Privacy Policy / מדיניות פרטיות

Introduction

Welcome to Haniti Po ("I Parked Here"). We are committed to protecting your privacy and being transparent about how we collect, use, and safeguard your personal information. This Privacy Policy explains our data practices for the Haniti Po mobile application (the "App").

By using Haniti Po, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Location Data

• Parking Spot Location: When you create a parking spot, we collect GPS coordinates to display the location on the map
• Your Current Location: We access your device location to help you find nearby parking spots and to enable map navigation
• Usage: Location data is essential for the core functionality of our parking discovery service
• Precision: We collect precise geolocation data when you grant permission
• Control: You can control location permissions through your device settings

1.2 Photos and Images

• User-Uploaded Photos: Photos you upload when creating parking spots
• Storage: Images are stored on Firebase Storage / Google Cloud Platform servers
• Purpose: Photos help other users identify and verify parking spots
• Control: You can delete photos by deleting your pending submissions

1.3 Account Information

• Authentication Data: Email address, display name, and authentication credentials
• Provider: Managed through Firebase Authentication
• Usage: Required to create and manage your account, track your contributions, and enable personalized features

1.4 User-Generated Content

• Parking Spot Submissions: Information you provide when creating parking spots (location, photos, descriptions, pricing details)
• Reviews and Ratings: Comments and ratings you submit for parking spots
• Problem Reports: Issues or problems you report about parking spots
• Purpose: To build and maintain our community-driven parking database

1.5 Gamification Data

• Points and Levels: Your accumulated points and level progression
• Badges and Achievements: Badges earned through app activities
• Streaks: Consecutive days of app usage and contributions
• Leaderboard Position: Your ranking compared to other users (if applicable)
• Purpose: To provide engaging features and recognize active contributors

1.6 Usage and Analytics Data

• App Usage: Features accessed, screens viewed, and interaction patterns
• Device Information: Device model, operating system version, app version
• Performance Data: Crash reports, error logs, and performance metrics
• Provider: Google Analytics (if enabled)
• Purpose: To improve app functionality, fix bugs, and enhance user experience

1.7 Push Notifications (Optional)

• Push Tokens: If you enable push notifications, we collect a device-specific push token to send you updates about your parking spot submissions
• Purpose: To notify you when your submissions are approved, rejected, or require additional information
• Third-Party Services: Push notifications are delivered through Expo Push Notification Service, Apple Push Notification Service (APNs) for iOS, and Firebase Cloud Messaging (FCM) for Android
• Control: You can disable push notifications at any time through your device settings (see Section 5.4)
• Optional: Push notifications are not required to use the App

1.8 Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your personal data based on the following legal grounds under GDPR Article 6:

• Consent (Art. 6(1)(a)): Location data collection, photo uploads, and analytics tracking - you may withdraw consent at any time through app settings
• Contract Performance (Art. 6(1)(b)): Account information and authentication data necessary to provide the app services you requested
• Legitimate Interests (Art. 6(1)(f)): Usage analytics, security monitoring, fraud prevention, and service improvements (balanced against your privacy rights)
• Legal Obligations (Art. 6(1)(c)): Retention of certain data for tax, accounting, or legal compliance purposes

You have the right to object to processing based on legitimate interests. Contact hanitipo.requests@gmail.com to exercise this right.

2. How We Use Your Information

We use collected information for the following purposes:

• Core Functionality: Display parking spots, enable navigation, and facilitate parking discovery
• Account Management: Create and maintain your user account
• Community Features: Display your contributions to other users and enable social features
• Gamification: Track achievements, calculate points, and provide rewards
• Communication: Send important updates, respond to support requests, and deliver push notifications about submission status (if enabled)
• Improvements: Analyze usage patterns to enhance the app
• Security: Detect and prevent fraud, abuse, and security issues
• Legal Compliance: Comply with applicable laws and regulations

3. Information Sharing and Disclosure

3.1 Public Information

The following information is visible to other app users:

• Parking spots you create (location, photos, descriptions)
• Your display name (associated with your contributions)
• Reviews and ratings you submit
• Your level and badges (in gamification features)

3.2 Third-Party Services

We use the following third-party services that may access your data:

• Google Maps API: For map display and navigation features
• Firebase / Google Cloud Platform: For authentication, database storage, and file storage
• Google Analytics: For usage analytics (if enabled)
• Expo Push Notification Service: For delivering push notifications (if enabled)
• Apple Push Notification Service (APNs): For delivering push notifications to iOS devices (if enabled)
• Firebase Cloud Messaging (FCM): For delivering push notifications to Android devices (if enabled)

These services have their own privacy policies governing how they handle data.

3.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal processes (subpoenas, court orders)
• Enforcement of our Terms of Service
• Protection of our rights, property, or safety
• Emergency situations involving potential harm

3.4 Business Transfers

If Haniti Po is involved in a merger, acquisition, or asset sale, your information may be transferred. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4. Data Storage and Security

4.1 Storage Location

Your data is stored on Firebase and Google Cloud Platform servers, which may be located in various regions worldwide.

4.2 Security Measures

We implement industry-standard security measures including:

• Encrypted data transmission (HTTPS/TLS)
• Firebase Security Rules to control data access
• Regular security audits and updates
• Secure authentication mechanisms

4.3 Data Retention

• Active Accounts: Data is retained while your account is active or up to 3 years of inactivity
• Deleted Content: Pending submissions are deleted immediately upon your request
• Account Deletion: You can delete your account at any time through the User Profile settings in the app. When you delete your account, we remove your personal information within 30 days, except data we're legally required to retain (up to 7 years for tax purposes)
• Published Parking Spots: Spots you published remain in the public database but are disassociated from your identity
• Backup Systems: Deleted data may remain in backup systems for up to 90 days

5. Your Rights and Choices

5.1 Access and Control

You have the right to:

• Access your personal data
• Update or correct your information
• Delete your pending submissions
• Delete your account (available in User Profile settings)
• Export your data (GDPR right to data portability)

5.2 Location Permissions

You can control location access through your device settings:

• iOS: Settings > Privacy & Security > Location Services > Haniti Po
• Android: Settings > Apps > Haniti Po > Permissions > Location

5.3 Marketing Communications

We do not currently send marketing emails. If we do in the future, you will be able to opt out.

5.4 Push Notification Control

You can enable or disable push notifications through your device settings:

• iOS: Settings > Notifications > Haniti Po
• Android: Settings > Apps > Haniti Po > Notifications

6. Children's Privacy

7. International Data Transfers

If you are located outside of Israel, please note that we transfer, store, and process your information in Israel and other countries where our service providers operate. By using the App, you consent to this transfer.

For users in the European Economic Area (EEA), we comply with GDPR requirements for international data transfers.

7.5. Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms:

• We will notify the relevant supervisory authority within 72 hours of becoming aware of the breach
• We will notify affected users without undue delay if the breach poses a high risk
• The notification will include: nature of the breach, categories of affected data, likely consequences, and measures taken
• You will be notified via email at the address associated with your account

If you suspect a security incident, please report it immediately to hanitipo.requests@gmail.com with "Security Breach" in the subject line.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

• Posting the new Privacy Policy in the App
• Updating the "Last Updated" date
• Sending an email notification (for material changes)

Your continued use of the App after changes constitutes acceptance of the updated policy.

9. GDPR Rights (European Users)

If you are located in the European Economic Area, you have additional rights under GDPR:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at hanitipo.requests@gmail.com.

9.8. Right to Lodge a Complaint

If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with a data protection supervisory authority.

We encourage you to contact us first at hanitipo.requests@gmail.com so we can address your concerns directly.

10. Contact Us