Pets Club Privacy Policy

Introduction

Welcome to Pets Club. This Privacy Policy describes how PETS CLUB OOD (“we,” “our,” or “us”) collects, uses, stores, and protects your personal data when you use our mobile application and web platform (collectively, the “Service” or “App”) at https://web.petsclubapp.com.

By using our Service, you acknowledge that you have read and understood this Privacy Policy.

Data Controller

The data controller responsible for your personal data is:

• Company name: PETS CLUB OOD
• Company registration number (ЕИК): 208213714
• Country: Bulgaria
• Website: https://web.petsclubapp.com
• Privacy contact: [email protected]

Information We Collect

1. Account Information

When you create an account, we collect:

• Email address
• Password (encrypted and securely stored)
• Full name
• Phone number (optional)
• Country / Location
• Profile picture (optional)
• Sign-in method (email, Google, or Apple)

2. Animal Information

To provide our pet management services, we collect information about your animals:

• Animal name and nickname
• Type (dog, cat, bird, rabbit, rodent)
• Breed
• Gender
• Date of birth
• Profile picture
• Weight and measurements
• Microchip number
• Breeder number
• Castration / neutering status
• Federation memberships
• Certificates (origin and birth documents)

Important: Documents and photos uploaded in the App are personal records provided by you. They do not constitute an official digital passport issued by any government or official authority.

3. Health Records

We collect health-related data for your animals:

• Vaccination records: vaccine name, type, administration method, date, expiration date, and notes
• Examinations: type, date, and notes
• Vitamins and deworming: name, administration method, date, expiration, and reminder preferences
• Diplomas and certifications: championship name, place, date, and document images
• Zoometric measurements: weight, height, body length, chest circumference, and other physical measurements

Important: Health information in the App is used solely for organisation and reminders. It does not replace veterinary advice, diagnosis, or treatment. Always consult a qualified veterinarian.

4. Feeding Schedule Data

When you create feeding schedules, we collect and store: schedule titles and notes, meal types, quantities and mass units, feeding times, date ranges, linked animal references, completion status, and reminder preferences.

5. Task and Reminder Data

When you create tasks, we collect and store: task titles and optional notes, scheduled dates and times, linked animal references, completion status, and notification delivery status.

6. Family Tree Data

If you use the family tree feature, we collect: parent information (mother and father details), lineage and ancestry data, breed information for ancestors, and microchip numbers and owner names of family members.

7. Subscription Information

When you subscribe to our premium services, we collect:

• Subscription tier (Core, Plus, or Pro)
• Subscription period (monthly or annual)
• Purchase and expiration dates
• Transaction identifiers (processed through Apple App Store or Google Play Store)
• Promotional code usage (if applicable)

8. Device and Usage Information

We automatically collect:

• Device type and operating system version
• App version
• Language preference
• Push notification tokens (if enabled)
• Live Activity push-to-start tokens (if enabled, iOS only)
• General usage analytics (only with your explicit consent)
• Browser cookies and local storage data (web platform only — see Cookies section)

How We Use Your Information

We use the information we collect to:

• Provide our services: manage your account, store animal profiles, track health records, manage feeding schedules, handle task reminders, and generate family trees
• Process subscriptions: manage your subscription status and provide premium features
• Send notifications: deliver push notifications about feeding reminders, task reminders, vaccination expiration alerts, and important updates (if enabled)
• Display Live Activities: show real-time task and feeding schedule information on your Lock Screen (iOS only, if enabled)
• Personalise content: filter newsletter articles based on your registered animal types
• Improve our services: analyse anonymous usage patterns (only with your explicit consent)
• Provide customer support: respond to your inquiries and resolve issues
• Ensure security: protect against unauthorised access and fraudulent activity
• Comply with legal obligations: meet applicable legal requirements

Legal Basis for Processing (GDPR)

Personalised Newsletter Content

We use the types of animals registered in your account to filter and display relevant newsletter articles and promotional content. Article previews are publicly accessible. Full article access requires a registered account.

We do not share your personal information with the third-party companies whose content appears in the newsletter. Filtering is performed on our servers based solely on your animal type data.

Cookies and Local Storage (Web Platform)

When you use the Pets Club web platform, we use cookies and browser local storage. You can control which categories are active via the cookie banner on your first visit, or at any time by clicking the Cookie Settings link in the footer. The categories are:

• Necessary: maintain your login session and remember your language and preferences. Cannot be disabled.
• Analytics: collect anonymous usage data via Firebase Analytics and Google Analytics (GA4, by Google LLC) to help us improve the service. Only active with your consent.
• Marketing: Meta Pixel (by Meta Platforms, Inc.) measures the effectiveness of our advertising campaigns. Only active with your consent. No personal data is sold to third parties.

You can update your cookie preferences at any time via the Cookie Settings link in the footer, or by clearing your browser's local storage (which will also log you out and show the consent banner again on your next visit).

Live Activities

When Live Activities are enabled (iOS only), your device registers a push-to-start token with OneSignal. This token is used exclusively to start and update Live Activity widgets on your Lock Screen. The token is device-specific and does not contain personal information.

Data Processors (Sub-processors)

RevenueCat

We use RevenueCat to manage in-app subscriptions. RevenueCat processes your subscription purchases through the Apple App Store and Google Play Store. See RevenueCat's Privacy Policy for more information.

OneSignal

We use OneSignal for push notifications and Live Activity delivery. OneSignal receives your device push token and, when enabled, your OneSignal subscription ID. See OneSignal's Privacy Policy for more information.

Amazon Web Services (AWS)

Our backend infrastructure is hosted on AWS servers in the EU (Frankfurt, eu-central-1). See AWS Privacy Policy for more information.

Apple App Store

Subscription payments on iOS are processed through the Apple App Store. Apple handles all payment information directly. See Apple's Privacy Policy for more information.

Google Play Store

Subscription payments on Android are processed through the Google Play Store. Google handles all payment information directly. See Google's Privacy Policy for more information.

Firebase (Google)

We use Firebase Analytics for anonymous usage tracking (consent-only) and Firebase Crashlytics for crash reporting. Firebase may collect device identifiers, app usage patterns, and crash stack traces. See Google's Privacy Policy for more information.

Google Analytics (GA4)

We use Google Analytics 4 (GA4) on our web platform to collect anonymous usage statistics such as page views, session duration, and navigation paths. GA4 is provided by Google LLC and may set cookies or use similar identifiers. IP addresses are anonymised by default. This is only active if you have consented to analytics cookies. You can opt out at any time via the Cookie Settings link in the footer or by installing the Google Analytics Opt-out Browser Add-on. See Google's Privacy Policy for more information.

Meta Platforms (Facebook Pixel)

We use Meta Pixel on our web platform to measure advertising effectiveness. Meta Pixel collects information about your page visits and shares this with Meta Platforms, Inc. This is only active if you have consented to marketing cookies. You can opt out at any time via the Cookie Settings link in the footer or at youronlinechoices.eu.

Data Storage and Security

Local Storage (Mobile App)

Your data is stored locally on your device using:

• iOS Keychain: for secure storage of authentication tokens
• Local database (Realm): for offline access to your animal profiles, health records, feeding schedules, and tasks

Cloud Storage

Your data is synchronised with our secure servers to enable cross-device access, backup, PDF export, and push notifications. Our primary storage is in the EU (AWS eu-central-1, Frankfurt).

Security Measures

We implement industry-standard security measures including:

• Encrypted data transmission (HTTPS/TLS)
• Secure token-based authentication (JWT with short-lived access tokens)
• Encrypted password storage (bcrypt hashing)
• Automatic token refresh
• Regular security audits

Data Retention

We retain your personal information for as long as your account is active or as needed to provide our services. If you delete your account:

• Your personal data will be permanently deleted from our servers within 30 days
• Some data may be retained for legal compliance purposes (e.g. accounting obligations)
• Anonymised analytics data may be retained indefinitely
• Push notification tokens are removed immediately

International Data Transfers

Our primary data storage is in the European Union (AWS eu-central-1). Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Compliance with GDPR requirements for international transfers

Some sub-processors (OneSignal, RevenueCat, Firebase) may have servers outside the EU. Such transfers are governed by their respective privacy policies and Standard Contractual Clauses.

Analytics and Tracking

Optional Analytics

We offer optional analytics to help improve our Service:

• Opt-in only: you must explicitly enable data sharing in Settings
• Anonymous: data is aggregated and not linked to your identity
• Controllable: you can disable at any time from Settings > Data Sharing

Crash Reporting

We use Firebase Crashlytics to collect crash reports to identify and fix bugs. Reports may include device information, app state at the time of crash, and stack traces. Crash reporting operates independently of the opt-in analytics setting.

What We Never Track

• Precise location data
• Contacts or address book
• Browsing history
• Data from other apps
• Biometric data

Push Notifications

Push notifications are optional and can be enabled or disabled at any time in your device Settings or within the App. We use them for:

• Feeding schedule reminders (30 minutes before feeding time)
• Task reminders at scheduled times
• Vaccination expiration alerts (7 days before, 1 day before, on expiry)
• Daily health record reminders (if enabled per record)
• Newsletter / promotional notifications for new content
• Subscription status changes
• Important app updates

Your Rights

Under GDPR and applicable privacy laws, you have the right to:

• Access: request a copy of the personal data we hold about you
• Rectification: request correction of inaccurate or incomplete personal data
• Erasure: request deletion of your personal data (“right to be forgotten”)
• Data Portability: request your data in a portable, machine-readable format
• Restriction: request limitation of processing of your personal data
• Objection: object to processing of your personal data for certain purposes
• Withdraw Consent: withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal
• Lodge a Complaint: file a complaint with the relevant supervisory authority

To exercise any of these rights, please contact us at [email protected].

Supervisory Authority

If you are located in the EU and believe we have not adequately addressed your data protection concerns, you have the right to lodge a complaint with your local supervisory authority. For users in Bulgaria:

• Authority: Commission for Personal Data Protection (CPDP / КЗЛД)
• Address: 2 Prof. Tsvetan Lazarov Blvd., Sofia 1592, Bulgaria
• Website: www.cpdp.bg
• Email: [email protected]

Account Deletion

You can delete your account at any time through the App Settings. Upon deletion, all your personal data, animal profiles, health records, feeding schedules, tasks, and family tree data will be permanently removed from our systems.

Children's Privacy

Our Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at [email protected].

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy in the App, updating the “Last Updated” date, and sending a notification. We encourage you to review this policy periodically.

Privacy Contact

For GDPR-related inquiries, please contact us at: [email protected]

Note: PETS CLUB OOD is a small enterprise. We do not have a formally appointed Data Protection Officer (DPO) under Art. 37 GDPR. For all privacy-related enquiries, please use the email above.