Privacy Policy

City GuideX Mobile Application

Effective Date: August 3, 2025
Service Provider: FUTUREAPPS AI P.S.A.
Address: UL. JANA I JĘDRZEJA ŚNIADECKICH 20D / 7, 35-006 RZESZÓW, POLAND
Application: GuideX (City GuideX)
Contact: [email protected]

⚠️ IMPORTANT NOTICE ABOUT DATA COLLECTION

City GuideX respects your privacy. All analytics and personalized advertising are DISABLED by default.

When you first use our app, we will ask for your explicit consent to: - Collect information about applications installed on your device - Show you personalized advertisements based on your interests - Enable analytics to improve app performance and prevent fraud

You are in control: - All data collection is OFF until you choose to enable it - You can opt-in to improve your experience - You can opt-out at any time in Settings > Privacy - Declining does not affect core app functionality

This data collection is handled through our trusted partners: - Firebase Analytics (Google) - Performance monitoring - Facebook Analytics - Analytics and insights - IronSource - Personalized advertising

For complete details, see the sections below.

1. Overview

This Privacy Policy explains how FUTUREAPPS AI P.S.A. ("we," "us," "our") collects, uses, and protects your information when you use the GuideX mobile application ("Application").

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR).

2. Age Requirement

The Application is intended for users 16 years of age or older. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16, we will immediately delete it.

3. Information We Collect

3.1 Account Information

When you create an account using our supported authentication methods, we collect:

From Authentication Providers (Facebook, Google, Apple, Firebase): - Name - Email address - Profile photo URL - Unique user identifier (UID)

3.2 Usage Data

• Visited attractions and places
• Created trips and itineraries
• App usage analytics (anonymized)

3.3 Location Data

• Current location (only while the Application is active)
• We DO NOT track location when the app is closed or in background
• Location is used exclusively for providing personalized travel content

3.4 Device Information

• Device type and operating system
• App version and usage statistics
• IP address for service provision

3.5 Analytics & Advertising Data (OPT-IN ONLY)

BY DEFAULT, THIS DATA COLLECTION IS DISABLED.

If you choose to opt-in to analytics and personalized advertising, we collect:

Installed Applications Information: - List of installed application package names - App versions and installation dates - App categories and types

Why We Collect: - App performance and crash diagnostics - Fraud prevention and security - Personalized advertising (IronSource) - Service optimization

Advertising Identifier: - Your device's Advertising ID (IDFA on iOS, AAID on Android) - Used for personalized advertisements through IronSource - Can be reset in device settings

In-App Behavior (When Analytics Enabled): - Features used and frequency - Time spent in different sections - Error messages and crash reports - App performance metrics

Your Control: - ✅ DISABLED by default - no collection until you opt-in - ✅ Explicit consent required before any data is collected - ✅ Can be disabled anytime in Settings > Privacy > Analytics & Ads - ✅ Declining does not affect core app features - ⚠️ Single toggle controls both analytics AND personalized advertising together

4. Information We Do NOT Collect

We do not collect or access: - Microphone or audio recordings - Background location data - Cookies - Contact lists - Photos or media (except profile photo from SSO) - Any other personal data not explicitly mentioned

5. How We Use Your Information

5.1 Service Provision

• Provide personalized travel guides and recommendations
• Generate location-based content and attractions
• Manage your account and preferences
• Process subscriptions and payments

5.2 AI Content Generation

Your location and preferences are used to generate: - Attraction stories and descriptions - Answers to questions about places - Personalized trip itineraries

5.3 Service Improvement

• Analyze usage patterns (anonymized data only)
• Improve app functionality and user experience
• Ensure service security and prevent fraud

6. Legal Basis for Processing (GDPR)

We process your personal data based on: - Consent: You agree to our Terms and Privacy Policy - Contract Performance: To provide services you've requested - Legitimate Interest: To improve our services and ensure security

7. Data Sharing and Disclosure

7.1 We DO NOT:

• ❌ Sell your personal information to third parties
• ❌ Share your data for direct marketing by other companies
• ❌ Provide your information to data brokers
• ❌ Share your location data with advertisers
• ❌ Enable data collection without your explicit consent

7.2 Limited Sharing (Only With Your Consent)

We only share data with trusted service providers when you opt-in to analytics and personalized advertising:

Analytics Providers (Opt-In): - Firebase Analytics (Google): Performance monitoring, crash reporting, usage analytics - Data Shared: Installed apps, device info, usage patterns, crash logs - When: Only if you opt-in via Analytics & Ads setting - Privacy Policy: https://firebase.google.com/support/privacy - Your Control: Disable in Settings > Privacy > Analytics & Ads

• Facebook Analytics: Usage analytics, fraud detection, audience insights
• Data Shared: Installed apps, device info, in-app behavior
• When: Only if you opt-in via Analytics & Ads setting
• Privacy Policy: https://www.facebook.com/about/privacy
• Your Control: Disable in Settings > Privacy > Analytics & Ads

Advertising Partners (Opt-In): - IronSource (Advertising Platform): Personalized advertising, ad serving, monetization - Data Shared: Advertising ID, installed apps, device info, ad interactions - When: Only if you opt-in via Analytics & Ads setting - Privacy Policy: https://developers.ironsrc.com/ironsource-mobile/air/ironsource-mobile-privacy-policy/ - Your Control: Disable in Settings > Privacy > Analytics & Ads

Essential Service Providers (Required): - Firebase/Google: Account management and data storage - RevenueCat: Subscription and payment processing - Authentication Providers: Facebook, Google, Apple (only for login)

Legal Requirements: We may disclose information if required by law, court order, or to protect our rights and users' safety.

8. Data Storage and Security

8.1 Storage Location

• Primary storage: Google Firestore (US-based servers)
• We implement appropriate security measures for data protection

8.2 Security Measures

• Encrypted data transmission
• Secure authentication protocols
• Regular security monitoring
• Access controls and authentication

9. Data Retention

9.1 Account Data

• Retained while your account is active
• Deleted when you request account deletion

9.2 Usage Data

• Visited attractions: Stored permanently (unless deletion requested)
• Trips: Stored permanently but can be deleted via app interface
• Analytics: Anonymized data may be retained for service improvement

10. Your Privacy Controls

10.1 Analytics & Advertising Settings

You have complete control over analytics and personalized advertising in our app through a single unified setting.

How to Access Controls: 1. Open City GuideX app 2. Go to Settings (gear icon) 3. Tap Privacy 4. Toggle Analytics & Ads setting (Default: OFF)

What This Single Setting Controls: When enabled, it activates: - Firebase Analytics - Performance monitoring and crash reports - Facebook Analytics - Usage analytics and fraud detection - IronSource Personalized Ads - Interest-based advertising - Installed Apps Data Collection - For diagnostics and ad personalization - Advertising ID Collection - For personalized advertisements

Note: Analytics and personalized advertising are managed together as a single setting. When you enable this setting, both analytics collection and personalized advertising are activated. When disabled, neither analytics nor personalized ads are active.

10.2 First-Time User Experience

When you first open City GuideX, you'll see a consent dialog explaining our data practices. You can choose: - Accept - Enable analytics and personalized ads - Decline - Keep everything disabled (default)

What happens if you decline: - ✅ All core features work normally (guides, tours, audio) - ✅ Maps and location services work normally - ✅ No analytics or advertising data is collected - ✅ No installed apps information is scanned - ❌ Ads shown will be non-personalized (generic) - ❌ We cannot diagnose device-specific crashes

11. Your Rights (GDPR)

You have the following rights regarding your personal data:

11.1 Access

Request information about what personal data we hold about you, including analytics data collected (if opted in)

11.2 Rectification

Correct any inaccurate or incomplete personal data

11.3 Erasure ("Right to be Forgotten")

Request deletion of your personal data, including analytics data deletion (Firebase, Facebook) and advertising data deletion (IronSource)

11.4 Data Portability

Request your data in JSON format including all stored information (account details, visited attractions, trips, preferences, analytics consent history). Requests are processed within 30 days.

11.5 Object to Processing

Object to certain types of data processing, including analytics collection and personalized advertising. Can be done immediately in Settings > Privacy > Analytics & Ads.

11.6 Restrict Processing

Request limitation of data processing. Disable analytics and advertising via the Analytics & Ads toggle while keeping your account active.

11.7 Withdraw Consent

Withdraw consent for data processing at any time via Settings > Privacy > Analytics & Ads toggle or email [email protected]. Data collection stops immediately.

12. Data Deletion Options

12.1 Delete Specific Data

URL: https://guidex.city/delete-data Request deletion of specific information while keeping your account active

12.2 Delete Entire Account

URL: https://guidex.city/delete-account Complete account and data deletion (irreversible)

12.3 In-App Deletion

You can delete individual trips directly through the Application interface

Processing Time: Data deletion requests are processed within 30 days

13. Subscriptions and Payments

13.1 Payment Processing

• Handled by RevenueCat (third-party processor)
• We do not store payment card information
• Subscription data includes billing history and status

13.2 Subscription Types

• Weekly and monthly subscriptions available
• 3-day free trial (subject to change or removal)
• All prices include applicable taxes

14. International Data Transfers

Your data is primarily processed and stored in the United States through Google Firestore. By using our Application, you consent to this transfer. We ensure your data receives adequate protection consistent with applicable privacy laws.

15. Changes to Privacy Policy

We may update this Privacy Policy periodically. We will notify you of significant changes through: - In-app notifications - Email notifications - Updated effective date on this page

Continued use after changes constitutes acceptance of the updated policy.

16. Contact Information

16.1 General Inquiries

Email: [email protected]

16.2 Data Protection Officer

For GDPR-related requests: Email: [email protected] Subject Line: "GDPR Request - [Your Request Type]"

16.3 Postal Address

FUTUREAPPS AI P.S.A.
UL. JANA I JĘDRZEJA ŚNIADECKICH 20D / 7
35-006 RZESZÓW, POLAND

17. Third-Party Services

The Application uses third-party services with their own privacy policies:

• Google Play Services: https://policies.google.com/privacy
• Firebase: https://firebase.google.com/support/privacy
• Firebase Analytics: https://firebase.google.com/support/privacy (Opt-In)
• Facebook: https://www.facebook.com/about/privacy
• Facebook Analytics: https://www.facebook.com/about/privacy (Opt-In)
• Apple: https://www.apple.com/privacy
• RevenueCat: https://www.revenuecat.com/privacy
• IronSource: https://developers.ironsrc.com/ironsource-mobile/air/ironsource-mobile-privacy-policy/ (Opt-In)

18. Cookies and Tracking

We do not use cookies or similar tracking technologies. The Application may use standard mobile analytics provided by our hosting platform, but this does not involve cookie-based tracking.

19. Data Breach Notification

In case of a data breach affecting personal information, we will: - Notify relevant authorities within 72 hours (as required by GDPR) - Inform affected users by email without undue delay when required by law - Take immediate action to secure the breach and prevent further incidents

Note: Most user data in our system is anonymized, with email being the primary personally identifiable information stored.

This Privacy Policy is effective as of January 1, 2025

© 2025 FUTUREAPPS AI P.S.A. All rights reserved.