Privacy Policy

This Privacy Policy describes how AllOpen ("we," "our," or "us"), a social platform managed by Allpixel Technologies, collects, uses, and protects your personal information when you use our website (allopen.in) and mobile application (collectively, the "Service").

By using AllOpen, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

1. Information We Collect

In compliance with Google Play Store requirements, we disclose the following data collection practices:

1.1 Information You Provide to Us

• Account Information: When you register, we collect your username, email address, password (encrypted using bcrypt), and optionally your real name if you choose to display it.
• Profile Information: Your anonymous name, profile picture (if uploaded), cover photo (if uploaded), and privacy preferences.
• Content: Posts (text, images, videos), comments, replies, reactions (support/dislike), stories, and any other content you create or share on the platform.
• Communications: Messages you send to us, including support requests and feedback.
• Media Files: Photos and videos you upload for posts, stories, or profile pictures.

1.2 Information Automatically Collected

• Device Information: Device type, operating system version, device model, unique device identifiers (Android ID, device ID), mobile network information, and device settings.
• Usage Information: How you interact with our Service, including pages visited, features used, time spent, actions taken, posts viewed, comments made, and interactions with other users.
• Log Data: IP address, browser type, access times, pages viewed, referring website addresses, and error logs.
• Location Information:
  • General location data (city/country level) based on your IP address
  • Precise location data (GPS coordinates) if you grant location permissions in the mobile app and choose to tag your posts with location
  • Location data is optional and only collected when you explicitly enable location tagging for posts
• App Activity: App interactions, in-app search history, and other user-generated content.
• Cookies and Similar Technologies: We use cookies and similar tracking technologies to track activity, store preferences, and maintain session state.

1.3 App Permissions and Data Collection

Our mobile app may request the following permissions:

• Camera: To take photos and videos for posts and stories. We only access your camera when you explicitly choose to take a photo or video within the app.
• Microphone: To record audio for videos. We only access your microphone when you are recording a video within the app.
• Photo Library/Storage: To select existing photos and videos from your device to upload as posts or stories.
• Location: To optionally tag your posts with your current location. This permission is optional and can be denied without affecting core app functionality.
• Notifications: To send you push notifications about comments, reactions, friend requests, and other activities. You can disable notifications in your device settings.

Important: You can revoke any of these permissions at any time through your device settings. Revoking permissions may limit certain features but will not prevent you from using the core functionality of the app.

1.4 Information from Third Parties

• If you choose to link your account with third-party services (e.g., Google, Facebook), we may receive information from those services, such as your name, email address, and profile picture.
• We may receive information about you from other users, such as when they mention you in posts or comments, send you friend requests, or interact with your content.

1.5 Categories of Personal Data Collected (GDPR/CCPA Compliance)

For transparency, we collect the following categories of personal data:

• Identifiers: Username, email address, device identifiers
• Account Information: Profile data, preferences, settings
• Content: Posts, comments, messages, media files
• Usage Data: App activity, interactions, preferences
• Location Data: General and precise location (if permitted)
• Technical Data: IP address, device information, log data

2. How We Use Your Information

We use the information we collect for the following purposes:

• To Provide and Maintain Our Service: Create and manage your account, display your content, enable interactions between users, and provide customer support.
• To Improve Our Service: Analyze usage patterns, identify technical issues, and develop new features.
• To Communicate with You: Send you notifications, respond to your inquiries, and provide important updates about our Service.
• To Ensure Security: Detect, prevent, and address fraud, abuse, security threats, and violations of our Terms of Service.
• To Personalize Your Experience: Show you relevant content, suggest friends, and customize your feed based on your preferences.
• To Comply with Legal Obligations: Meet legal requirements, respond to legal requests, and protect our rights and the rights of our users.
• For Analytics and Research: Understand how our Service is used and improve user experience (data is aggregated and anonymized).

3. How We Share Your Information

We do not sell your personal information to third parties. We may share your information in the following circumstances:

3.1 Public Information

• Your posts, comments, reactions, and profile information (as per your privacy settings) are visible to other users on the platform.
• Your username and anonymous name are publicly visible on your profile and posts.
• You can control the visibility of your real name through your privacy settings.

3.2 Third-Party Service Providers

We share information with the following categories of third-party service providers who perform services on our behalf:

• Hosting Services: Hostinger (data storage and server hosting)
• Analytics Services: Google Analytics (website usage analytics - anonymized data)
• Email Services: Email delivery services for notifications and account-related communications
• CDN Services: Content delivery networks for faster content delivery

These service providers are contractually obligated to:

• Protect your information and use it only for the purposes we specify
• Comply with applicable data protection laws
• Not sell or share your information for their own purposes

3.3 Legal Requirements

• We may disclose information if required by law, court order, or government regulation
• We may disclose information to protect our rights, property, or safety, or that of our users
• We may disclose information to investigate fraud, abuse, or violations of our Terms of Service

3.4 Business Transfers

• In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity
• We will notify you of any such transfer and provide you with options regarding your data

3.5 With Your Consent

• We may share information with your explicit consent or at your direction
• For example, if you choose to share a post on external social media platforms, that information will be shared with those platforms

3.6 Data Sharing Summary (Google Play Store Compliance)

Data Shared with Third Parties:

• Analytics Data: Shared with Google Analytics (anonymized, aggregated usage data)
• Hosting Data: Shared with Hostinger (all user data for storage and processing)
• No Data Sold: We do not sell user data to advertisers or data brokers
• No Data Shared for Advertising: We do not share data with advertising networks for targeted advertising

4. Data Storage, Retention, and Security

4.1 Data Storage

• Your data is stored on secure servers hosted by Hostinger and other trusted hosting providers located in secure data centers.
• Data is stored in MySQL databases with access controls and regular backups.
• Media files (images, videos) are stored in secure directories with restricted access.

4.2 Data Retention

We retain your information for the following periods:

• Active Accounts: We retain your information for as long as your account is active or as needed to provide our Service.
• Deleted Accounts: When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.
• Legal Requirements: We may retain certain information (e.g., transaction records, legal compliance data) for up to 7 years as required by law.
• Backup Data: Deleted data may remain in backups for up to 90 days before being permanently deleted.
• Public Content: If you delete a post or comment, it is immediately removed from public view, but may remain in backups for up to 90 days.

4.3 Security Measures

We implement the following security measures to protect your data:

• Encryption: All data transmission is encrypted using HTTPS/TLS (SSL) protocols
• Password Security: Passwords are hashed using bcrypt with salt, never stored in plain text
• Secure Sessions: Session cookies are HTTP-only, secure, and use SameSite protection
• Input Validation: All user input is validated and sanitized to prevent SQL injection and XSS attacks
• Prepared Statements: All database queries use prepared statements to prevent SQL injection
• File Upload Security: File uploads are validated for type and size, and stored in secure directories
• Access Controls: Database and server access is restricted to authorized personnel only
• Security Headers: We implement security headers (CSP, HSTS, X-Frame-Options) to protect against common attacks
• Regular Updates: We regularly update our software and security measures
• Security Monitoring: We monitor for suspicious activity and unauthorized access attempts

Important: While we implement industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials. Please use a strong, unique password and do not share it with others.

4.4 Data Breach Notification

In the event of a data breach that may affect your personal information, we will:

• Notify affected users within 72 hours of discovering the breach
• Report the breach to relevant data protection authorities as required by law
• Take immediate steps to contain and remediate the breach
• Provide guidance on steps you can take to protect your information

5. Your Privacy Rights and Choices

5.1 Account Controls

• Profile Privacy: You can choose whether to display your real name on your profile or remain anonymous.
• Content Control: You can edit, delete, or hide your posts and comments at any time.
• Account Deletion: You can delete your account at any time through your profile settings. This will permanently delete your account and most of your personal information.

5.2 Data Access and Portability

• You have the right to access, update, or correct your personal information through your account settings.
• You can request a copy of your data in a portable format by contacting us at contact@allpixel.in.

5.3 Data Deletion

How to Request Data Deletion:

• Through the App: Go to Settings → Account → Delete Account. This will permanently delete your account and most of your personal information.
• By Email: Send a deletion request to contact@allpixel.in with the subject "Data Deletion Request" and include your username or email address.
• Response Time: We will process your deletion request within 30 days of receipt.

What Gets Deleted:

• Your account information (username, email, profile data)
• Your posts, comments, and reactions
• Your profile pictures and uploaded media
• Your friend connections and messages

What May Be Retained:

• Information required for legal compliance (e.g., transaction records)
• Information needed for dispute resolution
• Anonymized, aggregated data that cannot be linked to you
• Backup data (deleted within 90 days)

Note: Some information may be retained for legal compliance, dispute resolution, or enforcement of our Terms of Service. We will inform you if any data must be retained for legal reasons.

5.4 Opt-Out Rights

• You can opt out of non-essential communications (marketing emails) through your account settings or by contacting us.
• You can disable push notifications through your device settings.
• You can control cookie preferences through your browser settings, though this may affect Service functionality.

5.5 Rights Under GDPR (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

• Right to access your personal data
• Right to rectification (correction) of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

To exercise these rights, please contact us at contact@allpixel.in.

6. Children's Privacy (COPPA Compliance)

Age Requirement: AllOpen is not intended for users under the age of 13 (or the minimum age in your jurisdiction, whichever is higher).

We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us immediately at contact@allpixel.in, and we will promptly delete such information.

Users Aged 13-17: If you are between 13 and 18 years old (or the age of majority in your jurisdiction), you must have your parent's or guardian's permission to use our Service. By using our Service, you represent that you have obtained such permission.

Parental Rights: Parents or guardians of users under 18 have the right to:

• Review their child's personal information
• Request deletion of their child's personal information
• Refuse further collection or use of their child's information

To exercise these rights, please contact us at contact@allpixel.in with proof of parental relationship.

Content Restrictions: We do not allow users under 18 to post or share content that is inappropriate, harmful, or violates our Terms of Service. We reserve the right to remove such content and suspend or terminate accounts of users who violate these rules.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our Service, you consent to the transfer of your information to these countries.

We take appropriate measures to ensure that your information receives an adequate level of protection in the jurisdictions where we process it.

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use

• Essential Cookies: Required for the Service to function (e.g., authentication, session management).
• Analytics Cookies: Help us understand how users interact with our Service (anonymized data).
• Preference Cookies: Remember your settings and preferences.

8.2 Managing Cookies

You can control cookies through your browser settings. However, disabling essential cookies may affect Service functionality.

9. Third-Party Services and Links

9.1 Third-Party Services We Use

Our Service uses the following third-party services:

• Hostinger: Web hosting and data storage services. Their privacy policy: https://www.hostinger.in/privacy-policy
• Google Analytics: Website analytics and usage tracking (anonymized data). Their privacy policy: https://policies.google.com/privacy
• Font Awesome: Icon library (CDN). Their privacy policy: https://fontawesome.com/privacy
• Google Fonts: Web fonts (CDN). Their privacy policy: https://policies.google.com/privacy

9.2 Third-Party Links

Our Service may contain links to third-party websites or integrate with third-party services (e.g., social media platforms for sharing). We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any information to them.

9.3 Social Media Sharing

When you share content from our Service to external social media platforms (e.g., WhatsApp, Facebook, Instagram), that content and any associated data will be subject to the privacy policies of those platforms. We do not control how those platforms use your information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:

• Posting the updated Privacy Policy on this page
• Updating the "Last Updated" date
• Sending you an email notification (for significant changes)
• Displaying a notice in our Service

Your continued use of our Service after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

12. Data Controller Information

Data Controller: Allpixel Technologies

Contact: contact@allpixel.in

Phone: +91 9572483645

Website: https://allopen.in

Address: India

13. Google Play Store Data Safety Compliance

This section provides specific information required by Google Play Store's Data Safety section:

13.1 Data Collection and Sharing

• Personal Information Collected: Username, email address, profile information, content (posts, comments), media files
• Device Information Collected: Device identifiers, IP address, device type, operating system
• Location Data: Optional, only if you grant permission and choose to tag posts with location
• Data Shared with Third Parties: Yes, with hosting provider (Hostinger) and analytics provider (Google Analytics - anonymized data only)
• Data Sold: No, we do not sell user data
• Data Used for Tracking: No, we do not use data for tracking users across apps and websites

13.2 Security Practices

• Data is encrypted in transit (HTTPS/TLS)
• Passwords are hashed using bcrypt
• Data is stored on secure servers with access controls
• Regular security updates and monitoring

13.3 Data Deletion

Users can request data deletion by:

• Deleting their account through the app settings
• Emailing us at contact@allpixel.in
• Data will be deleted within 30 days of request

13.4 App Permissions

Our app requests the following permissions and explains their use:

• Camera: To take photos/videos for posts (optional)
• Microphone: To record audio for videos (optional)
• Storage: To select photos/videos from device (optional)
• Location: To tag posts with location (optional)
• Notifications: To send push notifications (can be disabled)

All permissions are optional and can be denied without affecting core app functionality.

© 2025 AllOpen - India's Voice • Managed by Allpixel Technologies