top of page

Japaflex Privacy Policy

 

We value your privacy and are committed to protecting your personal information when you use our services. At Japaflex, we comply with all applicable laws, including the United Kingdom General Data Protection Regulation (UK GDPR), the General Data Protection Regulation (EU GDPR where applicable), and related regulations concerning the collection, use, storage, retrieval, deletion, and protection of your personal information through our app and related services.

​

This Privacy Policy explains how we collect, use, share, and protect your information when you use our platform.

​

Effective Date

This Privacy Policy is effective as of March 20, 2025, with the latest update on the same date.

​

Who We Are

Japaflex is a social app for local connections—a networking platform designed to help users build meaningful relationships and access local insights. Our services enable users to engage with communities, find relevant opportunities, and share experiences.

​

Age Restriction

Japaflex is intended for users aged 16 and above. We do not knowingly collect or process personal data from individuals under 16 years of age. If we become aware that a user under 16 has provided personal information, we will take steps to delete such data immediately.

​

Information Collection Methods

Information is collected via:

Voluntarily provided information (e.g., when you register, post, or interact).

Automatically collected information (e.g., device, location, and usage data).

​

Types of information we collect

We collect and process various types of data, including:

  • Personal Information: Name, email address, age, profile photo, and any other data you provide.

  • Special Category Data: Ethnicity and race (voluntarily provided) to enhance community engagement.

  • Location Data: Collected through your device to offer localized services and content.

  • Usage Data: Platform interactions, posts, messages, and preferences.

  • Device Information: IP address, browser type, operating system, and technical identifiers.

 

How We Use Your Data

We use your information for the following purposes:

  • To provide and personalize our services.

  • To connect you with nearby communities, businesses, and events.

  • To deliver location-based services, such as localized content, recommendations, and targeted advertising.

  • To enhance platform security and prevent fraud.

  • To comply with legal obligations.

 

Use of Location Data

Japaflex uses your precise or approximate location to deliver a better and personalized experience. Specifically, we use location data to:

  • Show you relevant local posts, events, or businesses nearby.

  • Connect you with users and communities within your vicinity.

  • Enable localized search results (e.g., nearby restaurants, services).

  • Serve location-based promotions and advertisements tailored to your area.

Example: 

If you are located in Middlesbrough, Japaflex will show you posts from users in Middlesbrough or recommend businesses, events, and networking opportunities within a 20-mile radius (our Geofence radius). If you use promoted posts, your chosen extended radius (e.g., 50 miles, 100 miles, or national) will determine your post visibility range based on your starting location.

​

Control Over Location Data: 

You can control location permissions via your device settings. Disabling location services may limit some functionalities of the app. To enjoy full experience with Japaflex, we advise users to turn on their location access.

​

Third-Party Links
We share data with third-party’s such as:

  • Service Providers: Hosting, analytics, and customer support services.

  • Advertisers: Third-party advertisers using geolocation and geofencing technologies to provide relevant content.

  • Legal Authorities: If required by law, regulation, or court order.

These third-party platforms have their own privacy policies. As a user, once you leave our app, we encourage you to review their privacy practices, as this policy does not cover activities outside our platform.

​

Log Data

When users are logged into Japaflex, we may automatically log data sent by user’s device. This includes:

  • Internet Protocol (IP) address

  • Device type and version

  • Activity within the app

  • Timestamps

  • Geolocation information

In cases of errors, technical data about the error and its context may be collected, such as the actions taken at the time of the incident. While this information is not inherently personally identifiable, it has the potential to be combined with other data to identify individuals.

​

Personal Information

Personal information may be requested for specific actions, such as submitting content or contacting the company. This may include the following details:

  • Name

  • Email address

  • Age

 

Security of Personal Information

We implement appropriate technical and organizational measures such as:

  • Data encryption (at rest and in transit)

  • Access controls and authentication

  • Regular security audits

Despite our efforts, no method of transmission or storage is completely secure. You are responsible for maintaining the confidentiality of your login credentials.

​

User-Generated Content
User-generated content refers to text, images, or videos that users submit for publication on the platform or social media channels. This content is linked to the account or email used for submission. Once published, it becomes public and may be accessed by third parties outside the scope of the privacy policy.

​

Legitimate Reasons for Processing Personal Information
Personal information is collected and used only when necessary to provide services. The data collected is limited to what is reasonably required for these purposes.

​

Collection and Use of Information
Personal information may be collected when users engage in the following activities on the app:

  • Registering for an account.

  • Subscribing to updates via email or social media.

  • Accessing content through a mobile device or web browser.

  • Contacting the company via email, social media, or similar technologies.

  • Mentioning or tagging the company on social media platforms.

The collected information is used for the following purposes, ensuring it is processed only for compatible reasons:

  • To provide core features and services on the app and platform.

  • To enable personalized experiences on the app.

  • To communicate effectively with users.

  • For analytics, market research, and business development to improve the app and associated platforms.

  • For advertising and marketing, including promotional content about the services or third-party services of interest.

  • To enable access to our app and related platforms.

  • For internal record-keeping and administrative functions.

  • To fulfill legal obligations and resolve disputes.

Additionally, personal information may be combined with general data or information from trusted sources to enhance the user experience. For example, if permission is granted to access social media profiles, that data may be integrated with information the user has shared directly.

​

Security of Personal Information
Reasonable measures are taken to protect personal information from loss, theft, unauthorized access, disclosure, copying, or misuse. While the highest security standards are prioritized, it is important to understand that no electronic transmission or storage method is entirely secure. Users are responsible for safeguarding the security of their information, including selecting strong, confidential passwords for accounts linked to the services.

​

Retention of Personal Information
Personal information is retained only as long as necessary for the purposes specified in the policy. Once the information is no longer required, it will be deleted or anonymized by removing identifiable details. However, data may be retained if required for legal, accounting, or reporting obligations or for purposes such as public interest, scientific research, or statistical analysis.

​

Disclosure of Personal Information to Third Parties

Japaflex may share user’s personal information with:

  • Affiliates, subsidiaries, or parent entities within our company.

  • Third-party service providers supporting us with IT services, hosting, data storage, analytics, ad networks, payment systems, marketing, and problem-solving, among others.

  • Our employees, contractors, and related entities.

  • Agents, business partners, or potential collaborators.

  • Credit reporting agencies, courts, or regulatory bodies if you fail to meet financial obligations.

  • Legal authorities and courts, as required by law or to defend our legal rights.

  • Third parties involved in providing services or direct marketing to you.

  • External data processors and collectors.

  • Entities acquiring our business or assets.

 

Current third-party providers include:

  • Google Analytics

  • Google cloud

  • Firebase

  • Apple

  • Cockroach DB

  • Brevo

  • Redis

  • MongoDB

  • Dbeaver

 

Security of Personal Information

Commercially reasonable methods are used to protect personal information against loss, theft, unauthorized access, or misuse. However, no electronic transmission or storage method is entirely secure. Users are responsible for maintaining the security of their passwords and devices.

​

International Data Transfers
Personal data may be stored or processed in countries such as the United Kingdom or other locations where partners maintain facilities. These countries may have different data protection laws from the user’s country. All data transfers will comply with relevant laws, ensuring that personal information is protected under this policy.

​

Rights and Control of Personal Information

  • Choices: By providing personal information, individuals consent to its collection and use as described in the policy. Opting out may limit certain app functionalities.

  • Third-Party Information: Data received from third parties will be handled in accordance with this policy. If submitting someone else’s data, users must ensure they have their consent.

  • Marketing Preferences: Consent for direct marketing can be revoked by contacting the organization.

  • Access and Correction: Individuals can request access to or correction of inaccurate or outdated personal information.

  • Non-Discrimination: Users will not be penalized for exercising their rights regarding personal data.

  • Data Portability: A method for downloading shared data is available upon request.

  • Data Breach Notifications: Compliance with applicable laws for data breach reporting will be observed.

  • Complaints: If an individual believes data protection laws have been violated, they may contact the organization or escalate the matter to a regulatory authority.

  • Unsubscribing: Unsubscribing from communications can be done through the provided options in emails or by contacting the organization directly.

Verification of identity may be required for certain data-related requests.

​

Business Transfers
In the event of an acquisition, bankruptcy, or business closure, personal information may be included in the assets transferred. Such transfers may take place, and the acquiring party will continue to use the personal information in accordance with the original privacy policy, which they must uphold as part of the transfer agreement.

​

Policy Limitations
The app may contain links to external websites that are not operated by the company. The company is not responsible for the content or privacy practices of these external sites. Users are encouraged to review the respective privacy policies of those sites.

​

Policy Updates
This privacy policy may be updated to reflect changes in business practices, applicable laws, or operational improvements. Updates will be posted on this page, and significant changes will be communicated through users' preferred communication channels, as required by law. If necessary, consent will be sought for any new uses of personal information.

​

International Transfers Outside the EEA
When transferring personal data from the European Economic Area (EEA) to countries outside the EEA, appropriate safeguards are implemented. These may include the use of standard contractual clauses approved by the European Commission, binding corporate rules, or other legally recognized methods to ensure the protection of personal data.

​

Your Rights and Control Over Personal Information

  • Restrict Processing: Individuals can request restrictions on the processing of their data under certain conditions, such as disputing its accuracy, if it has been processed unlawfully, or if it is necessary for legal claims.

  • Right to Object: Users can object to data processing based on legitimate or public interests. If no compelling reasons exist for continued processing, the company will cease the activity.

  • Data Portability: Users have the right to request a copy of your personal data in a portable format (e.g., CSV) or request its transfer to another party.

 

Do Not Track

Currently, the company does not respond to browser-based "Do Not Track" signals. However, the company adheres to this privacy policy to ensure that data collection and processing practices remain lawful, transparent, and fair.

​

Additional Disclosures for GDPR Compliance

Data Controller and Data Processor
Under the GDPR, Japaflex acts as the Data Controller for the personal information provided. Any GDPR-related inquiries can be directed to the contact details specified in the "Contact Us" section of the privacy policy.

​

Legal Bases for Processing Personal Information
Personal data is processed lawfully, fairly, and transparently under the following legal bases:

  • Consent: Explicit consent for specific purposes, which can be withdrawn at any time (e.g., providing email for marketing purposes).

  • Performance of a Contract or Transaction: Processing necessary to fulfill contractual obligations or prepare for entering into a contract.

  • Legitimate Interests: Processing required for legitimate business activities, such as app improvement, marketing, research, or safeguarding business interests.

  • Compliance with Legal Obligations: Data retention or processing necessary to comply with legal or regulatory requirements (e.g., responding to court orders or government inquiries).

 

Collection and Use of Personal Information
In addition to previously mentioned purposes, personal data may also be used for marketing, market research, website enhancements, and improving the user experience.

​

Retention of Personal Information
If personal data is no longer necessary or a request for deletion is made, the company will erase or anonymize the data. However, data may be retained for compliance with legal, accounting, or archival obligations, or for public interest, research, or statistical purposes.

​

Rights of Individuals

  • Restrict Processing: Individuals can request restrictions on processing if they contest the accuracy of their data, suspect unlawful processing, or need data preserved for legal claims.

  • Right to Object: Individuals can object to processing based on legitimate or public interest, unless overriding grounds for processing exist.

  • Right to Be Informed: Individuals have the right to understand how their data is collected, processed, and stored.

  • Right of Access: Individuals can submit a Data Subject Access Request (DSAR) to obtain a copy of their personal information within 30 days.

  • Right to Erasure: Individuals can request the deletion of their data under certain conditions, such as when the data is no longer needed, consent has been withdrawn, or they object to direct marketing.

  • Right to Portability: Individuals can obtain their data in a machine-readable format (e.g., CSV) and request its transfer to another organization, where technically feasible.

For assistance with exercising these rights, individuals can contact the organization using the details provided in the privacy policy.

 

Right to Rectification
Individuals have the right to correct, update, or complete personal data if it is inaccurate, outdated, or incomplete. This is known as the right to rectification. In some cases, it may involve completing missing data or adding a supplementary statement to clarify inaccuracies or claims, depending on the purpose of processing. This right applies only to an individual's own data and cannot be used to request changes to another person’s information.

 

Notification of Data Breaches
If a data breach occurs, the company will investigate the incident and notify the UK's data protection regulator and affected individuals, where appropriate.

​

Complaints
Users have the right to file a complaint with the Information Commissioner’s Office (ICO), the UK's supervisory authority for data protection. However, users are encouraged to contact the organization first to address their concerns directly. They should provide as much detail as possible, and the company will investigate promptly and respond in writing with the outcome and steps to resolve the matter.

 

Enquiries, Reports, and Escalation
For questions about the privacy policy or to report privacy violations, individuals can contact the Data Protection Officer using the contact information in the "Contact Us" section of the privacy policy.

 

Japaflex Ltd,
Victoria Building,

Victoria Road, Middlesbrough.

TS1 3JN
Email: support@japaflex.com

bottom of page