Privacy Policy — TEMPLAR RISE

The short version — what matters most:

We do not sell your personal information.
We do not share your data with advertisers.
We only collect anonymized, aggregated usage data for product improvement.
You control your data and can request deletion at any time.
Payment is handled entirely by Apple App Store or Google Play — we never see your card.

1. Who We Are

TEMPLAR RISE is operated by TEMPLAR HABITS S.A.P.I. de C.V. ("we," "us," or "our"), a company in formation under the laws of Mexico. We are the data controller for personal information collected through the App. This Policy complies with Mexico's LFPDPPP and aligns with the EU GDPR and California CCPA where applicable.

Privacy contact: privacy@templarrise.com | templarrise.com/privacy

2. Information We Collect

Information you provide to us

Account data — name or username and email address, used to create and manage your account.
Habit preferences and goals — the categories you choose to work on, stored to personalize your experience.
Support communications — content of messages you send to our support team.
AI Coach conversations — processed to generate responses. Not reviewed by human staff in the ordinary course of business and not sold or shared with third parties.

Information collected automatically

We collect the following in anonymized, aggregated form that cannot reasonably be linked back to you as an individual:

Usage data — which habits and features you use, completion rates, and session frequency. Used exclusively for product improvement.
Device and technical data — OS type and version, generic device category (no unique device ID), language, and time zone.
Crash and performance data — error logs to detect and fix technical issues.
Anonymized session data — session duration and in-app navigation flows, not linked to your identity.

Information we do NOT collect

Real-time or historical location / GPS data
Biometric data (fingerprint, Face ID, voice recognition)
Clinical health records or medical information
Device contacts, photo library, or local files
Financial or banking data (payments handled by App Store / Google Play only)
A list of other apps installed on your device
Sensitive data revealing racial/ethnic origin, political opinions, or religious beliefs

3. How We Use Your Information

To provide and personalize the Service — creating your account and tailoring habit suggestions to your goals.
Service communications — account confirmations, receipts, technical notices, and policy updates. No marketing emails without your explicit consent.
Product improvement — anonymized, aggregated analysis of usage patterns.
Security and fraud prevention — detecting unauthorized access and violations of our Terms.
Legal compliance — retaining records where required by law.

We do not use your personal information for behavioral advertising and do not sell or share it with advertisers or data brokers.

4. How We Share Your Information

We do not sell, rent, or trade your personal information. We share it only in these limited circumstances:

Service providers (sub-processors)

Cloud infrastructure (e.g., AWS or Google Cloud) — secure data storage, bound by strict data processing agreements.
AI infrastructure — processing AI Coach interactions under confidentiality agreements prohibiting other uses.
Crash reporting tools — receive only anonymized technical logs.
Aggregate analytics tools — receive only anonymized usage metrics. No advertising SDKs are used.

Other disclosures

Legal compliance — when required by a valid court order or applicable law.
Protection of rights — to protect the safety, rights, or property of TEMPLAR RISE or its users.
Business transfers — if TEMPLAR RISE is acquired or merged, under the same privacy commitments.

5. Free Trial & Subscription — Privacy Note

Your 10-day free trial and all subscription billing is processed entirely by Apple App Store or Google Play Store under their respective privacy policies, independent of TEMPLAR RISE. We do not receive, store, or process your payment card details — only a transaction confirmation to activate your subscription.

6. Data Retention

Account data — retained while your account is active. Purged within 90 days of account deletion, unless retention is required by law.
AI Coach conversations — retained during your active subscription and deleted within 30 days of account closure.
Crash and technical logs — retained for a maximum of 12 months.
Anonymized aggregate statistics — may be retained indefinitely as they are not attributable to any identifiable individual.

7. Your Privacy Rights and Choices

To exercise any of the rights below, contact privacy@templarrise.com.

All users

Access — request a copy of the personal information we hold about you.
Correction — request correction of inaccurate or incomplete data.
Deletion — request deletion of your personal information.
Withdrawal of consent — withdraw consent at any time without affecting prior lawful processing.
Account deletion — delete your account at any time from Settings.

Users in Mexico (LFPDPPP — ARCO Rights)

You have rights of Access, Rectification, Cancellation, and Opposition. Requests processed within 20 business days. Unresolved complaints may be escalated to INAI (inai.org.mx).

Users in the EU / UK (GDPR / UK GDPR)

You also have the right to data portability and to lodge a complaint with your national supervisory authority (e.g., AEPD in Spain, ICO in the UK). Our legal bases: performance of contract, legitimate interest (aggregate analytics), and consent (AI Coach and marketing).

California Users (CCPA / CPRA)

You have the right to know what information is collected, to request deletion, and to opt out of sale or sharing. TEMPLAR RISE does not sell personal information. Submit verified requests to privacy@templarrise.com.

8. Data Security

We implement encryption in transit (TLS 1.3) and at rest (AES-256), role-based access controls, and regular security assessments. No system is completely secure. In the event of a breach, we will notify you as required by applicable law. Report vulnerabilities to security@templarrise.com.

9. International Data Transfers

TEMPLAR RISE is operated from Mexico and may process your data on servers in other countries, including the United States, through cloud providers. For EU/UK transfers, we rely on Standard Contractual Clauses (SCCs) to ensure equivalent protection.

10. Children's Privacy

TEMPLAR RISE is not directed at children under 13. We do not knowingly collect information from children under 13. If you believe a child has provided information without parental consent, contact privacy@templarrise.com and we will delete it promptly.

11. Analytics and Third-Party Tools

Any analytics tools we use are configured to receive only anonymized, aggregated data. We do not use advertising SDKs such as Meta Pixel, Google Ads tracking, or similar behavioral advertising technologies within the App.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via in-app notice or email at least 15 days before taking effect. The current version is always available at templarrise.com/privacy and in the App's Settings.

13. Contact Us

Email: privacy@templarrise.com
Website: templarrise.com/privacy

If you are not satisfied with our response, you may file a complaint with: INAI (Mexico), AEPD (Spain/EU), ICO (UK), or FTC (United States).