Privacy Policy

Introduction

The SFERRA Application is provided and supported by SafeTech LLC, a software developer of cybersecurity solutions. The company recognizes the importance of maintaining the confidentiality of the personal data of users of its services and applications.

For this reason, applications or software libraries developed by our Company collect information from iOS and Android devices only with the consent of the user.

Before installing and using the Application, please read this Privacy Policy carefully to understand the rules and practices regarding user information, as well as how it will be used and collected.

Downloading and using the Application in any part of it means your unconditional accept the terms set forth in this Privacy Policy.

Terms and definitions

Biometric Authentication – the process of using Apple Touch ID / Apple Face ID / Android Biometry API technologies for gain access to certain functionality of a Mobile Device.

Cookies are pieces of information that are used like anonymous unique identifier.

Homepage is a Third party web page to access user’s account, which is configurated to be used via SFERRA Application.

Key information is the unique keys of the Application User used to confirm transactions by the User.

Company — SafeTech LTD.

Mobile device is a smartphone, mobile phone, tablet and other devices with Internet access and the Application installed.

Password is a secret word or a set of symbols (letters, numbers, signs) created in according with the security requirements defined in the Application.

Personal data is information related to a directly or indirectly identified or determined individual (User).

QR code is an optical mark containing a list of machine-readable information.

User is any adult, a fully capable individual, acting in his own interests, who wants to use the Application.

Application is SFERRA application for iOS and Android operating systems, developed by SafeTech LLC.

Information collected

The application does not collect personal data or other confidential information of the User or cookies.

Anonymous statistical information is collected by the Application and used to make it work. It includes:

• information about the device and session data (producer, model, operating system version, memory status, etc.);
• information about installed packages (metadata — package name, identifier and version; device identifier and hash value);
• geographical coordinates of the device (with user consent);
• information about the phone (with user consent);

Information is collected only when the Application is running. In the background mode no information, especially geolocation, is collected or transmitted.

Collection and use information

Permission to use the camera of the Mobile device is required to call it and is associated with the need to scan QR codes. QR codes are used to deliver information to a Mobile Device without manual input. The app and its libraries do not save or transmit the image, video or sound material obtained by capturing QR codes.

Location data is used by the Application solely in connection with the operation for which confirmation is performed and at the request of the information system that requested confirmation. The owner of the information system has the ability to enable or disable location determination, but the Application sends coordinates only along with confirmation data and only with the consent of the User. The owner of the information system can use the coordinates to analyze and reduce the risks associated with the operation for which confirmation is requested.

The Internet channel is used by the Application and its libraries exclusively for performing the main functions: interaction with configured Homepage and confirmation of the User’s operations in various information systems of the Third party. The information about the operations themselves is not saved by the Application and its libraries.

The data about the phone (SIM card, modem, etc.) are used by the Application exclusively for analyzing the immutability of the device from which the User performs confirmation. This data is collected with user consent to analyze and reduce the risks of illegal execution of transactions in information systems.

The data about Bluetooth is used to read the name of device showed to nearby devices and is collected only with user consent.

The data about installed packages and session data are used by the Application exclusively for analyzing the protection level of the device, fraud detection and anti-fraud purposes, including unauthorized influence from other applications on the device. This data is transferred to the information system to be analyzed and can be provided to partners in impersonalized state.

Data security

The User’s personal data is not stored or processed by the Application and its libraries.

To reduce the risk of illegal execution of transactions, Users are given the opportunity to additionally protect access to the implementation of confirmation of transactions with a Password or using Biometric Authentication. The method of protection is chosen directly by the User.

The User is advised to set and use a Password or Biometric Authentication to unlock the Mobile Device directly for additional security.

Account deletion

The Application itself does not create accounts for a User. As described above, the Application does not collect personal data about a User, it works with non-personalized data like key information and anonymous statistical information.

However, this data is linked with an account in one or more information systems, that require transactions confirmations. In other words, a User creates an account in some information system, and this system links the Application with the account via non-personalized key information. As a result, the Application operates non-personalized data only.

To remove the key information in the Application and, consequently, remove linkage of the Application with account in information system, the User should

• Open the System Information of Application
• On the main screen tap on a key information record
• Choose Remove option in the menu

This action will remove the key information from a mobile device and the Application, but will leave information (anonymous statistics and linkage data) in information system.

To remove a linked account in information system (it does not relate to Application) the User should contact this system’s owner and request account deletion.

Change to the Privacy Policy

The Company reserves the right to change this Privacy Policy at any time and without prior warning the User.

The date of the last change to the Privacy Policy is indicated at the end of this paragraph. The user is responsible for periodically visiting this page of the Privacy Policy to check for any changes.

Further use of the Application by the User, after making changes to the Privacy Policy, is considered the unconditional acceptance of these changes by the User.

In this connection, please, sometimes check the Application for updates in the Privacy Policy.

In case of disagreement with changes in the conditions for the collection, processing and use of data, the User has the right to stop using the Application and remove the Application from the device.

Date of the last change of the Privacy Policy: 06/06/2024

Limitation on Privacy Policy

Privacy Policy applies only to the Application.

Privacy Policy does not apply to the Third party Homepage, including data which Homepage provides and collects. For detailed information about provided and collected data, please read the Third party privacy policy.

Contacting information

If you have any questions about Privacy Policy or working App, please, contact us by email: info@safe-tech.ru

SafeTech LTD

Address: #104, bldg.18-1, 3rd Khoroshovskaya ul, Moscow, 123298