This Privacy Policy defines the rules for processing and protecting personal data of users using the Co Czytam mobile application (hereinafter referred to as the "Application") and related web services.
We respect the privacy of our users and make every effort to ensure that their data is processed in accordance with applicable laws, in particular with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as GDPR).
The controller of personal data collected through the Application is Jakub Sojka, contact e-mail: developer@insightapps.eu (hereinafter referred to as the "Controller").
Personal data is collected to ensure the proper functioning of the Application. Depending on how you use the Application, the scope and purposes of data processing are as follows:
In order to create a cloud account and allow unique user identification, the Application retrieves the user's email address, user identifier (UID), and profile name from their Google profile.
To enable book cataloging, book metadata (titles, authors, formats, reading status, start/end dates, notes, ratings) and reading goals are first saved locally on the device in a Room database. If the user is logged in, this data is transferred to and stored in the Google Cloud Firestore database.
The Application requires permission to use the device's camera solely to operate the barcode scanner (reading the ISBN from the book cover). This processing takes place entirely locally on the device using the Google ML Kit library.
The free version of the Application displays ads served by the Google AdMob network. Consequently, device advertising identifiers (e.g. Google Ad ID for Android devices) and technical data (device type, system version, language) may be processed.
For diagnostic purposes, detecting crashes, and preventing abuse (e.g., violating Firestore security rules), systems associated with the Application may log basic technical information (e.g., login times, critical error logs, IP addresses, account IDs).
Your personal data may be shared with third parties only for purposes related to providing and maintaining the Application's technical infrastructure:
In connection with using Google services, your data may in some situations be transferred to third countries, in particular to the United States (USA). Google bases such transfers on Standard Contractual Clauses (SCCs) approved by the European Commission and applies additional security mechanisms to guarantee an adequate level of privacy protection.
User data is stored for different periods depending on its nature:
Users have the right to access their data, rectify it, restrict its processing, request its transfer, withdraw consent, and lodge a complaint with the supervisory authority (President of the Personal Data Protection Office - UODO in Warsaw, Poland).
Response time: In accordance with Art. 12 GDPR, the Controller responds to all requests regarding the exercise of user rights without undue delay and at the latest within one month of receipt. In particularly complex cases, this period may be extended by two additional months, of which the user will be informed.
The Application fully complies with Google Play guidelines regarding enabling easy account deletion directly by users:
Only the Controller (app owner) has access to the Firestore cloud database. All communication is encrypted with SSL/TLS protocols, and access to the Firebase account is secured with a strong password and two-factor authentication (2FA).
The Privacy Policy in its new wording takes effect upon publication on this website. For registered users, changes take effect upon notification within the Application.
For questions regarding data processing, please contact us by email at: developer@insightapps.eu.