name
• Profile picture and bio
• Your ratings, posts, and comments
• Your watchlists (if set to public)
• Your followers and following lists
• Your user level and persona
• Your activity statistics

4.2 With Other Users

• Users you follow may see your activity
• Users can view content you've made public
• Your comments and likes are visible to others

4.3 With Service Providers

We may share your information with third-party service providers who help us operate the App:

• Cloud hosting providers (Supabase)
• Analytics services
• Push notification services
• Customer support tools
• Email delivery services

These providers are bound by confidentiality agreements and may only use your information to provide services to us.

4.4 For Legal Reasons

• Comply with legal obligations (court orders, subpoenas)
• Enforce our Terms of Service
• Protect the rights, property, or safety of us, our users, or others
• Prevent fraud or security threats

4.5 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

4.6 With Your Consent

We may share your information for other purposes with your explicit consent.

5. Your Privacy Choices and Rights

5.1 Access and Update Your Information

You can access and update your account information through the App settings:

• Edit your profile (name, username, bio, profile picture)
• Change your email or password
• Manage your privacy settings

5.2 Delete Your Information

You can delete your account at any time through the App settings. Upon deletion:

• Your account and profile will be removed
• Your content may be retained in anonymized form for analytics
• Some information may be retained for legal compliance

5.3 Control Your Communications

• Push Notifications: You can disable push notifications through your device settings
• Promotional Emails: You can opt out of promotional emails by following the unsubscribe link
• Service Emails: We may still send important service-related emails even if you opt out of promotional communications

5.4 Data Portability

You may request a copy of your data by contacting us at [Your Contact Email].

5.5 Additional Rights (GDPR/CCPA)

If you are located in the European Union, United Kingdom, or California, you may have additional rights:

• Right to Access: Request confirmation of what personal data we hold about you
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data (with certain exceptions)
• Right to Restrict Processing: Request limitation on how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to certain processing of your data
• Right to Withdraw Consent: Withdraw consent at any time (where processing is based on consent)

To exercise these rights, please contact us at [Your Contact Email].

6. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption of data in transit (HTTPS/TLS)
• Encryption of sensitive data at rest
• Secure authentication and password hashing
• Regular security assessments
• Access controls and authentication
• Secure cloud infrastructure (Supabase)

However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as necessary to:

• Provide the App services
• Comply with legal obligations
• Resolve disputes
• Enforce our agreements

Retention Periods:

• Active Accounts: We retain your information while your account is active
• Deleted Accounts: Most data is deleted immediately; some may be retained for up to 90 days for backup purposes
• Legal Compliance: Some data may be retained longer to comply with legal requirements
• Analytics Data: Anonymized analytics data may be retained indefinitely

8. Children's Privacy

The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us. We will delete such information from our systems.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

We take steps to ensure your information receives adequate protection, including:

• Using service providers that comply with data protection frameworks
• Implementing appropriate safeguards such as standard contractual clauses
• Ensuring transfers comply with applicable laws

10. Third-Party Links and Services

The App may contain links to third-party websites or services (e.g., movie databases, streaming platforms). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

11. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

11.1 Categories of Information Collected

We collect the following categories of personal information (as described in Section 2):

• Identifiers (name, email, username)
• Personal information (profile data, bio)
• Commercial information (watchlists, ratings)
• Internet activity (usage data, device information)
• Geolocation data (approximate location from IP address)
• Inferences (viewing persona, preferences)

11.2 Your CCPA Rights

• Right to Know: Request disclosure of personal information we've collected about you in the past 12 months
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We do not sell your personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, contact us at [Your Contact Email].

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

12.1 Legal Basis for Processing

We process your personal data based on:

• Contract Performance: To provide the App services you've requested
• Legitimate Interests: To improve our services, ensure security, and conduct analytics
• Consent: For optional features like promotional communications
• Legal Obligations: To comply with applicable laws

12.2 Your GDPR Rights

As described in Section 5.5, you have the right to access, rectify, erase, restrict, port, and object to processing of your data.

12.3 Data Protection Officer

You may contact our Data Protection Officer at [DPO Contact Email] with any privacy concerns.

12.4 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority.

13. Do Not Track Signals

Some web browsers have a "Do Not Track" feature. The App does not currently respond to Do Not Track signals.

14. Push Notifications

We may send you push notifications about:

• Activity on your content (likes, comments, follows)
• Recommendations and suggestions
• Important updates and announcements

You can control push notifications through:

• Your device settings (iOS/Android notification settings)
• The App settings (if available)

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new Privacy Policy in the App
• Sending you an email notification
• Displaying an in-app notification

The "Last Updated" date at the top of this policy indicates when it was last revised. Your continued use of the App after changes constitutes acceptance of the updated policy.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: [Your Contact Email]

Address:
[Your Company Name]
[Street Address]
[City, State, ZIP]
[Country]

Data Protection Officer (GDPR): [DPO Contact Email]

17. Additional Information

17.1 Cookies and Similar Technologies

The App may use cookies or similar technologies for:

• Authentication and security
• Preferences and settings
• Analytics and performance monitoring

You can control cookies through your device settings, though disabling them may affect App functionality.

17.2 Automated Decision-Making

We may use automated systems to:

• Generate content recommendations
• Calculate your viewing persona
• Determine your user level and XP

You can request human review of automated decisions by contacting us.

17.3 Data Accuracy

You are responsible for ensuring the accuracy of information you provide. Please update your information through the App settings if it changes.

By using bxo, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.