Privacy Policy for SafeStepps

Last Updated: March 28, 2026

Introduction

SafeStepps ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("App") and related services.

BY USING SAFESTEPPS, YOU CONSENT TO THE COLLECTION AND USE OF YOUR INFORMATION AS DESCRIBED IN THIS PRIVACY POLICY.

If you do not agree with this Privacy Policy, please do not use the App.

---

1. Information We Collect

1.1 Personal Information You Provide

When you register and use SafeStepps, we collect:

• Account Information: Name, email address, phone number, password
• Emergency Contacts: Names, phone numbers, email addresses, relationships
• Medical Information (Optional): Allergies, medications, blood type, medical conditions, emergency notes
• Payment Information: Credit/debit card details, billing address (processed securely by Stripe)

1.2 Information Automatically Collected

Location Data:

• Precise Location (GPS): Real-time GPS coordinates when you trigger emergency alerts or use Virtual Escort
• Network-Based Location: Cell tower and Wi-Fi positioning as fallback
• Location History: Last known location stored for emergency purposes
• Frequency: Location is accessed only during active safety features (emergency alerts, Virtual Escort)

Device Information:

• Device model, operating system version
• Unique device identifiers (advertising ID, device ID)
• Mobile network information
• App version and usage statistics

Audio and Video Recordings:

• Video Recordings: Captured when you manually record or enable auto-record on panic/shake
• Audio Recordings: Voice recordings when video includes audio
• Voice Commands: Voice recognition data for voice-activated features
• Storage: Recordings stored securely in AWS S3 cloud storage
• Retention: Automatically deleted after 7 days unless you delete them sooner

Sensor Data:

• Accelerometer data (for shake detection and drop detection)
• Microphone access (for voice commands and audio recording)
• Camera access (for video recording)

Usage Data:

• Features used (panic button, shake alerts, Virtual Escort)
• Alert history and timestamps
• App interactions and navigation patterns

1.3 Information from Third Parties

• Google Sign-In (if used): Name, email address, profile picture from your Google account
• Stripe: Payment processing and subscription status information

---

2. How We Use Your Information

2.1 Primary Safety Purposes

We use your information to:

• Send Emergency Alerts: Notify your emergency contacts via SMS with your location and alert details
• Location Tracking: Share your real-time location with emergency contacts during active alerts
• Evidence Recording: Store video/audio recordings for your safety and documentation
• Voice Activation: Enable hands-free emergency alerts and camera recording via voice commands
• Drop Detection: Automatically detect phone drops and trigger alerts if you're unresponsive
• Virtual Escort: Monitor your journey and alert contacts if you don't check in on time

2.2 Service Operations

• Provide, maintain, and improve the App
• Process payments and manage subscriptions
• Send you service updates, security alerts, and administrative messages
• Respond to your support requests and inquiries
• Detect, prevent, and address technical issues, fraud, and security threats

2.3 Communications

• Send push notifications for safety alerts and app updates (you can disable these in settings)
• Email you about account activity, subscription changes, and important notices
• Respond to your feedback and questions

2.4 Analytics and Improvements

• Analyze usage patterns to improve features and user experience
• Monitor app performance and fix bugs
• Develop new safety features based on user needs

We do NOT:

• Sell your personal information to third parties
• Use your location data for advertising or tracking outside safety features
• Share your recordings with anyone except as required by law

---

3. How We Share Your Information

3.1 Emergency Contacts (With Your Consent)

When you trigger an emergency alert:

• Your name, location, and alert details are sent via SMS to your designated emergency contacts
• Your location updates are shared in real-time during active alerts
• Your medical information (if provided) is shared to assist responders

3.2 Service Providers

We share data with trusted third-party providers who help us operate SafeStepps:

• AWS (Amazon Web Services): Cloud storage for video/audio recordings and app infrastructure
• Stripe: Payment processing for subscriptions (they handle your credit card securely)
• SMS Gateway Providers: Delivery of emergency SMS notifications
• Twilio/Nexmo: SMS messaging infrastructure

These providers are contractually bound to protect your data and use it only for providing services to us.

3.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal processes (subpoenas, court orders, search warrants)
• Government investigations or regulatory requests
• Protecting the rights, property, or safety of SafeStepps, our users, or the public
• Enforcing our Terms of Service or investigating potential violations

3.4 Business Transfers

If SafeStepps is involved in a merger, acquisition, or sale of assets, your information may be transferred to the new owner. We will notify you via email and/or prominent notice in the App before your information is transferred.

3.5 With Your Consent

We may share your information for other purposes with your explicit consent.

---

4. Data Retention

4.1 Active Account Data

• Account Information: Retained while your account is active
• Emergency Contacts: Stored until you delete them or close your account
• Location History: Last known location stored for 30 days
• Alert History: Retained for 1 year for your records

4.2 Recordings

• Video/Audio Recordings: Automatically deleted after 7 days
• Manual Deletion: You can delete recordings anytime before the 7-day period
• Download: You can download recordings to your device before deletion

4.3 After Account Closure

• Most personal data is deleted within 30 days of account closure
• Some data may be retained longer for legal compliance (payment records, legal disputes)
• Anonymized usage data may be retained for analytics

---

5. Your Privacy Rights

5.1 Access and Control

You have the right to:

• Access: View all personal information we have about you
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and data
• Export: Download your data in a portable format
• Opt-Out: Disable voice commands, shake detection, drop detection, auto-recording

5.2 Location Settings

• Disable Location: You can disable location access in device settings (this will prevent emergency alerts from including your location)
• Background Location: SafeStepps only accesses location during active safety features

5.3 Communication Preferences

• Push Notifications: Disable in app settings or device settings
• Email: Unsubscribe from promotional emails (transactional emails cannot be disabled)

5.4 How to Exercise Your Rights

Contact us at: [email protected] or through the App's "Privacy Settings" menu.

We will respond to your request within 30 days.

5.5 Regional Rights

California Residents (CCPA):

• Right to know what data is collected
• Right to delete personal information
• Right to opt-out of data sales (we do not sell data)
• Right to non-discrimination

EU/UK Residents (GDPR):

• Right to access, rectification, erasure, restriction
• Right to data portability
• Right to object to processing
• Right to withdraw consent
• Right to lodge a complaint with supervisory authority

---

6. Data Security

6.1 Security Measures

We implement industry-standard security measures:

• Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
• Secure Storage: AWS S3 with restricted access controls
• Authentication: Password hashing (bcrypt), optional PIN code for alarm disabling
• Access Controls: Role-based access, admin authentication required
• Regular Audits: Security testing and vulnerability assessments

6.2 Payment Security

• PCI Compliance: Stripe handles all payment processing (PCI DSS Level 1 certified)
• No Storage: We do NOT store credit card numbers on our servers

6.3 Limitations

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

You are responsible for:

• Keeping your password secure
• Not sharing your account credentials
• Using a secure device and network

---

7. Children's Privacy

SafeStepps is not intended for children under 13. We do not knowingly collect personal information from children under 13.

If you are a parent/guardian and believe your child has provided us with personal information, contact us at [email protected] and we will delete it immediately.

Age Requirement: You must be at least 13 years old to use SafeStepps. Users under 18 should have parental/guardian consent.

---

8. International Data Transfers

SafeStepps is operated from the United States. If you access the App from outside the U.S., your information will be transferred to, stored, and processed in the U.S.

By using SafeStepps, you consent to the transfer of your information to the U.S., which may have different data protection laws than your country.

---

9. Third-Party Services

9.1 Third-Party Links

The App may contain links to third-party websites or services (e.g., emergency services websites). We are not responsible for the privacy practices of these third parties. Please review their privacy policies.

9.2 Google Sign-In

If you sign in with Google, Google's privacy policy applies to data collected by Google. Review Google's privacy policy at: https://policies.google.com/privacy

---

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted with a new "Last Updated" date.

Material Changes: We will notify you via:

• Email to your registered email address
• Push notification in the App
• Prominent notice when you open the App

Your continued use of SafeStepps after changes constitutes acceptance of the updated Privacy Policy.

---

11. Contact Us

For questions, concerns, or requests regarding this Privacy Policy:

Email: [email protected] Support: [email protected] Mail: SafeStepps, LLC [Your Business Address] [City, State ZIP] United States

Data Protection Officer (if applicable): [email protected]

---

12. Effective Date

This Privacy Policy is effective as of March 28, 2026.

---

DISCLAIMER: This Privacy Policy is designed to comply with major privacy laws (GDPR, CCPA, COPPA). However, it is recommended to have this policy reviewed by a qualified attorney before publishing, especially for medical/safety applications.

---

© 2026 SafeStepps, LLC. All rights reserved.