Introduction

This Privacy Policy explains how Philly Connect (“we”, “us”, “our”) collects, uses, and safeguards information from internal testers of the Philly Connect mobile application (the “App”). This build is for internal testing only and is not intended for public distribution. 

1) Information We Collect

• First name, last name

• Email address, phone number

• Firebase UID (account identifier)

• Legal/Audit

• Signature image (PNG, base64-encoded)

• NDA text snapshot URL (stored in secure cloud storage)

• NDA text SHA-256 hash (document integrity reference)

• Timestamps (client and server)

• Device/App

• Operating system, device model, device locale

• App version and build

• Optional/Operational

• Push notification token (if notifications are enabled)

We do not collect precise location data.

2) How We Use Information

• Core functionality and identity verification (account, profile setup)

• Mandatory NDA presentation and e-signature collection for internal testing

• Legal compliance and audit trail (binding e-signatures under ESIGN/UETA; document integrity via hash)

• Security, abuse prevention, and service reliability

• Internal product development and quality assurance during testing

We do not sell personal information.

3) Legal Bases (where applicable)

• Contract: performance of the NDA, internal testing agreements

• Consent: where required for notifications or optional features

• Legitimate Interests: security, fraud prevention, service integrity

• Legal Obligations: maintaining e-signature/audit records for applicable terms

4) Data Retention

• NDA records (including signature, document hash/URL, timestamps): retained for the NDA term (e.g., 3 years) and any additional period required by law or to establish/defend legal claims.

• Account and testing data: retained while your tester account remains active or as needed for the purposes above.

• We securely delete or de-identify data when it is no longer required.

5) How We Share Information

• Google Firebase (Authentication, Firestore, Storage)

• Google Play Console/Play Services (distribution, crash/telemetry as configured)

• Legal/Compliance

• If required by law, legal process, or to protect rights, safety, and security

• Service Providers (processors)

We do not sell personal data to third parties.

6) Security

We implement administrative, technical, and organizational safeguards, including:

• Encryption in transit (TLS) and at rest (cloud-managed)

• Access controls and least-privilege practices

• Document integrity controls (SHA-256 hash of the NDA text; immutable snapshot URL)

No method is 100% secure; we continuously improve our safeguards.

7) International Data Transfers

Data may be processed in the United States or other regions where our processors operate. We rely on appropriate transfer mechanisms where required.

8) Your Choices & Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict processing of your data, and to withdraw consent where applicable.

• Requests: contact aistudiomark@gmail.com

• Note: some records (e.g., signed NDA) may be retained as required by law or to maintain a valid audit trail.

9) Children

This internal testing build is not intended for children under 13. We do not knowingly collect data from children under 13.

10) Cookies/Tracking

This mobile build does not use browser cookies. Limited device and service identifiers may be used for authentication, notifications, and reliability.

11) Third-Party Services

• Google Firebase (Auth/Firestore/Storage)

• Google Play Console/Play Services

Each provider processes data according to its own privacy terms. We only engage providers necessary for internal testing.

12) Changes to This Policy

We may update this policy to reflect operational or legal changes. Material updates will be communicated in-app or via our repository/release notes.

13) Contact Us

• Philly Connect Support

• Email: aistudiomark@gmail.com

If you are an internal tester and have questions about how your data is handled, or you wish to exercise your rights, please contact us.