Privacy Policy

Effective Date: July 12, 2025

---

1. Introduction and Definitions

Welcome to OhayouQuest LLC. This Privacy Policy explains how OhayouQuest (“we,” “us,” or “our”) collects, uses, discloses, and safeguards your personal information when you use our Japanese language learning Platform. By accessing or using our Platform, you agree to the terms below.

Definitions

• “Personal Information”: any information that identifies or could reasonably be used to identify an individual, such as name, email address, billing details, or user preferences.
• “Usage Data”: non‑personal data generated by your use of the Platform, including lesson completions, quiz results, session durations, and device metadata.
• “Platform”: ohayouquest.com, our iOS and Android applications (available via the App Store and Google Play), and any related services we provide.
• “Cookies”: small text files stored in your browser or on your device by a website or service, used to remember preferences and track usage.

2. Information We Collect

2.1 Personal Information

• Account details: name, email address, username, profile preferences.
• Payment information: billing name, address, and transaction metadata collected via third‑party payment processors (we do not store card numbers).
• Optional data: profile picture, language goals, or any other information you voluntarily submit.

2.2 Usage Data & Diagnostics

• In‑app activity: lessons completed, quizzes taken, scores, progress metrics.
• Device and technical data: IP address, browser type/version, operating system, app version, crash logs (via tools such as Firebase Crashlytics).
• Analytics: aggregated data collected by Google Analytics and similar services to understand feature usage trends.

3. How We Use Your Information

• Service Delivery: to operate, maintain, and provide you with features of the Platform.
• Personalization: to recommend lessons, tailor content, and remember your preferences.
• Communications: to send transactional emails (account notices, billing receipts) and up to one marketing email per month, which you may opt out of at any time.
• Improvement & Research: to analyze usage patterns, diagnose technical issues, and enhance Platform functionality.
• Legal Compliance: to comply with applicable laws, respond to lawful requests, and protect rights.

4. Payment Processing

All payments are processed by PCI‑DSS compliant third parties (e.g., Stripe, PayPal). We only receive confirmation of successful transactions and do not store your full card details on our servers.

5. Third‑Party Services & Disclosure

• Authentication: Google Login (we receive your name and email; Google securely handles your password).
• Analytics & Crash Reporting: Google Analytics, Firebase Crashlytics.
• Legal Requests: We may disclose Personal Information to comply with court orders, subpoenas, or other legal processes.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the successor entity under this Privacy Policy.

6. Data Security

• Encryption in Transit: HTTPS/TLS for all data transfer.
• Encryption at Rest: AES‑256 or equivalent for stored Personal Information.
• Access Controls: Role‑based access, multi‑factor authentication for administrative systems.
• Regular Audits: periodic vulnerability scanning and penetration testing.

7. International Data Transfers

Your data is processed and stored in the United States. We use Standard Contractual Clauses and other safeguards to ensure appropriate protection when transferring data internationally.

8. Data Retention

• Personal Information: retained as long as your account is active or as needed to provide services, plus up to 3 years thereafter for legal and accounting purposes.
• Usage Data: anonymized or aggregated and retained for up to 3 years for analytical and improvement purposes.
• Backups: secure backup copies retained for up to 90 days.

9. Children’s Privacy

Our Platform does not address anyone under the age of 13, and this policy is designed to comply with the U.S. Children’s Online Privacy Protection Act (COPPA). We do not knowingly collect personally identifiable information from anyone under 13. If you are a parent or guardian and you become aware that your child has provided us with Personal Information, please contact us immediately so we can take appropriate action. If we become aware that we have collected Personal Information from a child under 13 without verification of parental consent, we will take steps to delete that information from our servers.

If we need to rely on consent as a legal basis for processing information and your country requires parental consent for children under 13, we will seek your parent’s or guardian’s consent before collecting or using any such information.

10. Your Rights & Choices

• Access & Portability: You may request access to or a copy of the Personal Information we hold about you.
• Correction: You may update or correct your information at any time via the Platform.
• Deletion: You may request deletion of your Personal Information, subject to legal retention requirements.
• Opt‑Out: You can opt out of marketing communications by following the unsubscribe link in emails.
• Cookies: You may manage cookie preferences through your browser settings; disabling cookies may limit functionality.

11. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. When we do, we will revise the “Effective Date” and post the updated policy here. Continued use of the Platform after changes indicates your acceptance.

12. Contact Us

Email us

By using our Platform, you acknowledge that you have read, understood, and agree to this Privacy Policy.