Privacy Policy - Dreamsplain

Effective Date: January 19, 2025
Company: Mike Shaker, LLC

1. Information We Collect

1.1 Personal Information

Email address: For account creation and communication
Dream content: Text and voice recordings you submit
Usage data: How you interact with the app across iOS and Android platforms

1.2 Automatically Collected Information

Device information: Device model, operating system version (iOS/Android)
App usage: Features used, time spent in app
Performance data: Crash reports, error logs
Platform data: App store information (Apple App Store/Google Play Store)

1.3 Information from Third Parties

Apple/Google: Subscription status and purchase information
RevenueCat: Cross-platform subscription management data

1.4 Affiliate Marketing Data

To provide relevant sleep product recommendations, we may collect and analyze:

Dream themes and patterns: General categories only (sleep quality, anxiety, etc.) - not specific dream content
Product interactions: Which product categories you view or click
Purchase behavior: Whether you complete purchases through affiliate links (for commission tracking)
General interests: Sleep-related preferences you express in the app
Location data: General region for shipping and product availability (not precise location)

Important: We NEVER share your specific dreams or personal interpretations with affiliate partners.

2. How We Use Your Information

2.1 Service Provision

Provide AI-powered dream interpretations
Store and organize your dreams across devices
Manage your subscription and billing (iOS and Android)
Provide customer support
Sync data across multiple devices
NEW: Show personalized sleep product recommendations

2.2 Service Improvement

Analyze usage patterns to improve the app
Develop new features based on user behavior
Fix bugs and optimize performance across platforms
A/B test new features
NEW: Improve product recommendation algorithms

2.3 Affiliate Marketing and Product Recommendations

Show relevant products: Recommend sleep aids, relaxation products, and wellness items based on general dream themes
Track commission eligibility: Monitor purchases made through our affiliate links to receive commissions
Analyze effectiveness: Understand which products are most helpful to users with similar sleep patterns
Improve recommendations: Refine our suggestion algorithms based on user interactions
Comply with partner requirements: Meet affiliate program tracking and reporting obligations

3. Information Sharing

3.1 We DO NOT Share

Your personal dreams or interpretations with any third parties
Your email address with third parties for marketing purposes
Any personal information for advertising or commercial purposes
Individual user data for analytics or research
NEW: Specific dream content with affiliate partners

3.2 We MAY Share

Aggregated data: Anonymous usage statistics that cannot identify individuals
Legal compliance: When required by law, court order, or government request
Service providers: With trusted partners who help operate our service under strict confidentiality agreements
NEW - Affiliate tracking data: Anonymous purchase data with affiliate partners for commission tracking (no personal identification)

3.3 Affiliate Marketing Data Sharing

For affiliate commission tracking, we may share with affiliate partners:

Anonymous purchase confirmations: That a purchase was made through our link (no personal details)
General product preferences: Anonymous data about which product categories are popular
Effectiveness metrics: How well certain products work for users with similar sleep challenges

We NEVER share: Your name, email, specific dreams, personal interpretations, or any identifying information with affiliate partners.

3.4 Third-Party Services

We use these services that may collect data:

Supabase (Database & Authentication)
Stores your account and dream data securely
Privacy Policy: https://supabase.com/privacy

RevenueCat (Cross-Platform Subscription Management)
Manages subscription status across iOS and Android
Privacy Policy: https://www.revenuecat.com/privacy

Microsoft Azure (AI Services)
Processes dreams for interpretation (data not stored permanently)
Privacy Policy: https://privacy.microsoft.com/

Apple (iOS App Store & Payments)
Handles subscription billing for iOS users
Privacy Policy: https://www.apple.com/privacy/

Google (Android Play Store & Payments)
Handles subscription billing for Android users
Privacy Policy: https://policies.google.com/privacy

Amazon Associates (Affiliate Marketing)
Product recommendation and commission tracking for sleep-related products
Privacy Policy: https://www.amazon.com/gp/help/customer/display.html?nodeId=468496

4. Data Security

4.1 Protection Measures

End-to-end encryption in transit and at rest
Secure authentication systems with industry-standard protocols
Regular security audits and penetration testing
Limited access to personal data on need-to-know basis
Multi-factor authentication for administrative access
NEW: Separate storage systems for affiliate tracking data

Data Security Disclaimer: While we implement industry-standard security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your personal information.

4.2 Data Retention

Account data: Retained while account is active
Dream content: Retained until you delete it or close your account
Usage data: Retained for up to 2 years for analytics
Deleted data: Permanently removed from all systems within 30 days
Backup data: Securely deleted from backups within 90 days
NEW - Affiliate data: Anonymous purchase tracking data retained for up to 3 years for commission and tax purposes

5. Your Rights and Choices

5.1 Access and Control

View your data: Access all stored information through app settings
Delete dreams: Remove individual dreams anytime
Download data: Export your dreams and data in standard formats
Delete account: Permanently remove all data from our systems
Correct data: Update or correct any inaccurate information
NEW - Opt-out of recommendations: Disable product recommendations in app settings

5.2 Communication Preferences

Email notifications: Opt-out via app settings or email links
Push notifications: Control via device settings (iOS/Android)
Marketing communications: Unsubscribe anytime (we send very few)
NEW - Product recommendations: Control frequency and types of product suggestions in app settings

6. Children's Privacy (COPPA Compliance)

Our service is not intended for children under 13
We do not knowingly collect data from children under 13
If we learn we have collected such data, we will delete it promptly
Parents can contact us to review, modify, or delete their child's data
We comply with Children's Online Privacy Protection Act (COPPA)
NEW: No affiliate marketing data is collected from users under 18

7. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

Know: What personal information we collect, use, and share
Delete: Request deletion of your personal information
Opt-out: Opt-out of data sales (we don't sell data)
Non-discrimination: Equal service regardless of privacy choices
NEW - Affiliate opt-out: Opt-out of affiliate marketing data collection

Contact: support@mikeshaker.com with "California Privacy Request" in subject line

8. European Privacy Rights (GDPR)

If you are in the EU/UK, you have the right to:

Access: Your personal data and how it's processed
Rectification: Correct inaccurate data
Erasure: "Right to be forgotten" - delete your data
Restrict processing: Limit how we use your data
Data portability: Receive your data in machine-readable format
Object: Object to processing for legitimate interests
Withdraw consent: Stop processing based on consent
NEW - Object to profiling: Opt-out of automated product recommendation profiling

9. Platform-Specific Privacy

9.1 iOS Privacy

App follows Apple's App Tracking Transparency requirements
Uses Apple's privacy nutrition labels
Integrates with iOS privacy settings
Supports Apple Sign-In privacy features
NEW: Affiliate tracking complies with iOS 14.5+ privacy requirements

9.2 Android Privacy

Complies with Google Play privacy requirements
Uses Android permission system appropriately
Supports Android privacy dashboard
Follows Google's data safety requirements
NEW: Affiliate data collection disclosed in Play Store data safety section

10. Cookies and Tracking

Mobile app: We do not use cookies in our mobile applications
Analytics: We use privacy-focused analytics to understand app usage
Cross-platform tracking: Limited to subscription management only
Opt-out: You can disable analytics in app settings
Advertising: We do not use advertising trackers or sell data to advertisers
NEW - Affiliate tracking: Anonymous tracking for commission purposes only (can be disabled in settings)

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices. Material changes will be communicated via email or prominent app notification. We will post the updated policy with a new effective date. Continued use constitutes acceptance of changes.

12. Data Breach Notification

We will notify users of significant data breaches within 72 hours when possible
Notification will include details about the breach and our response
We will notify relevant authorities as required by law
We maintain incident response procedures and security protocols

13. Contact Us

Mike Shaker, LLC
Primary Email: support@dreamsplain.app
Privacy Email: privacy@dreamsplain.app
Website: https://dreamsplain.app/privacy-policy

Company Address:
Mike Shaker, LLC
1294 Woodstone wy
Batavia, Ohio 45103

Response Time: We aim to respond to privacy requests within 30 days as required by applicable privacy laws.

14. Compliance and Certifications

This Privacy Policy complies with:

California Consumer Privacy Act (CCPA)
General Data Protection Regulation (GDPR)
Children's Online Privacy Protection Act (COPPA)
Apple App Store Privacy Requirements
Google Play Store Privacy Requirements
SOC 2 Type II compliance (infrastructure)
NEW: Federal Trade Commission (FTC) affiliate marketing disclosure requirements