Privacy Policy

1. Introduction

Welcome to Dopami ("we", "our", "us"). We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data when you use our mobile application and website.

By using Dopami, you agree to the practices described in this policy. If you do not agree, please do not use our services.

2. Information We Collect

We collect the following categories of information:

Account data: email address, username, and password (stored hashed) when you register.
Household data: room names, task descriptions, and equipment you configure within the app.
Usage data: task completions, XP earned, levels, trophies unlocked, and session activity.
Device data: device type, OS version, push notification tokens (Expo), and app version.
Invitation data: emails used to invite household members.

We do not collect payment card details payments are processed by a third-party provider.

3. How We Use Your Information

Provide, operate, and maintain the Dopami service.
Send push notifications about task assignments and household activity.
Calculate XP, levels, and gamification elements.
Send transactional emails (invitations, password reset).
Improve app features based on aggregated, anonymized usage patterns.
Comply with legal obligations.

We do not sell, rent, or share your personal data with advertisers.

4. Data Storage & Security

Your data is stored on secured servers in the European Union. We use industry-standard measures including HTTPS encryption, hashed passwords (bcrypt), and JWT-based authentication.

Access to production data is restricted to authorized team members only. We review our security practices regularly.

No system is 100% secure. If you believe your account has been compromised, contact us immediately at security@do-pami.com.

5. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will erase your personal data within 30 days, except where we are required to retain it by law.

Anonymized, aggregated statistics may be retained indefinitely.

6. Your Rights (GDPR)

If you are in the European Economic Area, you have the following rights:

Access: request a copy of the data we hold about you.
Rectification: correct inaccurate or incomplete data.
Erasure: request deletion of your personal data ("right to be forgotten").
Portability: receive your data in a machine-readable format.
Objection: object to certain processing activities.
Restriction: request we limit how we process your data.

To exercise any of these rights, email us at privacy@do-pami.com. We will respond within 30 days.

7. Third-Party Services

We use the following third-party services which may process your data under their own privacy policies:

Expo (push notifications): device tokens are shared to deliver in-app notifications.
Payment provider: billing data is handled entirely by our payment processor we never see your card details.
Email provider: transactional emails are sent via a third-party SMTP service.

8. Children's Privacy

Dopami is not directed at children under 13. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. Continued use of Dopami after changes constitutes your acceptance of the updated policy.

10. Contact

For any privacy-related questions, contact us at:

📧 privacy@do-pami.com