Skip to content
Nivra
Download

Privacy Policy

Effective: September 1, 2025 • Last updated: September 1, 2025

Contact us

This readable template is not legal advice. Have counsel adapt it to your business, data flows, and jurisdictions.

Quick summary

  • We collect limited account, usage, and support information to operate the app.
  • We use data to deliver features (timers, reminders, NSDR), improve reliability, and meet legal obligations.
  • You can access, correct, export, or delete your data. You can opt out of marketing.

Information we collect

You provide

  • Account: name, email, password (hashed), workspace details.
  • Billing: address, tax IDs; payment details are processed by our PCI‑compliant provider.
  • Communications: support emails, chat messages, survey responses.

Automatically

  • Usage and device: app version, device model/OS, session duration, and timestamps.
  • Cookies/web storage: essential for auth/sync; optional analytics with consent where required.
  • Approximate location derived from IP for fraud prevention and localization.

From third parties

  • Integrations you enable (e.g., Git, CI/CD, analytics) and partners we work with.

Sensitive and children’s data

We do not intentionally collect sensitive categories or children’s data. Do not submit personal data of children under 16.

How we use information

  • Service delivery: account setup, authentication, feature functionality.
  • Support: respond to requests, fix issues, improve reliability.
  • Personalization: remember preferences and tailor content.
  • Marketing: send product updates with consent/opt‑out.
  • Security and abuse prevention: detection, investigation, and mitigation.
  • Compliance: tax, accounting, and responding to lawful requests.
  • Contract: to provide the service you requested.
  • Legitimate interests: product improvement, security, and fraud prevention.
  • Consent: non‑essential cookies and marketing communications.
  • Legal obligation: record‑keeping and regulatory compliance.

Sharing and disclosure

  • Service providers/sub‑processors under contract and confidentiality.
  • Analytics/ads only with consent and opt‑out where applicable.
  • Corporate transactions (merger, acquisition) where data may transfer.
  • Legal requests where we are required to comply.

International transfers

Where applicable, we use Standard Contractual Clauses (SCCs) and the UK IDTA for cross‑border transfers.

Data retention

We retain data for as long as needed to provide the service and for legitimate business or legal purposes. Typical retention for account data is the life of the account plus 90 days; logs up to 30 days unless extended for security investigations.

Your rights and choices

  • Access, correction, deletion, and portability of your data.
  • Restrict or object to processing in certain circumstances.
  • CCPA/CPRA: opt‑out of sale/sharing, request disclosure/deletion.
  • Marketing: unsubscribe links are included in emails.

Security

We apply administrative, technical, and physical safeguards (e.g., encryption in transit/at rest, least‑privilege access, on‑device storage with optional sync). No method is 100% secure.

Do Not Track / Global Privacy Control

We honor browser signals where legally required and feasible. Otherwise, use in‑product privacy settings and opt‑out links.

Changes to this policy

We will update this page and adjust the date above. Material changes may be communicated by email or in‑app notice.

Contact

Email: mohit@blupp.co