PRIVACY POLICY

At Jinyasa's BPM Master, we value your privacy and are committed to protecting your personal data. This Privacy Policy outlines how we handle information within the BPM Master app to provide you with a secure, synchronized, and high-performance learning experience.

2. 1 Account Information

We collect your Email Address and Name provided during sign-up or via Google Sign-In (managed by Firebase Authentication). This serves as your unique identity within our ecosystem.

2.2 Device Information

To enforce our security and licensing policies, we collect a Hashed App-Instance Identifier derived from your device's ANDROID_ID using SHA-256 encryption, your Device Model, and Access Timestamps (first and last login). We do not store original, unhashed device identifiers.

2.3 Educational Progress

• Cloud Data: We store records of which Question Packs (Week Groups) you have downloaded and a header-level summary of completed quizzes (Date, Score, and the Device ID used).

• Local Data: Detailed quiz interactions (specific right/wrong answers and explanations) are stored only locally on your device. This data is used for your personal review and to power the in-app search functionality.

2.4 Technical Logs

We maintain minimal access logs (timestamps of activity) for security auditing. 

Note: We do not store your IP address in our application databases or link it to your personal identity.

3. 1 Authenticatiion

Your email is used to verify your identity and protect your progress.

3.2 Device Policy Enforcement

We use hashed device identifier to enforce our "Limited Device Policy" and prevent unauthorized account sharing.

(Limited Device Policy: Maximum of two active devices at any time, with a limit of two new device registrations per 60-day period).

3.3 Seamless Synhronization

Your cloud-stored progress ensures that if you switch to a second authorized device, your downloaded content and score history are restored automatically.

3.4 Service Improvement

We may use anonymized, aggregated performance data (e.g., "Which questions are most frequently missed?") to improve our educational content and explanations.

4.1 Storage and Processing

Your data is processed via Google Cloud Run and stored in Google Cloud SQL. We utilize industry-standard security protocols, including SSL/TLS encryption for all data in transit and AES-256 encryption for data at rest. 

4.2 Storage and Processing

Access to user data is strictly limited to authorized personnel via rigorous access control identity management.

5.1 Account Deletion

You may trigger a full and permanent deletion of your account and all associated cloud data via the "Delete Account" feature in the App Settings.

5.2 Irreversibility

Once deleted, your account data cannot be recovered, even if you sign up again with the same credentials.

5.3 Anonymization

Upon account deletion, we may retain anonymized performance metrics that contain no personal identifiers to maintain the integrity of our global educational analytics.

6.1 Data Residency

Your data is stored on Google Cloud Platform servers in Mumbai (India), located in the Asia - South region. By using the App, you consent to this transfer.

6.2 No Sale of Data

Jinyasa does not "sell" or "share" your personal information with third parties for monetary or other valuable consideration.

6.3 Your Rights

Regardless of your location, we provide all users with the right to access, correct, or delete their data. Users are encouraged to write to our support channel (support@jinyasa.com), when in doubt. 

7.1 Age Restriction

BPM Master is intended for professionals and students aged 16 (or the age of majority in your jurisdiction) and older. We do not knowingly collect data from children under the age of 13