Privacy Policy

Personal Information

• Name, email address, and phone number
• Business information (for technicians)
• Profile photos and business images
• Location data (with your permission)
• Payment information (processed securely)
• Points and recognition data
• TOA token transaction history

Usage Information

• How you interact with our platform
• Pages visited and features used
• Device information and IP address
• Browser type and operating system

European Union (GDPR) Rights

If you are located in the European Union, you have additional rights under the General Data Protection Regulation (GDPR):

• Lawful Basis: We process your data based on consent, contract performance, or legitimate interests
• Right to Object: You can object to processing based on legitimate interests
• Data Protection Officer: Contact us at privacy@thankatech.com for GDPR-related inquiries
• Supervisory Authority: You have the right to lodge a complaint with your local data protection authority
• Data Retention: We retain data only as long as necessary for the stated purposes

California (CCPA) Rights

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request information about personal information we collect, use, and disclose
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We do not sell personal information, but you can opt-out if this changes
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights
• Authorized Agent: You may designate an authorized agent to make requests on your behalf

Exercising Your Rights

Mobile Device Permissions

• Location Services: With your permission, to help find nearby technicians
• Camera Access: To upload profile photos and business images
• Push Notifications: To send important updates and messages
• Contacts: Only with explicit permission, to facilitate connections
• Storage: To save app data and preferences locally

Mobile-Specific Data Collection

• Device identifiers and mobile advertising IDs
• App usage analytics and crash reports
• Device type, operating system, and app version
• Network information and connection status
• App store interaction data (downloads, updates)

Mobile Privacy Controls

You will always have control over mobile permissions and can modify them through your device settings. We will request permissions only when necessary for specific features and will explain why each permission is needed.

Payment Data Security

• PCI DSS Compliance: Stripe is certified as a PCI Level 1 Service Provider
• Card Data: We never store your complete credit card information
• Tokenization: Card details are converted to secure tokens by Stripe
• Encryption: All payment data is encrypted in transit and at rest
• 3D Secure: Additional authentication for enhanced security

Information Collected for Payments

• Billing name and address
• Credit/debit card information (processed by Stripe)
• Transaction history and receipt information
• Device and browser information for fraud prevention
• IP address and geolocation data for security verification

Payment Data Usage

• Processing tip payments and TOA token purchases and payouts to technicians
• Calculating and collecting platform fees
• Generating receipts and transaction records
• Managing points calculation and display for community recognition
• Processing TOA token conversions and monetary payouts
• Fraud detection and prevention
• Compliance with financial regulations (AML, KYC)
• Resolving payment disputes and chargebacks

Stripe's Role and Responsibilities

• Stripe acts as our payment processor and may collect additional information
• Stripe's privacy policy governs their handling of your payment data
• Stripe may use your information for their own fraud prevention and compliance
• You can review Stripe's privacy policy at stripe.com/privacy

Platform Fee Structure