Privacy Policy
Last Updated:
This Privacy Policy describes how CommonLight ("we," "our," or "us") collects, uses, and shares your personal information when you use our mobile application (the "App").
By using our App, you agree to the collection and use of information in accordance with this policy.
1. Information We Collect
1.1 Information You Provide
- Account Information: When you create an account, we collect your email address, phone number (for authentication), and profile information including your name and profile picture.
- User Content: We collect the content you create, including questions, answers, comments, and audio recordings.
- Payment Information: For in-app purchases and subscriptions, payment processing is handled by Google Play Store and Apple App Store. We do not store your payment card details.
1.2 Information Collected Automatically
- Device Information: We collect information about your device, including device type, operating system, unique device identifiers, and mobile network information.
- Usage Data: We collect information about how you interact with the App, including features used, time spent, and content viewed.
- Location Data: We may collect approximate location data if you grant permission, though this is not required for core functionality.
- Camera and Photo Library: We access your camera and photo library only when you choose to upload a profile picture. This permission is optional.
1.3 Third-Party Services
We use the following third-party services that may collect information:
- Google Services: We use Google OAuth for authentication and Google AdMob for displaying advertisements.
- Firebase: We use Google Firebase for push notifications and analytics.
- Amazon Web Services (AWS): We use AWS services (S3, Lambda, SQS, SNS) to store and process your data, including user content, profile pictures, and audio files.
2. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our services
- Process and respond to your questions and requests
- Generate AI-powered responses using OpenAI's ChatGPT API
- Generate voice audio using Cartesia and ElevenLabs services
- Send you push notifications about new answers, comments, and other activity
- Process in-app purchases and manage subscriptions
- Display personalized advertisements through Google AdMob
- Detect, prevent, and address technical issues and security threats
- Comply with legal obligations
3. AI and Voice Services
3.1 OpenAI (ChatGPT)
We use OpenAI's ChatGPT API to generate AI-powered responses to your questions. When you submit a question, it is sent to OpenAI's servers for processing. OpenAI's use of your data is governed by their privacy policy, available at https://openai.com/privacy.
3.2 Voice Generation Services
We use Cartesia and ElevenLabs to generate voice audio from text. When you request audio generation, the text content is sent to these services. Their privacy policies are available at:
4. Data Storage and Security
4.1 Data Storage
Your data is stored on secure servers provided by Amazon Web Services (AWS). This includes:
- User account information stored in MongoDB databases
- Profile pictures and audio files stored in AWS S3
- Chat interactions and job data processed through AWS Lambda and SQS
4.2 Security Measures
We implement industry-standard security measures to protect your data, including:
- Encryption of data in transit using HTTPS/TLS
- Secure authentication using JWT tokens
- Access controls and authentication for AWS services
- Regular security audits and updates
5. Advertising
We use Google AdMob to display advertisements in our App. AdMob may collect and use information about your device and usage to show you relevant ads. You can learn more about how Google uses your data at https://policies.google.com/privacy.
You can opt out of personalized advertising by adjusting your device's advertising settings or by using the App's settings (if available).
6. Push Notifications
We use Google Firebase Cloud Messaging (FCM) and Apple Push Notification Service (APNs) to send you push notifications about:
- New answers to your questions
- Comments on your posts
- Follows and other social interactions
- Subscription updates
You can disable push notifications at any time through your device settings.
7. In-App Purchases
We offer in-app purchases and subscriptions through:
- Google Play Store (for Android users)
- Apple App Store (for iOS users)
Payment processing is handled entirely by these platforms. We do not collect or store your payment card information. Subscription information is managed through these platforms and shared with us only to provide the subscribed features.
8. Data Sharing and Disclosure
We do not sell your personal information. We may share your information only in the following circumstances:
- Service Providers: We share data with third-party service providers (AWS, OpenAI, Cartesia, ElevenLabs, Google) who help us operate the App.
- Legal Requirements: We may disclose information if required by law or to protect our rights and safety.
- Business Transfers: In the event of a merger or acquisition, your data may be transferred to the new entity.
9. Your Rights and Choices
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your account information
- Deletion: Request deletion of your account and data
- Opt-Out: Disable push notifications and personalized ads
- Data Portability: Request your data in a portable format
To exercise these rights, please contact us using the information provided below.
10. Children's Privacy
Our App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
11. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our App, you consent to the transfer of your information to these countries.
12. Data Retention
We retain your personal information for as long as your account is active or as needed to provide services. If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal purposes.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes.
14. Contact Us
15. Third-Party Privacy Policies
For more information about how third-party services handle your data, please review their privacy policies:
© 2024 CommonLight. All rights reserved.