Solana Mobile Saga and dApp Store Privacy Policy
Solana Mobile Saga and dApp Store
Privacy Policy
Effective as of April 13, 2023.
California Notice at Collection: If you are a California resident, see the California privacy rights section below for important information about your rights under California law.
This Privacy Policy describes how Solana Mobile, Inc. ("Solana Mobile," "we," “us,” or "our") processes personal information that we collect through our phone (“Saga”), our application store (“dApp Store”), and wherever this Privacy Policy is linked (the “Services”).
Solana Mobile may provide additional or supplemental privacy policies to individuals for specific products or services that we offer at the time we collect personal information. For example, for information about how we process personal information that we collect through our website, please visit: solanamobile.com/privacy-policy-homepage.
This Privacy Policy does not apply to third-party apps made available for download on the dApp Store. We do not control how third-party apps use your personal information. For more information on the privacy practices of third-party app providers, please see their privacy policies. See more in the Other Sites, Services, and Apps section below.
NOTICE TO EUROPEAN USERS: Please see the Notice to European Users section for additional information for individuals located in the European Economic Area, United Kingdom, or Switzerland (which we refer to as “Europe”, and “European” should be understood accordingly) below.
You can download a printable copy of this Privacy Policy here.
Index
- Personal information we collect
- How we use your personal information
- How we share your personal information
- Your choices
- Other sites, services, and apps
- Security
- International data transfers
- Children
- Changes to this Privacy Policy
- How to contact us
- California privacy rights notice
- Notice to European users
-
Contact data, such as your first and last name, email address, and phone number.
-
Demographic data, such as your time zone and language when provided to us through the dApp Store.
-
Device information, including the serial number of your Saga device, and device identifier (e.g., IMEI).
-
Payment and transactional (including blockchain) data, such as information relating to your orders through the dApp Store, your purchase history on the dApp Store, and your blockchain transaction history.
-
dApp Store interaction history data, including reviews of apps and other information relating to what content and apps you search for, browse, view, download, and update through the dApp Store.
-
Cryptocurrency-related information, including wallet information (such as public key, public wallet address, and wallet name (where applicable)) and of Saga non-fungible token (“NFT”) holdings.
-
Fingerprint scans when you unlock your Saga device or authenticate a transaction through the dApp Store.
-
Communications data based on our exchanges with you, including when you contact us through the Service, social media, or otherwise, including to troubleshoot issues with your Saga device or dApp Store experience or to dispute a transaction on the dApp Store.
-
Marketing data, such as your preferences for receiving our marketing communications and details about your engagement with them.
-
Promotion data, including information or content (such as photos) you share when you enter a competition, promotion or complete a survey. We may offer promotions for NFT giveaways.
-
Other data not specifically listed here, which we will use as described in this Privacy Policy or as otherwise disclosed at the time of collection.
-
Saga device usage data about your interaction with and use of the Saga device, including information about apps you download; information about app launches and crashes; product interaction (e.g., touch interaction data and how long you use an app); performance and other diagnostic data; and other Saga device usage data.
-
dApp Store usage data about your interaction with and use of the dApp Store, including when you open and close the dApp Store, your interactions with dApp Store notifications and messages, and information about dApp Store launches and crashes; performance and other diagnostic data; and other usage data.
-
Location data, including information about nearby Wi-Fi access points and cell towers. If you permit third parties (such as app developers) to collect your location data via the Services, those third parties can process your information according to their privacy policies, see the Other Sites, Services, and Apps section below.
-
Phone-call related information, which is collected and processed by your cell phone carrier, such as your mobile network operator, phone number, data about dropped calls and other call or data failures; data about connection to wireless carriers; and customer proprietary network information (CPNI). Your cell phone carrier may use the information in accordance with their own privacy policies.
-
Operating system information, such as Saga device operating system version. Google provides the Android operating system for the Saga device and may collect and process personal information related to the Services, as described in the Google Privacy Policy at https://policies.google.com/privacy?hl=en-US.
We may use your personal information for the following purposes or as otherwise described at the time of collection:
-
provide, operate and improve the Service and our business;
-
provide you the content you purchase, download, or want to update in the dApp Store;
-
process your transactions through or related to the Services (for example, we may use your personal information to facilitate payment for Saga devices or to process Saga device refund requests);
-
identify and authenticate your access to certain features of the Services (for example, we may use your personal information to authenticate your access to your Saga device or transactions through the dApp Store);
-
personalizing the service (for example, we may use personal information collected from the camera to dim the brightness of the screen display if you do not appear to be looking at your device);
-
enable security features of the Service, such as by sending you security codes via email or SMS;
-
communicate with you about the Service, including by sending Service-related announcements (such as messages about new content and offers on the dApp Store), updates, security alerts, and support and administrative messages;
-
communicate with you about events or contests in which you participate;
-
understand your needs and interests; and
-
provide support for the Service, such as debugging and repairing errors, and respond to your requests, questions and feedback.
-
administer promotions and contests
-
communicate with you about promotions or contests in which you participate
-
contact or market to you after collecting your personal information at an event
-
comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas, investigations or requests from government authorities;
-
protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);
-
audit our internal processes for compliance with legal and contractual requirements or our internal policies;
-
enforce the terms and conditions that govern the Service; and
-
prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.
We may share your personal information with the following parties and as otherwise described in this Privacy Policy, in other applicable notices, or at the time of collection.
Affiliates. Our corporate parent, subsidiaries, and affiliates.
Service providers. Third parties that provide services on our behalf or help us operate the Service or our business (such as processing or hosting, including personal information, information technology, customer service and support, email delivery, marketing, consumer research and analytics).
Partners. Our partners and to enable partners to collect information directly via our Service. For example, we may share your personal information about app crashes and errors, including device operating system version, device type, and crash logs with our partners for the purpose of identifying and fixing technical issues within the app.
Operating system provider. For example, we may share information about what software is currently running on your Saga device for the operating system provider to check if software updates are available.
App developers. Third-party app developers who make their app available in the dApp Store and who develop dApps. We may share your personal information (such as information to prove a dApp Store purchase) with app developers so they can provide your purchased content to you.
Business partners. Third parties with whom we co-sponsor events or promotions, and with whom we jointly offer products or services.
Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.
Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
Business transferees. We may disclose personal information in the context of actual or prospective business transactions (e.g., investments in Solana Mobile, financing of Solana Mobile, public stock offerings, or the sale, transfer or merger of all or part of our business, assets or shares), for example, we may need to share certain personal information with prospective counterparties and their advisers. We may also disclose your personal information to an acquirer, successor, or assignee of Solana Mobile as part of any merger, acquisition, sale of assets, or similar transaction, and/or in the event of an insolvency, bankruptcy, or receivership in which personal information is transferred to one or more third parties as one of our business assets.
Other users and the public. Certain of your personal information may be visible to other users of the Service and the public. For example, members of the public may have access to information published on the blockchain through the Service, such as when we issue you an NFT. As another example, other users of the dApp Store and the public can view your reviews of apps that you submit to the dApp Store. This information can be seen, collected and used by others, including being cached, copied, screen captured or stored elsewhere by others, and we are not responsible for any such use of this information.
With your consent. We may share your personal information with others at your direction or with your consent.
In this section, we describe the rights and choices available to all users. Users who are located in California, and Europe can find additional information about their rights below.
Users in Europe should read the important information provided below about transfer of personal information outside of Europe.
-
Email: privacy@solanamobile.com
-
Mail: 530 Divisadero St. PMB 722 San Francisco, CA 94117
This section describes how we collect, use, and share Personal Information of California residents in our capacity as a “business” under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CPRA”) and the rights these users may have with respect to their Personal Information. Please note that we may not be able to process your request if you do not provide us with sufficient detail to allow us to confirm your identity or understand and respond to it.
For purposes of this section, the term “Personal Information” has the meaning given in the CPRA and does not include information exempted from the scope of the CPRA. This section does not apply to our collection, use, and sharing of Personal Information of our job applicants and employees.
-
Information. You can request the following information about how we have collected and used your Personal Information during the past 12 months:
-
The categories of Personal Information that we have collected.
-
The categories of sources from which we collected Personal Information.
-
The business or commercial purpose for collecting and/or selling Personal Information.
-
The categories of third parties with which we share Personal Information.
-
The categories of Personal Information that we sold or disclosed for a business purpose.
-
The categories of third parties to whom the Personal Information was sold or disclosed for a business purpose.
-
-
Access. You can request a copy of the Personal Information that we have collected about you during the past 12 months.
-
Correction. You can ask us to correct inaccurate Personal Information that we have collected about you.
-
Deletion. You can ask us to delete the Personal Information that we have collected from you.
-
Opt-out. Although you may have a right to opt out of certain processing of your personal information for targeted advertising purposes, profiling/automated decision making, or the other sales of personal information, we have not engaged in such activities in the past 12 months.
-
Nondiscrimination. You are entitled to exercise the rights described above free from discrimination as prohibited by the CPRA.
Exercising your right to information, access, correction, and deletion. You may submit requests to exercise your right to information, access, correction, or deletion by calling us toll free at 1 (888) 212-2019 or via email to privacy@solanamobile.com.
Verification of Identity; Authorized agents. We may need to verify your identity in order to process your information, access, correction, or deletion requests and reserve the right to confirm your residency. To verify your identity, we may require government identification, a declaration under penalty of perjury, or other information, where permitted by law.
Your authorized agent may make a request on your behalf upon our verification of the agent’s identity and our receipt of a copy of a valid power of attorney given to your authorized agent pursuant to California Probate Code Sections 4000-4465. If you have not provided your agent with such a power of attorney, you must provide your agent with written and signed permission to exercise your CPRA rights on your behalf, provide the information we request to verify your identity, and provide us with confirmation that you have given the authorized agent permission to submit the request.
No selling or sharing of personal information. We have not sold or shared your personal information in the preceding 12 months.
Personal Information (“PI”) we collect | CCPA statutory category | Business/ commercial purpose for PI collection | Categories of third parties to whom we “disclose” PI for a business purpose |
|
|
| All categories of third parties |
|
|
| All categories of third parties |
|
|
| All categories of third parties |
|
|
| All categories of third parties |
|
|
| All categories of third parties |
|
|
| All categories of third parties |
|
|
| All categories of the third parties, except cell phone carriers, business partners and other users and the public |
|
|
| All categories of the third parties |
|
|
| All categories of the third parties, except service providers, partners, cell phone carriers, business partners, and other developers and the public |
|
|
| All categories of the third parties, except service providers, partners, cell phone carriers, business partners, and other users and the public |
|
|
| All categories of the third parties |
|
|
| All categories of the third parties |
|
|
| All categories of the third parties |
|
|
| All categories of the third parties |
|
|
| All categories of the third parties, except service providers, partners, cell phone carriers, and other users and the public |
We do not intentionally collect this information, but it may be revealed in identity data or other information we collect |
| N/A |
Additional information for Nevada residents. Nevada residents have the right to opt-out of the sale of certain personal information for monetary consideration. While we do not currently engage in such sales, if you are a Nevada resident and would like to make a request to opt out of any potential future sales, please email privacy@solanamobile.com.
General
-
Where this Notice to European users applies. The information provided in this “Notice to European users” section applies only to individuals in the United Kingdom and the European Economic Area (i.e., “Europe” as defined at the top of this Privacy Policy).
-
Personal information. References to “personal information” in this Privacy Policy should be understood to include a reference to “personal data” governed by European data protection legislation, including the “GDPR” (i.e., the General Data Protection Regulation 2016/679 (“EU GDPR”) and the EU GDPR as it forms part of UK law (“UK GDPR”) – i.e., information about individuals from which they are either directly identified or can be identified.
- Our GDPR Representative. We have appointed the following representative in Europe as required by the GDPR – you can also contact them directly should you wish:
Our Representative in the EU and UK. Our EU representative appointed under the EU GDPR and the UK GDPR is Data Protection Representative Limited (also known as Datarep). You can contact them:
Please post your requests addressed to ‘DataRep’ and not Solana Mobile directly; communications addressed directly to Solana Mobile will likely not be received.
|
Our legal bases for processing
-
Where we need to perform a contract, we are about to enter into or have entered into with you (“Contractual Necessity”).
-
Where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests (“Legitimate Interests”). More detail about the specific legitimate interests pursued in respect of each Purpose we use your personal information for is set out in the table below.
-
Where we need to comply with a legal or regulatory obligation (“Compliance with Law”).
-
Where we have your specific consent to carry out the processing for the Purpose in question (“Consent”).
We have set out below, in a table format, the legal bases we rely on in respect of the relevant Purposes for which we use your personal information – for more information on these Purposes and the data types involved, see ‘How we use your personal information’
Purpose | Categories of personal information involved | Legal basis |
---|---|---|
Service delivery and operations |
|
|
|
| |
|
| |
|
| |
Research and development |
|
|
|
| |
Marketing |
|
|
Events, promotions and contests |
|
|
Service improvement and analytics |
|
|
Compliance and protection |
|
|
Further uses |
|
|
Retention
We retain personal information for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for compliance and protection purposes.
To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.
When we no longer require the personal information, we have collected about you, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible. If we anonymize your personal information (so that it can no longer be associated with you), we may use this information indefinitely without further notice to you.
Other info
No sensitive personal information. If you provide any sensitive personal information (e.g., information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) to us when you use the Services, you must consent to our processing and use of such sensitive personal information in accordance with this Privacy Policy. If you do not consent to our processing and use of such sensitive personal information, you must not submit such sensitive personal information through our Services.
No Automated Decision-Making and Profiling. As part of the Service, we do not engage in automated decision-making and/or profiling, which produces legal or similarly significant effects.
Your rights
-
Withdraw Consent. When we use your personal information based on your consent, you have the right to withdraw that consent at any time.
-
Exercising These Rights. You may submit these requests by email to privacy@solanamobile.com or our postal address provided above. We may request specific information from you to help us confirm your identity and process your request. Whether or not we are required to fulfill any request you make will depend on a number of factors (e.g., why and how we are processing your personal information), if we reject any request you may make (whether in whole or in part) we will let you know our grounds for doing so at the time, subject to any legal restrictions.
-
Your Right to Lodge a Complaint with your Supervisory Authority. In addition to your rights outlined above, if you are not satisfied with our response to a request you make, or how we process your personal information, you can make a complaint to the data protection regulator in your habitual place of residence.
-
For users in the European Economic Area – the contact
information for the data protection regulator in your place of residence can be found here: https://edpb.europa.eu/about-edpb/board/members_en
-
For users in the UK – the contact information for the UK data
protection regulator is below:
The Information Commissioner’s Office
Water Lane, Wycliffe House
Wilmslow - Cheshire SK9 5AF
Tel. +44 303 123 1113
Website: https://ico.org.uk/make-a-complaint/
Data Processing outside Europe
- We may share your personal information with third parties who may be based outside of the EEA and/or UK. In such circumstances, those parties’ processing of your personal information will involve a transfer of your personal information outside of the EEA and/or UK where privacy laws may not be as protective as those in your state, province, or country.
You can obtain further information or a copy of or access safeguards under which your personal information is transferred outside of the EEA and/or UK by contacting us at privacy@solanamobile.com.