Privacy Policy

About This Document

When you use our website, or mobile apps published by us, we (App Factory Store Pty Ltd) obtain certain information from you. This document explains what that information is, how we use it, and why we collect it.

This document is in plain English so that anyone can understand it, but if you’d like clarification on any matter herein please don’t hesitate to contact us.

This document may be updated occasionally – please check back regularly.

What Data Is Being Collected?

1. Personal Information You Give Us Directly

We aim to collect the minimum information that we need from you in order to supply the service. For registered users this can be just your email address, but can also include your name, and mobile phone number. We may ask you to choose a username and password (which you can and should just make up on the spot – never reuse a password!)

2. Non-Personal Information You Give Us Indirectly

When using the app, or our website, we may collect details about the technologies you are using. For example, we might record your type of device (eg: “Android” or “Apple”), the version of the app in use, the type and version of your web browser, operating system, etc. Also, in order for any kind of connection to be made over the Internet, we obtain your IP address. Some of our apps will also ask your device to generate a random “token” which is not personal, but is unique to your device.

Why Do We Collect This Data?

There are several reasons, and they very according to the type of data. Here is a full breakdown:

Your Name

  • Usually to communicate politely with you – eg: “Dear Fred, …”;

Your Email and Mobile Phone

  • To allow us to contact you if we need to in the course of delivering the service;
  • In some cases, to let us verify that the details you give us when you sign up are correct;

Your Username and Password

  • To let us verify and authorise your login so you can use the system;
  • To prevent anyone unauthorised from using the system in your name;

Your Device/Browser Information

  • To help us identify what software will run on your device, and what features are supported;

Your IP Address

  • To allow data to be exchanged with your device over the Internet;
  • To record in our logs in order to keep an audit trail of all activity;
  • To prevent misuse or abuse of the system;

Your App/Device Token

  • So we can advise you when someone has sent you a message (push notifications);

Your Website Login Details

  • Only required when we are providing services, such as SEO, in which we need access to your website;

How Is Your Data Protected?

Your data is pretty darn secure with us, as compared to most online services. Almost everything is stored and sent in encrypted form:

Unless due to some technical error, all communication between your browser/device and our servers is fully encrypted, using industry-standard TLS (SSL) – the same level of security your web browser uses behind the scenes while you do your Internet banking. This means details like your name, email, mobile phone, role, and username are all encrypted in transit.

FYI: the TLS security of our website is certified by Qualys SSL Labs as “Grade A”. For perspective, the Australian Government website is also Grade A, as is Google. The ABC and Facebook.com are Grade B (tested 13 Feb 2019).

Certain data, such as passwords, are never stored anywhere in our system. Instead a secure value derived from the password is stored. For those who want to know the technicalities, this is known as a “heavily salted hash”. This derived value lets us validate your credentials when you log in, but cannot be reversed to obtain the original password.

In the case of website login details, required for certain services, these details are collected in end-to-end encrypted form, and are only decrypted when a team member needs to use them. These details are never transmitted or stored in accessible form in our website or any part of our infrastructure

Who Gets To See Your Data?

There are several entities who can get their hands on your data:

Us (App Factory Store)

In order for us and our systems to interact with you, we need to obtain certain details:

  • Your email address. Sometimes your name and mobile phone too.
  • Your website login details. In order to provide some services, such as SEO, we need administrator access to your website. We go to great lengths to safeguard these details, using end-to-end encryption to ensure that they don’t ever get stored in our infrastructure (not even passing through) but rather go directly to the individuals in our technical team who are carrying out the service.

Our Service Providers

  • Our infrastructure service providers are AWS (Amazon Web Services) and Digital Ocean, and the information we store is stored on their infrastructure.
  • Various payment providers may be used, and the amount of information you provide to them is up to you. In most cases we don’t have access to the details you provide to them.
  • We may use other service providers from time to time, but they will only be listed here if your details are transmitted to them.

Do We Sell Your Data?

No.

Do We Have Plans To Sell Your Data?

No.

Do We Send You Marketing Messages?

No. Unless you ask for them.

Do Our Partners Send You Marketing Messages?

No.

Do We Send You Relevant Information?

Yes, occasionally. This would only be information you have consented to receive, and it typically relates to the services we provide you, or is general information that we have prepared for you (such as an article or quote). You are also invited to opt in to receive our newsletters, and can decline to receive them at any time.

 

 

For any enquiries in regards to the privacy policy, please contact us.