Privacy Policy

City GuideX Mobile Application

Effective Date: August 3, 2025
Service Provider: FUTUREAPPS AI P.S.A.
Address: UL. JANA I JĘDRZEJA ŚNIADECKICH 20D / 7, 35-006 RZESZÓW, POLAND
Application: GuideX (City GuideX)
Contact: [email protected]

1. Overview

This Privacy Policy explains how FUTUREAPPS AI P.S.A. ("we," "us," "our") collects, uses, and protects your information when you use the GuideX mobile application ("Application").

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR).

2. Age Requirement

The Application is intended for users 16 years of age or older. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16, we will immediately delete it.

3. Information We Collect

3.1 Account Information

When you create an account using our supported authentication methods, we collect:

From Authentication Providers (Facebook, Google, Apple, Firebase): - Name - Email address - Profile photo URL - Unique user identifier (UID)

3.2 Usage Data

• Visited attractions and places
• Created trips and itineraries
• App usage analytics (anonymized)

3.3 Location Data

• Current location (only while the Application is active)
• We DO NOT track location when the app is closed or in background
• Location is used exclusively for providing personalized travel content

3.4 Device Information

• Device type and operating system
• App version and usage statistics
• IP address for service provision

4. Information We Do NOT Collect

We do not collect or access: - Microphone or audio recordings - Background location data - Cookies - Contact lists - Photos or media (except profile photo from SSO) - Any other personal data not explicitly mentioned

5. How We Use Your Information

5.1 Service Provision

• Provide personalized travel guides and recommendations
• Generate location-based content and attractions
• Manage your account and preferences
• Process subscriptions and payments

5.2 AI Content Generation

Your location and preferences are used to generate: - Attraction stories and descriptions - Answers to questions about places - Personalized trip itineraries

5.3 Service Improvement

• Analyze usage patterns (anonymized data only)
• Improve app functionality and user experience
• Ensure service security and prevent fraud

6. Legal Basis for Processing (GDPR)

We process your personal data based on: - Consent: You agree to our Terms and Privacy Policy - Contract Performance: To provide services you've requested - Legitimate Interest: To improve our services and ensure security

7. Data Sharing and Disclosure

7.1 We DO NOT:

• Sell your personal information to third parties
• Share your data for marketing purposes
• Provide your information to data brokers

7.2 Limited Sharing:

We only share data with:

Essential Service Providers: - Firebase/Google: Account management and data storage - RevenueCat: Subscription and payment processing - Authentication Providers: Facebook, Google, Apple (only for login)

Legal Requirements: We may disclose information if required by law, court order, or to protect our rights and users' safety.

8. Data Storage and Security

8.1 Storage Location

• Primary storage: Google Firestore (US-based servers)
• We implement appropriate security measures for data protection

8.2 Security Measures

• Encrypted data transmission
• Secure authentication protocols
• Regular security monitoring
• Access controls and authentication

9. Data Retention

9.1 Account Data

• Retained while your account is active
• Deleted when you request account deletion

9.2 Usage Data

• Visited attractions: Stored permanently (unless deletion requested)
• Trips: Stored permanently but can be deleted via app interface
• Analytics: Anonymized data may be retained for service improvement

10. Your Rights (GDPR)

You have the following rights regarding your personal data:

10.1 Access

Request information about what personal data we hold about you

10.2 Rectification

Correct any inaccurate or incomplete personal data

10.3 Erasure ("Right to be Forgotten")

Request deletion of your personal data

10.4 Data Portability

Request your data in JSON format including all stored information (account details, visited attractions, trips, preferences). Requests are processed within 30 days.

10.5 Object to Processing

Object to certain types of data processing

10.6 Restrict Processing

Request limitation of data processing

10.7 Withdraw Consent

Withdraw consent for data processing at any time

11. Data Deletion Options

11.1 Delete Specific Data

URL: https://guidex.city/delete-data
Request deletion of specific information while keeping your account active

11.2 Delete Entire Account

URL: https://guidex.city/delete-account
Complete account and data deletion (irreversible)

11.3 In-App Deletion

You can delete individual trips directly through the Application interface

Processing Time: Data deletion requests are processed within 30 days

12. Subscriptions and Payments

12.1 Payment Processing

• Handled by RevenueCat (third-party processor)
• We do not store payment card information
• Subscription data includes billing history and status

12.2 Subscription Types

• Weekly and monthly subscriptions available
• 3-day free trial (subject to change or removal)
• All prices include applicable taxes

13. International Data Transfers

Your data is primarily processed and stored in the United States through Google Firestore. By using our Application, you consent to this transfer. We ensure your data receives adequate protection consistent with applicable privacy laws.

14. Changes to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of significant changes through: - In-app notifications - Email notifications - Updated effective date on this page

Continued use after changes constitutes acceptance of the updated policy.

15. Contact Information

15.1 General Inquiries

Email: [email protected]

15.2 Data Protection Officer

For GDPR-related requests: Email: [email protected]
Subject Line: "GDPR Request - [Your Request Type]"

15.3 Postal Address

FUTUREAPPS AI P.S.A.
UL. JANA I JĘDRZEJA ŚNIADECKICH 20D / 7
35-006 RZESZÓW, POLAND

16. Third-Party Services

The Application uses third-party services with their own privacy policies:

• Google Play Services: https://policies.google.com/privacy
• Firebase: https://firebase.google.com/support/privacy
• Facebook: https://www.facebook.com/about/privacy
• Apple: https://www.apple.com/privacy
• RevenueCat: https://www.revenuecat.com/privacy

17. Cookies and Tracking

We do not use cookies or similar tracking technologies. The Application may use standard mobile analytics provided by our hosting platform, but this does not involve cookie-based tracking.

18. Data Breach Notification

In case of a data breach affecting personal information, we will: - Notify relevant authorities within 72 hours (as required by GDPR) - Inform affected users by email without undue delay when required by law - Take immediate action to secure the breach and prevent further incidents

Note: Most user data in our system is anonymized, with email being the primary personally identifiable information stored.

This Privacy Policy is effective as of January 1, 2025

© 2025 FUTUREAPPS AI P.S.A. All rights reserved.