Privacy Policy
Your Privacy Matters – At Spotz, we're committed to protecting your privacy and being transparent about how we collect, use, and share your information. This Privacy Policy explains our practices in detail.
1. Introduction
Welcome to Spotz! This Privacy Policy describes how Spotz, Inc. ("Spotz," "we," "us," or "our") collects, uses, discloses, and protects your personal information when you use our mobile application, website, and related services (collectively, the "Service").
By using Spotz, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Service.
1.1 Key Points
- Location Discovery: Spotz is a location-based service that relies on your location data to provide personalized recommendations
- Community Platform: We collect information you share when you submit locations, reviews, photos, and interact with other users
- Your Control: You have choices about what information you share and how we use it
- Transparency: We're committed to being clear about our data practices
1.2 Scope
This Privacy Policy applies to all users of the Spotz Service, including:
- Mobile app users (iOS and Android)
- Website visitors
- Free and premium subscribers
- Content contributors and reviewers
2. Information We Collect
We collect several types of information to provide and improve the Spotz Service:
2.1 Information You Provide
Account Information
When you create a Spotz account, we collect:
- Name and username
- Email address
- Phone number (optional)
- Profile photo (optional)
- Password (encrypted and securely stored)
- Date of birth
- Preferred categories and interests
User-Generated Content
When you interact with the Service, we collect:
- Location Submissions: Places you add to Spotz, including descriptions, photos, and metadata
- Reviews & Ratings: Your reviews, ratings, and comments about locations
- Photos & Media: Images and videos you upload
- Collections: Saved locations, favorite spots, and custom lists you create
- Check-ins: Locations you mark as visited
- Social Interactions: Comments, likes, follows, and messages to other users
Payment Information
For premium subscriptions or in-app purchases:
- Payment information is processed by third-party payment processors (Apple, Google, Stripe)
- We receive transaction confirmation but do not store full credit card numbers
- We may collect billing address and purchase history
Communications
- Support requests and correspondence
- Survey responses and feedback
- Email and push notification preferences
2.2 Information Automatically Collected
Device Information
- Device type, model, and operating system
- Unique device identifiers (IDFA, Android ID, etc.)
- Mobile network information
- Device settings and preferences
- Battery level and connection type
Usage Information
- App interactions and features used
- Locations browsed and searched
- Time spent on different sections
- Click patterns and navigation paths
- Error reports and crash data
- Performance metrics
Log Data
- IP address
- Browser type and version
- Pages visited and timestamps
- Referring/exit pages
- Access times and dates
2.3 Information from Third Parties
- Social Media: If you connect via Facebook, Google, or Apple, we receive basic profile information
- Business Partners: Location data from mapping services and business listing providers
- Analytics Providers: Aggregated usage statistics and demographic information
- Public Sources: Publicly available information about locations and businesses
3. Location Data
As a location discovery platform, location data is central to the Spotz experience. Here's how we handle it:
3.1 Types of Location Data
Precise Location (GPS)
With your permission, we collect your precise location using:
- GPS coordinates
- WiFi access points
- Cell tower triangulation
- Bluetooth signals
We use precise location to:
- Show nearby locations and recommendations
- Provide distance and directions
- Enable location-based features (check-ins, local discoveries)
- Improve search results and personalization
- Analyze popular areas and timing patterns
Approximate Location
If you deny precise location access, we may use:
- IP address-based location (city/region level)
- Self-reported location from your profile
- Search history and browsing patterns
3.2 Location Permissions
You control location access through your device settings:
- Always Allow: We can access location even when the app is closed (for background features like nearby alerts)
- While Using App: We access location only when you're actively using Spotz
- Ask Every Time: You decide each time the app requests location
- Never: Location services are disabled (limits personalization)
Note: You can change location permissions at any time in your device settings. Disabling location will limit certain features but won't prevent you from using Spotz.
3.3 Location History
We may maintain a history of locations you've:
- Visited or checked into
- Saved or bookmarked
- Reviewed or rated
- Searched for or viewed
You can view, export, or delete your location history in your account settings.
3.4 Location Data Retention
- Active Users: Location history retained for the life of your account (unless deleted by you)
- Anonymized Data: May be retained indefinitely for analytics and service improvement
- Deleted Accounts: Location data deleted within 90 days of account deletion
4. How We Use Your Information
We use the information we collect for the following purposes:
4.1 Provide and Improve the Service
- Create and manage your account
- Deliver personalized location recommendations
- Show relevant content based on your preferences and location
- Enable community features (reviews, photos, collections)
- Provide customer support and respond to inquiries
- Process payments and subscriptions
- Improve app performance and fix bugs
- Develop new features and services
4.2 Personalization
- Recommend locations tailored to your interests
- Suggest optimal visit times based on your patterns
- Customize your feed and search results
- Remember your preferences and settings
- Highlight nearby experiences you might enjoy
4.3 Communication
- Send important service updates and notifications
- Notify you about activity on your content (likes, comments, follows)
- Share location recommendations and discoveries
- Send promotional messages and offers (with your consent)
- Conduct surveys and request feedback
- Respond to your questions and support requests
4.4 Safety and Security
- Detect and prevent fraud, abuse, and illegal activity
- Enforce our Terms of Service and Community Guidelines
- Verify user identity and prevent fake accounts
- Protect against security threats and vulnerabilities
- Monitor for suspicious or harmful content
- Respond to legal requests and prevent harm
4.5 Analytics and Research
- Analyze usage patterns and trends
- Understand which features are most valuable
- Measure the effectiveness of our recommendations
- Study location popularity and timing patterns
- Conduct research to improve our algorithms
- Generate aggregated, anonymized insights
4.6 Marketing and Advertising
- Show you relevant advertisements (if applicable)
- Measure ad performance and engagement
- Promote Spotz features and partnerships
- Conduct marketing campaigns and promotions
4.7 Legal and Compliance
- Comply with legal obligations and regulations
- Respond to legal requests from authorities
- Enforce our rights and protect our property
- Resolve disputes and address claims
6. Your Choices & Controls
You have several options to control your information and privacy:
6.1 Account Settings
- Profile Visibility: Choose who can see your profile and activity
- Search Visibility: Control whether your profile appears in searches
- Activity Status: Hide your online status and last active time
- Collection Privacy: Make collections private or public
6.2 Location Controls
- Device Permissions: Enable or disable location access in device settings
- Location Sharing: Choose whether to share your location with others
- Location History: View, export, or delete your location history
- Check-in Visibility: Control who sees your check-ins
6.3 Communication Preferences
- Push Notifications: Manage notification types in app settings
- Email Preferences: Opt out of promotional emails (account emails still sent)
- SMS/Text: Unsubscribe from text messages
- In-App Notifications: Customize alerts for activity, recommendations, and updates
6.4 Content Controls
- Edit or Delete: Modify or remove your posts, reviews, and photos
- Hide Activity: Control what appears in your activity feed
- Block Users: Prevent specific users from seeing your content or interacting with you
- Report Content: Flag inappropriate content or users
6.5 Data Access and Portability
- Download Your Data: Export your information in a machine-readable format
- View Your Information: Access what we know about you
- Correction: Update inaccurate information
6.6 Account Deletion
You can delete your account at any time:
- Go to Settings → Account → Delete Account
- Your profile, content, and data will be removed within 90 days
- Some information may remain in backups for a limited time
- Certain legal obligations may require us to retain some data
6.7 Cookie Management
- Adjust cookie preferences in your browser settings
- Use our cookie consent tool (for web users)
- Opt out of targeted advertising through industry tools
7. Your Privacy Rights
Depending on your location, you may have additional privacy rights:
7.1 Rights for All Users
- Access: Request a copy of your personal information
- Correction: Update inaccurate or incomplete data
- Deletion: Request deletion of your personal information
- Opt-out: Decline marketing communications
- Portability: Receive your data in a structured format
7.2 California Residents (CCPA)
If you're a California resident, you have the right to:
- Know what personal information we collect, use, disclose, and sell
- Request deletion of your personal information
- Opt-out of the sale of personal information (we don't sell personal data)
- Non-discrimination for exercising your rights
To exercise these rights, contact us at privacy@spotz.app or use the "Data & Privacy" section in your account settings.
7.3 European Economic Area (GDPR)
If you're in the EEA, UK, or Switzerland, you have additional rights under GDPR:
- Access: Confirm whether we process your data and obtain a copy
- Rectification: Correct inaccurate personal data
- Erasure: Request deletion ("right to be forgotten")
- Restriction: Limit how we process your data
- Portability: Receive your data in a portable format
- Object: Oppose processing based on legitimate interests
- Withdraw Consent: Revoke consent at any time
- Lodge a Complaint: File a complaint with your data protection authority
Legal Basis for Processing (GDPR):
- Contract: To provide the Service you've agreed to
- Consent: For optional features like marketing communications
- Legitimate Interests: To improve the Service, prevent fraud, and ensure security
- Legal Obligation: To comply with laws and regulations
7.4 Other Jurisdictions
We respect privacy rights under other laws including:
- Virginia Consumer Data Protection Act (VCDPA)
- Colorado Privacy Act (CPA)
- Connecticut Data Privacy Act (CTDPA)
- Brazil's LGPD
- Canada's PIPEDA
- Australia's Privacy Act
7.5 How to Exercise Your Rights
To exercise your privacy rights:
- Email us at privacy@spotz.app
- Use the "Data & Privacy" section in app settings
- Complete our online privacy request form
- Mail us at the address in Section 15
We'll respond to your request within 30 days (45 days for complex requests). We may need to verify your identity before processing your request.
8. Data Security
We take the security of your information seriously and implement industry-standard measures to protect it:
8.1 Technical Safeguards
- Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
- Secure Authentication: Password hashing with bcrypt, support for two-factor authentication
- Firewalls: Network security to prevent unauthorized access
- Access Controls: Role-based access limiting who can view your data
- Regular Audits: Security assessments and penetration testing
- Monitoring: 24/7 threat detection and incident response
8.2 Organizational Safeguards
- Employee training on data protection and privacy
- Confidentiality agreements with staff and contractors
- Limited access to personal information on a need-to-know basis
- Vendor security requirements and compliance checks
- Incident response procedures and breach notification protocols
8.3 Your Role in Security
You can help keep your account secure by:
- Using a strong, unique password
- Enabling two-factor authentication
- Not sharing your password with others
- Logging out on shared devices
- Keeping your app updated
- Being cautious of phishing attempts
- Reporting suspicious activity immediately
Data Breach Notification: In the unlikely event of a data breach affecting your information, we will notify you promptly as required by law and take steps to mitigate any harm.
8.4 Limitations
While we implement strong security measures, no system is 100% secure. We cannot guarantee absolute security, and you use the Service at your own risk. If you believe your account has been compromised, contact us immediately at security@spotz.app.
9. Data Retention
We retain your information only as long as necessary for the purposes described in this Privacy Policy:
9.1 Active Accounts
- Account Data: Retained while your account is active
- Content: Stored until you delete it or close your account
- Location History: Kept for the life of your account unless you delete it
- Activity Logs: Typically retained for 12-24 months
9.2 Deleted Accounts
- Most data deleted within 90 days of account closure
- Some information retained longer for legal compliance (e.g., payment records)
- Anonymized data may be retained indefinitely for analytics
- Backup systems may contain data for up to 90 additional days
9.3 Specific Retention Periods
| Data Type | Retention Period |
|---|---|
| Account information | Life of account + 90 days after deletion |
| User-generated content | Until deleted by user or 90 days after account closure |
| Location data | Until deleted by user or 90 days after account closure |
| Payment records | 7 years (legal requirement) |
| Support tickets | 3 years after resolution |
| Usage logs | 12-24 months |
| Marketing data | Until opt-out or 3 years of inactivity |
| Legal holds | Duration of legal matter |
9.4 Extended Retention
We may retain information longer when required for:
- Legal obligations (tax, accounting, regulatory requirements)
- Dispute resolution and litigation
- Fraud prevention and security
- Enforcing our Terms of Service
10. Children's Privacy
10.1 Age Requirements
Spotz is designed for users aged 13 and older. We do not knowingly collect personal information from children under 13 without parental consent.
10.2 Parental Controls
For users aged 13-17:
- We recommend parental supervision
- Parents can request access to their child's information
- Parents can request deletion of their child's account
- Enhanced privacy settings are available for younger users
10.3 Special Protections
We provide additional protections for users under 18:
- Accounts private by default
- Limited data collection
- Restricted contact from adults they don't know
- Enhanced content moderation
- Simplified privacy controls
10.4 If We Learn of Unauthorized Collection
If we discover we've collected information from a child under 13 without proper consent, we will delete it promptly. Parents who believe their child's information was collected can contact us at privacy@spotz.app.
11. International Data Transfers
11.1 Global Service
Spotz operates globally, and your information may be transferred to, stored, and processed in countries other than your own, including the United States, where our servers and service providers are located.
11.2 Data Transfer Safeguards
When we transfer data internationally, we use appropriate safeguards:
- Standard Contractual Clauses: EU-approved contracts ensuring GDPR-level protection
- Adequacy Decisions: Transfers to countries deemed adequate by the EU Commission
- Data Processing Agreements: Contracts with processors ensuring compliance
- Privacy Shield Principles: Where applicable, adherence to successor frameworks
11.3 European Data Representative
For EU/EEA users, our designated representative is:
Spotz EU Data Protection
[Address]
Email: eu-privacy@spotz.app
11.4 Data Localization
Where required by law, we store data locally:
- EU/EEA data stored within the European Economic Area
- Compliance with country-specific data localization laws
- Options to choose data storage location for enterprise users
13. Third-Party Services & Links
13.1 Third-Party Integrations
Spotz integrates with third-party services that have their own privacy policies:
- Google Maps / Apple Maps: Mapping and navigation
- Social Media: Facebook, Instagram, Twitter for sharing
- Payment Processors: Stripe, Apple Pay, Google Pay
- Analytics: Google Analytics, Mixpanel
- Customer Support: Zendesk, Intercom
13.2 Third-Party Links
The Service may contain links to external websites, businesses, or services. We're not responsible for their privacy practices. We encourage you to review their privacy policies.
13.3 Social Media Features
Social media features (like buttons, widgets) may collect information and set cookies. These features are governed by the privacy policies of the social media companies.
13.4 Business Listings
Information about businesses and locations may come from third parties. We're not responsible for the accuracy or privacy practices of business owners or third-party data providers.
13.5 Our Responsibility
When you interact with third-party services through Spotz, your relationship is directly with that third party. We're not liable for their actions or policies.
14. Changes to This Privacy Policy
14.1 Updates
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or Service features.
14.2 Notification of Changes
When we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Notify you via email (to your registered email address)
- Display a prominent notice in the app
- For significant changes, request your consent before implementation
14.3 Your Acceptance
Your continued use of Spotz after the effective date of changes constitutes acceptance of the updated Privacy Policy. If you don't agree to the changes, you should stop using the Service and delete your account.
14.4 Review Regularly
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
14.5 Previous Versions
You can request previous versions of this Privacy Policy by contacting privacy@spotz.app.
15. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Spotz, Inc.
Privacy Team
Email: privacy@spotz.app
Security Issues: security@spotz.app
General Support: support@spotz.app
Mailing Address:
Spotz, Inc.
Attn: Privacy Department
123 Discovery Lane
San Francisco, CA 94102
United States
EU Representative:
Spotz EU Data Protection
Email: eu-privacy@spotz.app
15.1 Response Time
We aim to respond to privacy inquiries within 30 days. Complex requests may take up to 45 days, and we'll notify you if we need additional time.
15.2 Privacy Rights Requests
To exercise your privacy rights (access, deletion, correction, etc.):
- Email us at privacy@spotz.app
- Use the "Data & Privacy" section in your account settings
- Complete our online privacy request form
- Send a written request to our mailing address
We may need to verify your identity before processing requests to protect your privacy.
Questions About Your Privacy?
Our privacy team is here to help you understand how we protect your information and exercise your rights.
Contact Privacy Team© 2025 Spotz, Inc. All rights reserved.
Terms of Service • Privacy Policy • Cookie Policy • Community Guidelines