Moodpic

Політика конфіденційності

Effective Date: 20.7.2025

Thank you for using Moodpic.app (“we”, “us”, “our”). This Privacy Policy explains how we collect, use, disclose and protect your information when you use our mobile application (the “Application”) and our website (the “Site”). Please read this Privacy Policy carefully. If you do not agree to the terms of this Privacy Policy, please do not use the Application or the Site.

We are located in the Czech Republic and this policy is developed in accordance with the General Data Protection Regulation (GDPR) of the European Union. As our services are available worldwide and support multiple languages, we also take into account other relevant data protection regulations where applicable.

1. Data Controller

The controller of your personal data is Evgeniya Kobzeva, a freelance photographer based in the Czech Republic.

Contact: contact page

2. Information we collect

We may collect information about you in a variety of ways. Information we may collect includes:

2.1) Personal data you provide to us

  1. Account information — When you register for an account, we may collect your username, email address, and password (in encrypted form). This data is necessary to create and manage your user account.
  2. User content — We collect photos, photo shoot information, captions, and other content that you post on the service (“User Content”). This content is collected for the purpose of providing and displaying the MoodPic functionality.
  3. Communications — If you contact us directly (e.g. via support email), we may receive additional information about you, such as your name, email address, the contents of the message and/or attachments you may send us, and any other information you choose to provide. We use this information to respond to your inquiries and provide customer support.
  4. Payment information — If you make purchases in the Application (e.g. subscriptions or in-app purchases), payments are processed by a third party, namely the Apple App Store, Google Play Store, Stripe. We do not collect or store your full payment details (such as credit card numbers) ourselves. We may receive limited transaction information from Stripe, such as the purchase date, amount, and confirmation of successful payment, for the purposes of managing your subscriptions and for accounting purposes.

2.2) Automatically collected data

  1. Usage data — We automatically collect information about your activity on our services, such as the features you use and the actions you take (e.g. time spent in the app, number of posts created, screens visited, interactions with AI features). This data is collected to understand how our services are used and to continually improve them.
  2. Device and log information (Log Data) — We collect information from your device log files, including device type (e.g. manufacturer and model), operating system, unique device identifiers, IP address, language settings. For the Web, we collect browser type and pages visited. This data helps us ensure compatibility, troubleshoot technical issues and improve performance.
  3. Cookies and similar technologies (Web only) — We use cookies and similar tracking technologies on our Web to monitor the activity on our pages and store certain information. These technologies help us analyze trends, administer the website, track users’ movements and gather demographic information. You can set your browser to refuse all cookies or to notify you when a cookie is being sent. Please note that if you do not accept cookies, some parts of our Web may not function properly.

2.3) Third-Party Data

  1. Data from App Stores — App stores such as the Apple App Store and Google Play Store may collect data related to your installation, usage, and in-app purchases (e.g. purchase history, subscription status, error messages). These platforms process the data in accordance with their own privacy policies.

3. How we use your information

We use the information we collect for various purposes, including:

  1. Providing, operating, and maintaining our services — This includes making the App and Web features available, managing your account, and displaying your User Content.
  2. Improving, personalizing, and expanding our services — We analyze usage data to understand how users interact with our app and to optimize the design, features, and user experience based on this.
  3. Understanding and analyzing how you use our services — This helps us identify popular features, weaknesses, and potential areas for innovation.
  4. Communicating with you — Directly or through our partners (for technical support), including providing customer service, sending updates, and other information related to the service (e.g. notifications of new features, changes to terms).
  5. Processing your transactions — To manage your purchases and subscriptions through the Apple App Store, Google Play Store, Stripe.
  6. For legal compliance purposes — Including enforcing our Terms of Service or other legal rights, and complying with applicable laws and regulations.
  7. Use of AI technology — We use artificial intelligence to analyze the text of your sentiment recordings to provide personalized statistics or recommendations, or to improve app features (e.g., smart text suggestions). Your data will not be used to train third-party AI models without your explicit consent, unless it is strictly necessary to provide a specific feature and is expressly stated in our Terms of Service.

4. Sharing your information

We do not sell your personal data. We may share the information we collect about you in certain situations:

  1. Service providers — We may share your information with third-party vendors and service providers who perform services for us or on our behalf. These include, for example:

    • Cloud hosting services — For example, Google Cloud Platform or similar, where Application and Web data is stored.
    • Analytics services — For example, Google Analytics/Firebase Analytics to track Application and Web usage, Crashlytics/Sentry for error reporting and stability improvements.
    • Payment gateway — Apple App Store, Google Play Store, Stripe to process payments.
    • AI service providers — If we use external AI APIs (e.g. for natural language processing), the data necessary for the service may be transferred to these providers. These providers are contractually obligated to protect your data and use it exclusively to provide services to us.

  2. To comply with law or to protect rights — We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect our rights or property, or act in urgent circumstances to protect the personal safety of users of the Application or the public.

  3. With your consent — We may disclose your personal information for any other purpose with your express consent.

5. Data storage and international transfers

Your information, including personal data, may be transferred to — and stored on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

As a data controller based in the Czech Republic (European Union), we will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and the GDPR.

For data transfers outside the European Union (e.g. to the United States, where many of our service providers such as Google, Apple, Stripe are based), we ensure that such transfers are made on the basis of adequate safeguards, such as Standard Contractual Clauses (SCC) approved by the European Commission or other mechanisms in force approved by the GDPR. In this way, we ensure that your data is protected even in countries outside the EU at a level consistent with the GDPR.

6. Your data protection rights (GDPR)

If you are a resident of the European Economic Area (EEA) or the United Kingdom, you have the following rights under the GDPR and applicable national laws:

  1. Right of access — You have the right to obtain confirmation as to whether personal data concerning you is being processed and, if so, to access that data and other information.
  2. Right to rectification — You have the right to have inaccurate personal data concerning you rectified without undue delay.
  3. Right to erasure («right to be forgotten») — You have the right to have personal data concerning you erased without undue delay where certain conditions are met (e.g. the data is no longer necessary for the purposes for which it was collected).
  4. Right to restriction of processing — You have the right to have the processing of your data restricted where certain conditions are met (e.g. you contest the accuracy of the data).
  5. Right to object — You have the right to object to the processing of your personal data where the processing is based on legitimate interests or for direct marketing purposes.
  6. Right to data portability — You have the right to receive personal data concerning you in a structured, commonly used and machine-readable format and to transmit it to another controller, if the processing is based on consent or a contract and is carried out by automated means.
  7. Right to withdraw consent — You have the right to withdraw your consent to the processing of personal data at any time, if the processing is based on your consent. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

How to exercise your rights: You can exercise these rights by visiting our contact page. We will process your request in accordance with the GDPR and other applicable laws. We may ask you to prove your identity before we can fulfill your request.

7. Data security

We have implemented administrative, technical and physical security measures to help protect your personal information. These include:

  1. Encryption — We use encryption of data both at rest and in transit (e.g. SSL/TLS for communications).
  2. Pseudonymization/Anonymization — Where possible and appropriate, we use pseudonymized or anonymized data for analytical purposes.
  3. Access Control — We limit access to your personal data to only those employees or contractors who need to know it to perform their jobs.
  4. Secure Servers — Our services are hosted on secure cloud platforms that meet high security standards.
  5. Routine Backups — We regularly back up data to prevent loss.

8. Children’s privacy

Our Service is not directed to individuals under the age of 16 (“Children”). We do not knowingly collect personal identification information from children under the age of 16. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us.

9. Changes to this Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Effective Date” at the top.

10. Contact us

If you have any questions regarding this Privacy Policy, please contact us via our contact page