Privacy Policy

Effective Date: 14/02/2025

Company Name: Spotly

Contact Email: spot-lee@spot-lee.net

Address: Iraq, Baghdad - The Station, Karada

Support Website: spot-lee.net/contact-us

1. Information We Collect

• Email and phone number (for OTP verification and fraud prevention).
• Governorate and city (to match users with relevant holes).
• Birthdate (optional, used for targeted recommendations).

2. Data Usage

We use the collected data for:

• Identity verification and security.
• Personalized location-based recommendations.
• Improving user experience and fraud prevention.

3. Data Sharing

We do not sell or share user data with third parties except for essential services:

• Twilio: Phone number is sent to Twilio for SMS verification.
• Firebase: Used only for push notifications.

4. Data Storage & Security

We store data securely on Amazon Cloud with encryption:

• Data is encrypted in transit using SSL/TLS.
• Sensitive data is encrypted in the database.
• APIs are secured using OAuth 2.0, API keys, roles, rate limits, and OTP fraud control.

5. User Rights

• Data Deletion: Users can delete their account, which removes all stored data.
• Data Modification: Users can update their name, location, and birthdate.

6. Cookies & Tracking

Spotly does not use cookies or tracking technologies.

7. Legal Compliance

We adhere to best practices for user data security and privacy but do not claim full compliance with GDPR/CCPA unless explicitly required by jurisdiction.

8. Policy Updates

Users will be notified of any changes via email.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at spot-lee@spot-lee.net.