CSSMatter · Legal

Privacy Policy

Last updated: June 11, 2026  ·  Effective date: June 11, 2026

Contents

  1. Information We Collect
  2. Advertising & App Tracking Transparency
  3. Third-Party Services
  4. Push Notifications
  5. How We Use Your Data
  6. Data Retention & Deletion
  7. Security
  8. Children's Privacy
  9. Changes to This Policy
  10. Contact Us

1 Information We Collect

We collect the following categories of information when you use the Certification Preparation app:

Account & Authentication Data

Usage & Progress Data

Device & Technical Data

We do not collect your name, phone number, physical location, photos, contacts, or any financial payment details. Payments are processed entirely by Apple (App Store) and managed by RevenueCat.

2 Advertising & App Tracking Transparency

The app displays ads served by Google AdMob. On iOS and iPadOS, Apple requires us to ask for your permission before using your device's Advertising Identifier (IDFA) to show you personalized ads. This is called the App Tracking Transparency (ATT) framework.

What Happens When You Open the App

Before any personalized ad is loaded, you will see a system dialog from Apple that reads:

"This identifier will be used to deliver personalized ads to you."

Your Choice What It Means
Allow Tracking Google AdMob may use your IDFA to show ads relevant to your interests, based on activity across other apps and websites.
Ask App Not to Track Google AdMob will show non-personalized ads only. Your IDFA is not used. You may still see ads, but they will not be tailored to your profile.

Changing Your Choice

You can change your tracking preference at any time in your device settings:

Settings → Privacy & Security → Tracking → Certification Preparation

What "Tracking" Means

Per Apple's definition, tracking means linking data collected from this app with third-party data for advertising purposes, or sharing that data with a data broker. We do not sell your data. The only tracking that occurs (if you grant permission) is the use of your IDFA by Google AdMob to serve personalized advertisements.

For more information, see Google AdMob's data practices.

3 Third-Party Services

We use the following third-party service providers. Each has their own privacy policy governing how they handle data:

Service Purpose Data Shared Privacy Policy
Supabase Authentication, cloud database (progress, purchases, profiles) Email, user ID, progress data supabase.com/privacy
Google Sign-In Optional OAuth sign-in via Google account Google account email & name policies.google.com/privacy
Sign in with Apple Optional OAuth sign-in via Apple ID Apple ID token (may be anonymized) apple.com/legal/privacy
RevenueCat In-app purchase management & subscription tracking User ID, purchase events revenuecat.com/privacy
Google AdMob Display advertising IDFA (only if ATT permission granted) policies.google.com/privacy
Expo / Expo Notifications Push notification delivery infrastructure Push token, platform type expo.dev/privacy

We do not share your data with any data brokers, marketing companies, or advertisers beyond what is described in this table.

4 Push Notifications

On iOS and iPadOS, the app may ask for permission to send you push notifications. These are used exclusively for:

If you grant notification permission, your device push token is stored in our secure database (Supabase) and associated with your user account. This token is used only to deliver notifications to your device.

You can revoke notification permission at any time in your device settings:

Settings → Notifications → Certification Preparation

Revoking notification permission does not affect any other features of the app.

5 How We Use Your Data

Purpose Legal Basis
To provide and maintain the app (sync progress, enable purchases) Contract performance
To authenticate your account and prevent fraud Contract performance / Legitimate interest
To manage your in-app purchases and restore them across devices Contract performance
To send study reminders (only if you granted notification permission) Consent
To display personalized ads (only if you granted ATT permission) Consent
To display non-personalized ads (always, with or without ATT permission) Legitimate interest
To respond to support requests and feedback Legitimate interest

We do not use your data for automated decision-making or profiling beyond ad personalization (which is governed by your ATT choice).

6 Data Retention & Deletion

Retention

We retain your account data (email, progress, purchases) for as long as your account is active. If you do not use the app for more than 3 years, we may delete inactive accounts.

Deleting Your Account

You can permanently delete your account and all associated data at any time, directly within the app:

  1. Open the app and go to Profile.
  2. Tap the Settings icon (top-right).
  3. Scroll to Account Actions.
  4. Tap Delete Account and confirm.

This action is irreversible. It permanently removes your profile, test attempts, purchase records, and push token from our servers. After deletion, you will be signed out immediately.

If you experience any issues with account deletion, contact us at cssmatter@gmail.com.

Guest Data

If you use the app as a guest (without signing in), a temporary anonymous session is created. If you later sign up, your guest progress is merged into your new account. If you never sign up, the anonymous session data is retained for up to 90 days before automatic deletion.

7 Security

We take the security of your data seriously and implement the following measures:

No method of transmission over the internet is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security.

8 Children's Privacy

The Certification Preparation app is intended for users who are 13 years of age or older. We do not knowingly collect personally identifiable information from children under 13.

If you are a parent or guardian and believe your child has provided personal information to us, please contact us at cssmatter@gmail.com and we will promptly delete that information.

9 Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page.

We encourage you to review this page periodically. Your continued use of the app after any changes constitutes your acceptance of the updated policy.

Significant changes (such as new data collection practices) will be communicated via a notice within the app or via the email address associated with your account.

10 Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

✉️

Email

cssmatter@gmail.com

We aim to respond to all privacy-related inquiries within 5 business days.