Privacy Policy

How we collect, use, and protect your personal data

Last updated: March 1, 2026

Introduction

My12AppTesters ("we", "us", or "our") operates the My12AppTesters mobile application and website (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not use the Service.

Information We Collect

Account Information

  • Email address (required for account creation)
  • Display name (provided at signup or via Google Sign-In)
  • Profile picture / avatar URL (from Google Sign-In or uploaded)

App Listing Data

  • App name and Google Play Store link
  • App package name, icon, and description

Testing & Engagement Data

  • Test engagement records and daily check-in timestamps
  • Test completion status and progress
  • Reviews (rating, text feedback, and optional screenshots)

Transaction & Payment Data

  • Credit balance and credit transaction history
  • Stripe customer ID — we do not store your card details (handled entirely by Stripe)

Device & Technical Data

  • Push notification token (Expo) for sending check-in reminders
  • Device type and platform (Android / Web)

How We Use Your Information

We use the information we collect to:

  • Create and manage your account
  • Allow you to list your apps and participate as a tester
  • Track testing progress and daily check-ins
  • Process credit transactions and payments through Stripe
  • Send push notifications for check-in reminders
  • Display reviews and ratings to app owners
  • Provide customer support via email
  • Ensure the integrity of the testing process
  • Improve and optimize the Service

Data Storage & Security

Your data is stored securely on Supabase (hosted on AWS infrastructure):

  • All data is transmitted over HTTPS/TLS encryption
  • Database access is protected by Row Level Security (RLS) policies
  • Passwords are handled by Supabase Auth and never stored in plaintext
  • Payment information is processed by Stripe and never stored on our servers
  • Uploaded images are stored in Supabase Storage with appropriate access controls

While we implement commercially reasonable security measures, no method of electronic storage is 100% secure. We cannot guarantee absolute security of your data.

Third-Party Services

We use the following third-party services that may collect information:

  • Supabase — Backend, database, authentication, storage — Privacy Policy
  • Stripe — Payment processing — Privacy Policy
  • Google Sign-In — Optional authentication — Privacy Policy
  • Expo Notifications — Push notification delivery — Privacy Policy
  • Google Play Store — App listing data is fetched for display purposes

These third-party services have their own privacy policies. We encourage you to review them.

Data Sharing & Disclosure

We do not sell your personal data to third parties. Your information may be shared in the following limited cases:

  • With other users: Your display name, avatar, and reviews are visible to app owners whose apps you test. Your listed apps are visible to all platform users.
  • With Stripe: Your email and Stripe customer ID are shared to process payments.
  • Legal obligations: We may disclose information if required by law or legal process.
  • Service protection: We may share information to enforce our Terms of Service or ensure safety.

Data Retention

  • Account data is retained until you delete your account
  • Transaction history is retained for accounting and compliance purposes
  • Check-in and engagement data is retained for the duration of the testing period and historical records
  • When you delete your account, your profile, apps, engagements, reviews, and associated data are permanently deleted

Some anonymized or aggregated data may be retained for analytical purposes.

Your Rights

Depending on your location, you may have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — request correction of inaccurate or incomplete data
  • Deletion — request deletion of your account and associated data
  • Portability — request your data in a machine-readable format
  • Objection — object to certain processing of your personal data
  • Withdraw consent — withdraw previously given consent at any time

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

Children's Privacy

Our Service is not directed to children under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us at [email protected].

Push Notifications

We may send push notifications to remind you about daily check-ins. You can opt out at any time through your device settings. Your Expo push token is stored solely to deliver these notifications and is deleted when you sign out or delete your account.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy, please contact us: