Sign in

Privacy Policy

Last updated: 2025-05-19

Introduction

Epismo ("the Company", "we", "our" or "us") prioritize your privacy in providing our mobile/web applications and related services (collectively referred to as ā€œthe Servicesā€). We handle personal data in compliance with applicable laws and guidelines.

Scope of Application

This policy applies to all data processing conducted by the Company in connection with the Services. It does not apply to services operated by third parties, including external links.

Data We Collect

The types of data we collect and typical examples are as follows. We do not collect or process sensitive data (e.g., race, beliefs, health conditions) unless you voluntarily provide it.

  • Data you provide: Posted text, images/videos/files, survey responses, feedback, customer support inquiries, etc.
  • Usage data: Feature usage history, in-app events such as clicks and scrolls, crash logs, performance metrics, etc.
  • Technical data: Device model, OS version, browser type, language settings, IP address, cookie ID, advertising identifier, timestamps, etc.

Purpose of Use

We use personal data only for the purposes outlined below. We do not use your data for third-party advertising or for training large language models (LLMs).

  • Service provision and maintenance: Implementing core features such as user registration, authentication, content synchronization, and backups.
  • Service improvement and troubleshooting: Detecting issues and optimizing performance through log and statistical analysis.
  • In-service personalization: Feature recommendations based on viewing history and other optimizations that do not identify individuals.
  • Legal compliance and fraud prevention: Investigating violations of terms, responding to security incidents, and handling legal requests.

Payment Data

Paid features are processed by Stripe, Inc., which is PCI-DSS compliant. We do not store full credit card data. Instead, we receive only the transaction token and payment result provided by Stripe.

Data Sharing

We do not sell or rent personal data. Sharing is limited to the following cases:

  • Third-party disclosure: We do not sell or lease data to third parties without your consent, except as required by law.
  • Subcontracting: We entrust services such as cloud hosting, analytics infrastructure, and customer support to trusted vendors under confidentiality agreements, sharing only what is necessary for operations.

Data Retention

We retain data only for as long as necessary to fulfill the purposes described in this policy. Data that is no longer needed is securely deleted or anonymized without delay.

Security Measures

We implement industry-standard security measures including TLS/SSL encryption for communications, encryption of stored data, least privilege access controls, security monitoring, and regular audits.