1. Introduction Zone Attendance System respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application Zone (org.zonix_app). 2. Information We Collect 2.1 Location Data - Type: Real-time and background device location (GPS and network-based). - Purpose: To verify your attendance at designated geographic locations. - Collection Method: Automatically collected when the app is in use or running in the background. 2.2 Camera & Facial Recognition Data - Type: Images captured via your device camera for face detection and recognition. - Purpose: To confirm user identity via our AI-powered face-recognition system during check-in/check-out. - Storage: We do not store raw images or video. Only encrypted facial feature embeddings are held temporarily and then securely deleted. 2.3 Profile Photos & Uploaded Files - Type: - Profile photograph you upload. - Any documents or media you attach under “Missions” (e.g. PDF, DOCX, images). - Purpose: - Profile photos: for your account’s display. - Mission files: to fulfill task requirements and record submissions. - Storage: Securely stored on our servers; accessible only by you and authorized admin staff. 3. How We Use Your Information - Attendance Verification: Match your facial embedding and location data to authorize secure check-in/check-out. - Profile Management: Display and manage your profile picture within the app. - Mission Submission: Store and display files you upload in the Missions section. - App Improvement: Aggregate, anonymized analytics (crash reports, performance metrics) to enhance app stability and features. 4. Data Sharing & Disclosure We do not share any information—including location data, camera images, profile photos, or mission files—with any third party or external company. These data are used solely for the app’s internal operation and attendance verification purposes, and under no circumstances are they sold, rented, or transferred to outside parties. We are fully committed to protecting your privacy and will never transfer or share your data with any third party. 5. Data Retention - Location & Facial Data: Retained only as long as necessary to verify attendance, then deleted within 30 days. - Profile Photos & Mission Files: Retained until you delete them or upon account termination, plus up to one year of archival. - Analytical Data: Stored in anonymized, aggregated form indefinitely to improve service quality. 6. Security Measures - In transit: All data is encrypted via TLS. - At rest: Stored with AES-256 encryption. - Access controls: Role-based permissions and audit logs restrict data access to authorized personnel only. 7. Your Rights Under applicable data-protection laws, you have the right to: - Access your personal data. - Correct inaccurate or incomplete data. - Delete your data (right to be forgotten). - Restrict or object to certain processing activities. - Port your data to another service. To exercise any of these rights, please contact us at: Email: [email protected] 8. Changes to This Policy We may update this Privacy Policy periodically. We will notify you of significant changes via the app or email and update the “Last updated” date above. 9. Contact Information If you have any questions or concerns about this Privacy Policy, please contact us: Email: [email protected]