Privacy Policy
Effective Date: September 5, 2025
1Introduction
Entity Client (“we”, “us”, or “our”) values your privacy and is committed to protecting your personal data. This Privacy Policy explains what we collect, how we use it, and your rights when using app.entityclient.com and related services.
2Information We Collect
- Account Data: Name, surname, username, email, gender, password (hashed), internal ID.
- Device Data: IP address, browser, operating system, device identifiers, user agent.
- OAuth Data: IDs and tokens when linking Google, Microsoft, Discord, GitHub, or Spotify.
- Subscription & License Data: Keys, activation logs, expiry details.
- Usage Logs: Login history, timestamps, settings changes, security events.
- Security Data: Two-factor authentication, alerts, verification codes.
- Communications: Chat messages (support and user-to-user), friend requests, notifications.
- Profile Data: Profile picture, social links, customization options.
3How We Use Your Data
- To provide, personalize, and secure your experience.
- To verify logins, process payments, and manage licenses.
- To send notifications, alerts, and account-related messages.
- To prevent fraud, detect suspicious activity, and protect platform integrity.
- To improve features, performance, and user support.
4Legal Basis for Processing
- Consent: When you voluntarily provide information.
- Contractual necessity: To deliver services you signed up for.
- Legitimate interests: To improve security, prevent abuse, and optimize services.
- Legal obligations: Where required by applicable law.
5Data Sharing & Third Parties
We never sell personal data. We may share limited data with trusted third parties:
- Apple iCloud SMTP – for email delivery.
- Payment processors (Stripe, Revolut) – for transactions.
- OAuth providers (Google, Microsoft, Discord, GitHub, Spotify) – when you link accounts.
- Administrators – for account management, moderation, and support.
6Data Security
We use strong encryption, SSL/TLS, firewalls, and access restrictions. Passwords are hashed and never stored in plain text. Only authorized personnel can access user data.
7Data Retention
We retain personal data only as long as necessary to provide our services or comply with legal obligations. Logs may be kept for a limited period for security and auditing. You may request deletion at any time.
8Your Rights
- Request access to your personal data.
- Update, correct, or delete your account information.
- Withdraw consent or manage connected OAuth accounts.
- Export your data in a portable format.
- Request permanent deletion (subject to account closure).
9Cookies & Tracking
We use only essential cookies for sessions and security. No advertising or third-party tracking cookies are used.
10International Data Transfers
Your information may be stored and processed outside your country, including in the EU and other regions where our partners operate. We ensure adequate protection under applicable laws.
11Children’s Privacy
Entity Client is not directed to individuals under 16. We do not knowingly collect data from children. If you believe we have, please contact us and we will delete it.
12Changes to This Policy
We may update this Privacy Policy from time to time. Major changes will be communicated via dashboard notifications or email. The “Effective Date” above reflects the latest version.
13Contact
If you have questions about this Privacy Policy, contact us at [email protected].