Privacy Policy

At FlashKing ("we," "our," or "us"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, application, and services (collectively, the "Service").

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

1. Authentication and Administrator Access

It is important for you to understand:

• We use NextAuth and third-party authentication providers (such as Google) to manage user authentication securely.
• Through these third-party authentication services, we only have access to your basic profile information such as name, username, and email address.
• We do not store, process, or have access to your passwords as these are handled securely by the third-party authentication providers.
• Service Administrators can see non-sensitive data in our database, including your study materials, flashcards, multiple-choice questions, usage patterns, and other content you create on the platform.
• Administrators do not have access to sensitive payment information when payment processing is implemented. Payment details are processed and stored by our third-party payment processors, not in our database.

We implement appropriate access controls and follow best practices, but you should be aware of these access patterns when using our Service.

2. Development Status and Data Security

FlashKing is currently in development. During this development phase:

• Our security measures may not be fully implemented
• We may use development, staging, and testing environments that have different security configurations
• We may collect additional diagnostic data to troubleshoot issues
• Data may be stored in development databases with modified retention policies
• We cannot guarantee the same level of data protection as established commercial services

We take reasonable precautions to protect your data, but you should be aware of these limitations when using the Service.

3. Information We Collect

3.1 Personal Data

We may collect personal information that:

• Comes from third-party authentication providers, limited to your name, username, and email address.
• You voluntarily provide when you:
  • Use or access our Service
  • Subscribe to our newsletter
  • Request customer support
  • Participate in promotions or surveys
  • Submit feedback or bug reports

The personal information we collect may include:

• Name
• Email address
• Profile information
• Payment information (when payment processing is implemented)
• Study content and learning materials you create
• Technical information when you report bugs or issues
• Any other information you choose to provide

3.2 Usage Data

We may also collect information about how the Service is accessed and used. This usage data may include:

• Your computer's Internet Protocol (IP) address
• Browser type and version
• Pages of our Service that you visit
• Time and date of your visit
• Time spent on those pages
• Device information
• Unique device identifiers
• Error and crash reports
• Feature usage statistics

During development, we may collect more detailed usage information and diagnostic data to identify and fix issues.

3.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

4. How We Use Your Information

We use the information we collect for various purposes, including to:

• Provide, maintain, and improve our Service
• Notify you about changes to our Service
• Allow you to participate in interactive features of our Service
• Provide customer support
• Monitor usage of our Service
• Detect, prevent, and address technical issues and bugs
• Provide personalized learning experiences
• Process transactions (when payment processing is implemented)
• Send you technical notices, updates, security alerts, and administrative messages
• Understand how users interact with the Service for development purposes

5. Third-Party Authentication

We use NextAuth and other third-party authentication providers to manage user accounts securely. When you sign in using these services:

• Your authentication is handled by the third-party provider (e.g., Google)
• We only receive basic profile information (name, username, email)
• We do not receive or store your passwords
• Any additional information you provide to these third-party services is subject to their privacy policies

Please review the privacy policies of the authentication providers you choose to use with our Service.

6. Sharing Your Information

We may share your personal information in the following situations:

6.1 With Service Providers

We may share your information with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. These may include payment processors, database providers, hosting services, and other technical infrastructure providers.

6.2 For Business Transfers

We may share or transfer your information in connection with, or during negotiations of, any merger, sale of assets, financing, or acquisition of all or a portion of our business to another entity.

6.3 With Your Consent

We may disclose your personal information for any other purpose with your consent.

6.4 Legal Requirements

We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.

7. Data Security

We have implemented reasonable security measures designed to protect your personal information. However, please also remember that:

• We are still developing our platform and security infrastructure
• No method of transmission over the Internet or method of electronic storage is 100% secure
• We may use development environments with different security configurations
• Our security measures will evolve as the project matures
• We cannot guarantee absolute security of your data

While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. By using the Service, you acknowledge these limitations.

8. Data Retention

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our policies.

During development, we may retain data for shorter or longer periods for testing and development purposes. We may also periodically reset our development databases, which could result in data loss.

9. Your Data Protection Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have certain data protection rights under the General Data Protection Regulation (GDPR). We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your personal information.

In certain circumstances, you have the following data protection rights:

• The right to access, update, or delete the information we have on you
• The right of rectification
• The right to object
• The right of restriction
• The right to data portability
• The right to withdraw consent

Please note that during development, response to these requests may be delayed as we implement the necessary systems. To exercise any of these rights, please contact us at privacy@flashking.com.

10. Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from children under 16. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from children without verification of parental consent, we will take steps to remove that information from our servers.

11. Third-Party Services

Our Service may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.

We may use various third-party services for analytics, error tracking, and infrastructure. These services may have access to certain data, and their use is subject to their respective privacy policies.

12. Changes to Pricing and Services

As FlashKing evolves, we may introduce or modify paid services, which could change what data we collect and how we process it. Before implementing any significant changes to our data practices related to paid services, we will update this Privacy Policy and notify users.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

During development, changes may be more frequent as we refine our practices and implement additional features. It is your responsibility to review this Privacy Policy periodically for changes.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

• Email: nsgowran@gmail.com

Last updated: March 13, 2025