Privacy Policy
Privacy Policy
Effective as of: July 3, 2025
Lifescope Technologies Private Limited ("we," "us," or "our") takes your privacy seriously. This Policy explains what we collect, how we use it, who we share it with, and what rights you have. This Policy applies to U.S. users of the Lifescope mobile application and complies with applicable U.S. laws including the FTC Act, the California Consumer Privacy Act (CCPA/CPRA), and the Children's Online Privacy Protection Act (COPPA).
1. What We Collect
a) What You Give Us
  • Account: name, email address, password (hashed and salted — we never store plain-text passwords).
  • Quiz responses: budget range, visual preferences, lifestyle slider, work/school pin locations, moving timeline, and deal-breaker flags (pets, children's ages, car ownership, health sensitivity flags like "asthma" — these are preference inputs, not medical records).
  • Ambassador applications: residency proof (utility bill, lease, or government ID) submitted with sensitive identifiers — account numbers, full ID numbers — redacted. Payout details for reward distribution (encrypted).
  • User content: photos, videos, forum posts, success stories, simulation poll answers, and ambassador chat messages.
  • Support messages: emails and in-app support communications.
b) What We Collect Automatically
  • Device and technical data: device type, OS (iOS/Android), App version, device ID, IP address (used to infer city-level location — not your precise address).
  • Usage data: features used, quiz completion patterns, simulation episodes opened, events clicked, Zillow affiliate link clicks (anonymised by neighbourhood), time in App, pages visited. Collected via Mixpanel or a similar analytics SDK.
  • Push notification data: whether you opened a simulation notification and your tap-through action.
c) Tracking Technologies
  • Analytics SDK (Mixpanel): tracks in-app behaviour at the session/device level — not linked to your name.
  • Crash reporting (Sentry): captures error logs, automatically scrubbed of personal identifiers before storage.
  • Affiliate tracking: when you tap a Zillow link, we log a neighbourhood tag and an anonymous session ID for commission attribution. No personal data goes to Zillow.
  • Session tokens: short-lived, stored in device memory. Expire on logout.
  • We do not use third-party advertising cookies, cross-site tracking pixels, or fingerprinting.
  • You can limit analytics collection via Settings > Privacy > "Share Anonymous Usage Data" or via the iOS App Tracking Transparency prompt.
d) Location
  • Coarse location (always on): inferred from IP address to confirm Houston relevance — not GPS.
  • Precise GPS (permission-gated): used only when you drop work/school pins in the quiz or use the interactive map. Revoke via device Settings at any time. Revoking disables GPS map features but nothing else.
e) Third-Party Data We Pull
  • Zillow — property prices and rental ranges (aggregated, not linked to you).
  • Serp API — local event listings, refreshed every 6 hours, stored per neighbourhood.
  • Google Maps / Directions API — commute times and map rendering.
  • U.S. Census — neighbourhood scoring data.
  • None of this is linked to your personal profile unless you click through to a third-party page.
f) What We Do NOT Collect
  • Full credit or debit card numbers — handled entirely by Stripe, Apple, or Google.
  • Detailed medical records — we only store binary preference flags (e.g., "asthma: yes") to adjust air quality scoring.
  • Biometric or facial recognition data.
  • Data from children under 13 — see Section 6.
2. How We Use It
a) To Run the App
  • Generate neighbourhood compatibility scores from your quiz.
  • Personalise 30-day simulation content (e.g., family events if you flagged kids; commute routes based on your pinned work address).
  • Pre-compute and cache neighbourhood match matrices in Redis for sub-2-second results.
  • Verify ambassador residency and distribute rewards.
  • Merge quiz profiles for Couples / Roommate Mode.
  • Enforce subscription tier gating (Free / Premium / Family).
b) To Improve the Product
  • Track anonymised feature usage to understand what works.
  • A/B test UI variations — for example, different upgrade prompts.
  • Refine the matching algorithm using anonymised, aggregated quiz patterns. No individual identity is used for model training.
  • Fix bugs and crashes using Sentry error logs.
c) To Communicate with You
  • Transactional (cannot opt out): account verification, password resets, subscription receipts, ambassador application updates.
  • Simulation push notifications (opt-in): daily "Day X" updates. Disable anytime in device notification settings.
  • Marketing (opt-in): new features, neighbourhood spotlights, offers. Unsubscribe via the link in any marketing email or via Settings > Notifications.
d) Legal and Security
  • Detects and prevents fraud, multi-account abuse, and payment disputes.
  • Enforce these Terms and our Community Guidelines.
  • Comply with court orders, subpoenas, or other lawful demands.
  • Protect users from harassment or security threats.
e) What We Will Never Do
  • Sell your personal data to third parties, data brokers, or advertisers.
  • Use your data to target you with ads on other platforms without explicit consent.
  • Share your personal quiz data or contact info with ambassadors or other users.
  • Send your personal data to AI providers. Any AI-assisted simulation generation uses anonymised neighbourhood context only — no names, emails, quiz responses, or location pins.
f) Data Minimisation
  • We collect only what we need for the feature you are using. Precise GPS is only requested when you need it for map pins — not throughout the quiz.
  • Data that no longer serves its original purpose is anonymised or deleted per our retention schedule in Section 4.
3. Who We Share It With
a) Service Providers
We share data with trusted vendors under confidentiality agreements, who process it only on our instructions:
Provider
Purpose
Data Shared
AWS / Google Cloud
Hosting & storage
All user data (encrypted)
Stripe
Payment processing
Name, email, billing
Supabase
Database & auth
Account & quiz data
Mixpanel
Usage analytics
Anonymised events
Firebase FCM
Push notifications
Device token, message
Sentry
Crash reporting
Anonymised error logs
SendGrid / Postmark
Email delivery
Email, message
Apple / Google
App store payments
Purchase & sub status
b) Ambassadors and Community
  • Ambassador insights show first name and neighbourhood only (e.g., "Sarah in Montrose"). No contact details, email, or full name.
  • Success stories are anonymous or use a chosen display name — never your real name or account ID unless you explicitly opt-in.
c) Third-Party Link-Outs
  • Tapping "View Properties" opens Zillow in a browser. We send no personal data to Zillow — only a pre-formatted search URL. Zillow's own tracking and privacy policy apply from that point.
  • Serp API event links: if you tap through, Serp API's privacy policy applies.
d) Legal Requirements
We may disclose data where required by: a valid court order or subpoena; a lawful request from U.S. law enforcement or regulatory bodies; or an emergency where disclosure is necessary to prevent imminent harm.
e) Business Transfers
If we are acquired or merge with another entity, user data may transfer. We will notify you at least 30 days in advance — by email and in-app — and give you the option to delete your account before the transfer completes.
f) Aggregated Insights
We may publish anonymised, aggregate insights — for example, "Montrose was the top-searched neighbourhood in Q1 2026." These cannot identify any individual.
4. Storage, Security, and Retention
a) Storage
  • Primary storage: AWS or Google Cloud, USA region. All data processed in the United States.
b) Security
  • Encryption in transit: TLS 1.3.
  • Encryption at rest: AES-256.
  • Passwords: crypt with salt. We cannot see your plain-text password.
  • Access controls: role-based; only authorised personnel access user data.
  • Sentry automatically redacts personal data fields from crash reports before storage.
  • Annual penetration testing and security audits planned post-launch.
No system is 100% secure. Report vulnerabilities to security@lifescope.biz.
c) Breach Notification
  • If a security incident affects your personal data, we will: (i) investigate and contain it immediately; (ii) notify you by email and in-app alert without undue delay and within the timeframe required by applicable law (e.g., 60 days under Texas Business & Commerce Code §521; sooner if California law applies); and (iii) notify relevant U.S. regulatory authorities as required.
  • Notification will cover: what happened, what data was affected, what we did, and what you can do.
d) Retention
Data Type
Retention
Reason
Active account
While account is open
Service provision
Inactive account
12 months → deleted
Re-engagement window
Quiz responses
7 years (anonymised)
Algorithm improvement
Payment records
7 years
Tax and legal obligations
Ambassador rewards
5 years
Tax reporting
Support messages
3 years
Dispute resolution
Residency proof docs
12 months post-verify
Deleted after verification
Anonymised analytics
Indefinitely
Product improvement
5. Your Rights
a) Access
Request a copy of all personal data we hold about you (JSON format). Email privacy@lifescope.biz — subject: "Data Access Request." We respond within 30 days.
b) Correction
Fix inaccurate data via in-app profile settings or email privacy@lifescope.biz.
c) Deletion
Delete your account via Settings > Account > Delete Account or email support@lifescope.biz. Personal identifiers deleted within 30 days. Data required by law (see Section 4.4) will be anonymised where full deletion is legally prohibited.
d) Withdraw Consent
You may withdraw consent to data processing at any time. This may disable some App features. Withdrawal does not entitle you to a subscription refund and does not undo prior lawful processing.
e) Opt-Out of Communications
  • Marketing emails: click "Unsubscribe" in any marketing email.
  • Push notifications: disable via device Settings > Notifications > Lifescope.
  • SMS (if enabled): reply STOP.
Transactional emails — receipts, password resets — cannot be turned off without deleting your account.
f) Analytics Opt-Out
Turn off anonymous usage sharing via Settings > Privacy > "Share Anonymous Usage Data." We do not respond to browser Do Not Track (DNT) signals.
g) California Residents — CCPA / CPRA
  • Right to know: what categories of personal information we collect, use, and share.
  • Right to delete: request deletion of your personal information (subject to legal exceptions).
  • Right to correct: fix inaccurate personal information.
  • Right to opt out of sale or sharing: we do not sell personal information. We do not engage in cross-context behavioural advertising. You may still submit a formal opt-out request by: (i) emailing privacy@lifescope.biz — subject "CCPA — Do Not Sell/Share"; or (ii) using Settings > Privacy > "Do Not Sell My Info" in the App.
  • No discrimination: we will not deny service, charge different prices, or degrade features for exercising any CCPA right.
  • Authorised agents: may act on your behalf with written proof of authority.
6. Children's Privacy — COPPA
  • The App is for users 18 and older. Consistent with COPPA, we do not knowingly collect personal information from children under 13.
  • The App is not directed at children under 13 and does not market to them.
  • If we discover or are notified that a child under 13 has registered, we will immediately suspend the account and delete all associated data within 48 hours.
  • Parents or guardians: if you believe your child under 13 has created an account, contact us at support@lifescope.biz immediately.
7. Changes to This Policy
  • We may update this Policy to reflect new features, product changes, or legal requirements.
  • We will notify you of material changes at least 30 days before they take effect — via email and in-app banner.
  • Continuing to use the App after the effective date is acceptance of the updated Policy. If you disagree, delete your account before the effective date.
8. Contact — Privacy