🛡️ FretGenius Privacy Policy

1. Introduction

Welcome to FretGenius! This Privacy Policy explains how FretGenius ("we," "us," or "our") handles information when you use our website (`fretgenius.app`), web application (`web.fretgenius.app`), and any related services (collectively, the "Service").

Your privacy is important to us. We aim to be transparent about the limited data we collect and how it's used solely to improve your experience, while minimizing any potential privacy impact.

2. Information We Collect

We collect minimal information necessary to operate and improve the Service:

• Crash and Error Reports (via Sentry): To help us diagnose and fix bugs, we use a third-party service, Sentry (sentry.io), to automatically collect reports when the application encounters an error or crash. This data typically includes:
  • Device type (e.g., iPhone model, Android device model)
  • Operating system and version (e.g., iOS 17, Android 14)
  • Application version
  • Technical details about the error (e.g., stack traces).
  • Potentially, the device's IP address (processed by Sentry according to their policy).

  For details, see Sentry's Privacy Policy.

• Anonymized Usage Analytics (via PostHog EU Cloud): We use the third-party analytics service PostHog (posthog.com), utilizing their EU-based cloud infrastructure, to collect highly anonymized data about how users interact with our Service. This helps us understand usage patterns and improve FretGenius. We have configured our PostHog instance to enhance user privacy:
  • It operates without using cookies or browser local/session storage for tracking.
  • All captured text content and element attributes from the page are masked before being sent to PostHog's servers.
  • We utilize PostHog's features to anonymize IP addresses before they are stored.

  The anonymized data collected includes:

  • Pages visited
  • Patterns of interaction with masked elements (e.g., clicks on buttons, navigation flows)
  • Time spent on pages/features
  • Device type (e.g., desktop, mobile)
  • Browser type and version
  • Operating System
  • Anonymized IP address (used by PostHog to derive approximate location like country, but the full IP is not stored)

  Due to these privacy-enhancing measures (no cookies/persistence, masking, IP anonymization), this data is anonymous at the session level and is not used to personally identify you. For details on PostHog's data handling, see PostHog's Privacy Policy.

We currently do not require user registration or login to use the core features of the Service, nor do we collect personal details like your name or email address for analytics or crash reporting.

3. How We Use Information

We use the collected information for the following purposes:

• Sentry Data: To identify, analyze, and fix bugs, crashes, and performance issues to improve the stability and reliability of the Service.
• PostHog Data:
  • To understand, in an aggregated and anonymous way, how users interact with different features of FretGenius.
  • To identify popular features and areas for improvement based on anonymous usage patterns.
  • To make informed decisions about future development and prioritize new features.
  • To improve the overall user experience and usability of the Service.

4. Cookies, Local Storage, and Similar Technologies

We do not use cookies, local storage, or session storage for tracking user activity across sessions or websites via our analytics setup. Our PostHog analytics configuration specifically disables these persistence mechanisms.

The Service may use local storage only for strictly necessary functional purposes unrelated to tracking, such as storing user interface preferences (if applicable), but not for analytics or identification.

5. Legal Basis for Processing

The legal basis for processing crash and error reports via Sentry is our legitimate interest in maintaining and improving the stability and performance of our Service.

The legal basis for collecting and processing the anonymized usage analytics data via PostHog's EU Cloud service is also our legitimate interest. Our legitimate interest lies in understanding how our Service is used in an aggregated, anonymous manner to improve its functionality, user experience, and feature set. We believe this interest is balanced against user privacy rights due to the significant privacy-enhancing measures we have configured within the PostHog service: cookieless operation, comprehensive data masking, IP address anonymization, and the use of their EU-based infrastructure.

6. Data Sharing, Disclosure, and Processors

We do not sell or rent your information. We share limited data only with the following third-party service providers (data processors) who help us operate the Service:

• Sentry: For crash and error reporting.
• PostHog, Inc.: For usage analytics. We utilize PostHog's EU Cloud platform (servers located within the European Union) to process and store the anonymized analytics data described in Section 2. PostHog acts as a data processor on our behalf according to their Data Processing Addendum and Privacy Policy.

We may also disclose information if required by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect our rights or property, prevent wrongdoing, protect user safety, or defend against legal liability.

7. Data Security

We rely on the security measures implemented by our third-party providers, Sentry and PostHog, to protect the data they process on our behalf. Both providers employ industry-standard security practices appropriate for the data they handle. However, no system is 100% secure, and we cannot guarantee absolute security.

8. Data Retention

• Sentry Data: Retained according to Sentry's standard practices or our configuration, typically for a limited period (e.g., 90 days) sufficient for bug analysis.
• PostHog Data: Anonymized analytics data processed on PostHog's EU Cloud is retained according to the retention period configured in our PostHog account settings, typically for a limited duration suitable for analysis purposes, after which it is deleted according to PostHog's processes.

9. Your Data Protection Rights

Depending on your location and applicable data protection laws (such as the GDPR in the EU/EEA or the CCPA in California), you may have certain rights regarding your personal data. These can include the right to access, rectify, erase, restrict processing of, or object to the processing of your data, as well as the right to data portability.

Given the nature of the data we collect (anonymized analytics and technical crash reports), our ability to directly identify and act upon requests related to specific individuals is very limited. The data processed by our third-party providers (Sentry and PostHog) is subject to their respective privacy policies and data handling practices.

If you have questions about your data or wish to inquire about exercising potential rights, please contact us at [email protected]. We will address your inquiry to the best of our ability within the constraints of the data we process.

You also have the right to lodge a complaint with your local data protection supervisory authority if you believe our processing of information infringes applicable data protection laws.

10. Children's Privacy

FretGenius is intended for users of various ages. We do not knowingly collect personally identifiable information from anyone, including children under the age defined by applicable laws (e.g., 13 in the US, 16 in parts of the EU). Our data collection (crash reports and anonymized analytics) is designed not to be personally identifying and is used solely for improving the Service. If you are a parent or guardian and believe your child's data may have been inadvertently collected in a way that concerns you, please contact us at [email protected].

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Effective Date" at the top. We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at: [email protected]