Privacy Policy for Shula NFC Reader

Effective Date: October 24, 2024
Last Updated: October 24, 2024

Introduction

Shula LLC ("we," "our," or "us") operates the Shula NFC Reader mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App.

By using the App, you agree to the collection and use of information in accordance with this Privacy Policy.

Information We Collect

Information You Provide

When you use the App, we may collect the following information:

Name: Collected when you sign in with Google (optional)
Email Address: Collected when you sign in with Google (optional)

Information Automatically Collected

NFC Tag Data: The App reads NFC tag identifiers when you scan tags. This data is stored locally on your device.
Timestamps: The App records the date and time when NFC tags are scanned.

Information Not Collected

We do NOT collect:

Location data
Device identifiers (beyond what's required for Google Sign-In)
Usage analytics or tracking data
Personal information beyond name and email (when using Google Sign-In)

How We Use Your Information

Local NFC Data (Tag IDs and Timestamps)

Stored locally on your device using Hive database
Used to display your scan history within the App
Exported to CSV files at your request
Optionally synced to your personal Google Sheets (only if you enable this feature)

Google Account Information (Name and Email)

Used solely for authentication with Google Sign-In
Required only if you choose to sync data to Google Sheets
Not stored on our servers
Not shared with third parties

Data Storage and Security

Local Storage

All NFC readings are stored locally on your device using Hive (NoSQL database)
Data remains on your device until you manually delete it or uninstall the App
We do not have access to your locally stored data

Cloud Storage (Optional)

If you enable Google Sheets integration, data is synced to your personal Google Sheets
We do not host, access, or control your Google Sheets data
Google's privacy policy governs data stored in Google Sheets

Data Transmission

All data transmitted to Google services uses HTTPS encryption
We use secure connections for all network communications

AWS Services

We use the following AWS services in the us-west-1 region:

Amazon EC2: For application hosting
Amazon RDS: For database services with encryption at rest

Third-Party Services

Google Services

Google Sign-In: For optional authentication
Google Sheets API: For optional data synchronization
Privacy Policy: https://policies.google.com/privacy

AWS (Amazon Web Services)

Services Used: EC2, RDS
Region: us-west-1 (Northern California)
Privacy Policy: https://aws.amazon.com/privacy/

Authentication

The App uses Auth0 with Google as the identity provider for authentication:

Single Sign-On (SSO) with Google
One-time password via email (optional)
No passwords are stored by us

Cookies and Tracking

Web Version (if applicable)

Uses localStorage for session management
Uses first-party cookies only (no third-party tracking cookies)
Analytics powered by Umami.is (privacy-first analytics tool)
No personal data collection through analytics

Mobile App

Does not use cookies
Does not use tracking technologies
Does not collect analytics data

Your Data Rights

Access and Control

View all your NFC scan data within the App
Export your data to CSV at any time
Clear all local data through the App's "Clear Data" function

Data Deletion

Local Data: Delete immediately using the App's "Clear Data" feature
Account Data: Request deletion by contacting coach@shula.app
- Deletion processed within 30 days of request
- Backups retained for 90 days maximum

Google Sheets Data

You maintain full control over your Google Sheets data
You can revoke the App's access to Google Sheets at any time via your Google Account settings
Delete or modify your Google Sheets data directly

Data Retention

Local NFC Data: Retained on your device until you delete it or uninstall the App
Account Data: Retained until you request deletion
Backups: Retained for up to 90 days after deletion request
Google Sheets Data: Governed by your Google Account settings

Children's Privacy

The App does not have a minimum age requirement. However, we do not knowingly collect personal information from children. If you believe we have collected information from a child inappropriately, please contact us at coach@shula.app.

Permissions

The App requires the following Android permissions:

NFC: Required to read NFC tags (core functionality)
Internet: Required for optional Google Sign-In and Google Sheets sync
Storage (Android 12 and below): Required to export CSV files

Note: All permissions are used only for their stated purposes and are not used for tracking or data collection.

International Data Transfers

If you are located outside the United States:

Data processed through AWS may be stored in us-west-1 (Northern California, USA)
Data synced to Google Sheets is governed by your Google Account location settings
We comply with applicable data protection laws

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

Updating the "Last Updated" date at the top of this Privacy Policy
Providing an in-app notification (for significant changes)

Your continued use of the App after changes constitutes acceptance of the updated Privacy Policy.

Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for collecting and using your information depends on the data and context:

Consent: For optional features like Google Sign-In and Google Sheets sync
Legitimate Interests: For core app functionality (NFC reading and local storage)

You have the right to withdraw consent at any time.

California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

Know what personal information we collect
Request deletion of your personal information
Opt-out of sale of personal information (we do not sell your data)

To exercise these rights, contact coach@shula.app.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: coach@shula.app
Company: Shula LLC
Address: 732 S 6th ST, STE N, Las Vegas, NV 89101, USA

Compliance

This Privacy Policy complies with:

Google Play Store requirements
General Data Protection Regulation (GDPR)
California Consumer Privacy Act (CCPA)
Children's Online Privacy Protection Act (COPPA)

Summary

We collect only name and email (optional, via Google Sign-In)
NFC data stored locally on your device
No tracking, no analytics on mobile app
You control your data (export, delete anytime)
Optional Google Sheets sync (your data, your control)
Secure HTTPS connections
Data deletion available upon request (30-day processing, 90-day backups)