Privacy and Policy
TrueFans Privacy Policy Summary
1. Scope
This policy applies to all users of the TrueFans website and mobile applications (iOS and Android).
2. Data Collected
- Personal Data
- Usage Data
- Technical Data
- Analytics Data
Email addresses, used solely for login, user-initiated communication, and requested notifications.
Information on podcasts, episodes, and listening progress for cross-device syncing.
Cookies and app tokens for session management.
Temporary technical logs for customer support.
Anonymous, aggregate usage statistics (e.g., feature usage, podcast popularity).
3. Use of Data
To operate and enhance the website, apps, and customer support services. To analyze anonymous user behavior for improving content recommendations. No promotional emails are sent. No sharing of personal data with external parties. Anonymous, aggregated statistics may be shared with third parties.4. Data Sharing & Transfers
Business Transactions: User data may be transferred if TrueFans is acquired, merged, or partnered with another entity. International Transfers: Data may be processed and stored outside the user’s country of residence, including outside the EU.5. Security Measures
Appropriate technical and organizational measures are implemented to safeguard data. Login passwords are not stored or accessible by the company.6. User Rights
Users may request the deletion of their data. TrueFans reserves the right to delete user data for technical, legal, or operational reasons.7. Third-Party Content
TrueFans provides access to third-party podcast feeds and content. These third parties have independent privacy policies; TrueFans assumes no responsibility for their practices.8. Children’s Data
TrueFans does not knowingly collect data from users under the age of 13. The service is not designed to attract children under 13.9. Compliance
California Online Privacy Protection Act (CalOPPA): Compliant; personal data is not disclosed without consent. Children’s Online Privacy Protection Act (COPPA): Compliant. GDPR (General Data Protection Regulation): Users in the EU consent to their data being transferred outside the EU by using the service.10. Contact
For any privacy-related inquiries, please contact: Email: [email protected]GDPR vs. CCPA Compliance Analysis
| Requirement | GDPR (EU) | CCPA (California) | TrueFans Status |
|---|---|---|---|
| Consent to Collect Data | Required, especially for sensitive data | Required for the sale of personal data | Implied consent via use |
| Right to Access | Users have the right to request access | Users can request to know what is collected | Not clearly stated |
| Right to Delete | Explicitly granted | Explicitly granted | Partially supported (TrueFans may delete info) |
| Right to Rectify | Yes | No explicit right under CCPA | Not mentioned |
| Data Portability | Yes | Yes | Not addressed |
| Do Not Sell | N/A if no sale of data | Must provide opt-out if selling data | No sale of data; compliant |
| Privacy Notice | Must be clear and accessible | Must be clear and accessible | Provided via privacy policy |
| Children’s Data Protection | Parental consent required under 16 | Consent required under 13 | Compliant with COPPA |
| International Transfers | Requires safeguards (e.g., SCCs) | Not applicable | No safeguards mentioned; may not be GDPR-compliant |
Recommendations for GDPR/CCPA Alignment
To enhance compliance with GDPR and CCPA, TrueFans should consider:Explicit User Rights Disclosure: Clearly explain how users can access, delete, or rectify their data.
Data Portability: Provide a mechanism for users to export their data.
International Transfer Safeguards (GDPR): Include information on how EU user data is protected during transfers.
Consent Mechanisms: Include explicit consent for data collection, especially for EU users.
| Requirement | GDPR (EU) | CCPA (California) | TrueFans Status |
|---|---|---|---|
| Consent to Collect Data | Required, especially for sensitive data | Required for the sale of personal data | Implied consent via use |
| Right to Access | Users have the right to request access | Users can request to know what is collected | Not clearly stated |
| Right to Delete | Explicitly granted | Explicitly granted | Partially supported (TrueFans may delete info) |
| Right to Rectify | Yes | No explicit right under CCPA | Not mentioned |
| Data Portability | Yes | Yes | Not addressed |
| Do Not Sell | N/A if no sale of data | Must provide opt-out if selling data | No sale of data; compliant |
| Privacy Notice | Must be clear and accessible | Must be clear and accessible | Provided via privacy policy |
| Children’s Data Protection | Parental consent required under 16 | Consent required under 13 | Compliant with COPPA |
| International Transfers | Requires safeguards (e.g., SCCs) | Not applicable | No safeguards mentioned; may not be GDPR-compliant |