OZmate
Privacy, Terms, Security, Guidelines

Privacy Policy

Last updated: 2026-05-18. This page describes how OZmate handles your personal information.

Open App Store Terms Security Guidelines

Privacy Policy

Version: 2.5 Updated: 2026-05-18

1. Operator and Contact

OZmate is operated by RootPilot AI.

support@rootpilotai.com

2. Scope

This Privacy Policy applies to the OZmate mobile application ("App") and the OZmate website at https://ozmate.app ("Website"). By using the Service, you acknowledge that you have read and understood this policy.

3. Information We Collect

3.1 Account Information — Service-generated user ID, email address, authentication provider information associated with your sign-in method, and password (handled securely by our authentication provider and never stored in plaintext).

3.2 Profile Information — Nickname/display name, @ID, bio, profile icon, and optional contact details, area/location details, and similar profile fields.

3.3 User-Generated Content — Community posts and comments, workplace-list comments, structured experience fields, reports, images, direct messages, and community chat messages.

3.4 Device and Technical Information — Device model, OS version, app version, IP address, language, timezone, FCM/APNs notification tokens, and a device-scoped identifier used for notification delivery and per-device management.

3.5 Usage, Analytics, and Advertising Data — After you accept the current in-app legal consent flow, the App uses Firebase Analytics for aggregated screen views, feature usage, session activity, and operational event measurement. When advertising features are enabled, Google AdMob / User Messaging Platform (UMP) may process IP address, device identifiers, advertising data, ad interaction events, crash logs, performance data, and similar information for advertising consent, privacy options, ad delivery, ad measurement, and fraud prevention.

3.6 Location Information — When enabled, location data is processed to display nearby points of interest using Overture Maps data. No background tracking.

3.7 Inquiry Information — Inquiry content, email address, and metadata from support contacts.

3.8 Push Notification Token — FCM device token (with your permission only).

4. Legal Basis for Processing

  • Consent (APPI Article 17): Provided when creating an account and agreeing to this policy.
  • Contract Performance: Processing necessary to provide the Service.
  • Legitimate Interests: Security, fraud prevention, and service improvement.
  • Legal Compliance: Processing required by applicable laws.

5. Purposes of Use

  • User authentication and account management
  • Service operation and delivery
  • Content moderation and guideline enforcement
  • User safety
  • Fraud and abuse prevention
  • User support
  • Usage analysis and service improvement
  • When advertising features are enabled: in-app ad delivery, advertising consent management, ad measurement, fraud prevention, and related privacy choices
  • Push notification delivery (with permission)
  • Legal and regulatory compliance

6. Third-Party Sharing and Service Providers

ServiceProviderLocationPurpose
Firebase AuthenticationGoogle LLCUSAUser authentication
Cloud FirestoreGoogle LLCUSAData storage
Firebase StorageGoogle LLCUSAStorage of uploaded images and similar files
Cloud Functions for FirebaseGoogle LLCUSABackend processing, notifications, and security controls
Firebase Cloud MessagingGoogle LLCUSAPush notifications
Firebase App CheckGoogle LLCUSAAbuse prevention
Firebase AnalyticsGoogle LLCUSAAggregated in-app usage analytics
Google AnalyticsGoogle LLCUSAAggregated website traffic analytics
Google AdMob / User Messaging Platform (UMP)Google LLCUSAWhen advertising features are enabled: banner ad delivery, consent messaging, privacy options, ad measurement, and fraud prevention for supported app screens

We do not sell, rent, or trade your personal information to third parties. We only disclose personal data when required by law.

7. International Data Transfers

Your data is stored and processed on Google LLC servers in the United States through Firebase. Transfers are conducted under Google's Standard Contractual Clauses (SCCs).

8. Data Retention

Data TypeRetention Period
Account dataDeleted upon account deletion
User-generated contentHidden from public view upon account deletion; may be retained on the server
Direct messagesMay be retained for other participants' records after account deletion
Analytics logsUp to 14 months
Support tickets2 years after resolution
Security logsUp to 1 year

Data may be retained longer where required by applicable law.

9. Your Rights

Under APPI: Disclosure, correction, deletion, cessation of use, and cessation of third-party provision.

Under Australian Privacy Act 1988: Access, correction, and complaints to the OAIC.

How to exercise: Use the in-app "Delete Account" feature, or email support@rootpilotai.com.

10. Children's Privacy

The Service is intended for users aged 18 and older. We do not knowingly collect personal information from anyone under 18.

11. Security Measures

  • All communications encrypted via TLS
  • Firebase Security Rules for per-user access control
  • Restricted administrative access
  • Firebase App Check for authentic app verification

12. Cookies and Tracking

The Website uses essential cookies for basic site functionality. The Website also uses Google Analytics (gtag.js) to collect aggregated page-view data such as normalized page URL and path. After you accept the current in-app legal consent flow, Firebase Analytics collects aggregated usage data within the App. When advertising features are enabled, the App may use Google AdMob and UMP to collect advertising consent choices, present privacy options, deliver banner ads on supported screens, support ad measurement, and prevent fraud. When advertising features are enabled, the App may show Apple's App Tracking Transparency permission prompt. If you deny permission, ads may still be requested, but the Google Mobile Ads SDK does not send the IDFA in the ad request.

13. Changes to This Policy

Material changes are posted in the App and on the Website. Re-consent is requested via the in-app consent flow when required. Each version is identified by a version number and effective date.

14. Contact and Complaints

support@rootpilotai.com

Japan: Personal Information Protection Commission (PPC) — https://www.ppc.go.jp/

Australia: Office of the Australian Information Commissioner (OAIC) — https://www.oaic.gov.au/

© OZmate | Home | Terms | Security | Support | Guidelines