Privacy Policy
Effective date: October 2, 2025
This Privacy Policy describes how Rex System Bangladesh ("we", "us", or "Service Provider") collects, uses, discloses, and protects information when you use the Weedy support mobile application (the "Application"). By using the Application you agree to the practices described in this policy.
1. Information We Collect
We collect the minimum information necessary to operate the Application, provide authentication, and improve security and user experience.
1.1 Personal Information (Account)
- Google Account data: When you sign in with Google Sign-In we obtain your Google account identifier, name, email address, and profile picture. Purpose: authentication and account creation.
1.2 Sensitive Permissions
- Location (approximate or precise): Collected only if you grant permission. Purpose: improve service relevance, assist with location-based features, and help with fraud detection and authentication. Location data is processed in real-time for these purposes and is not stored permanently unless you explicitly opt into a feature that requires storage (we will inform you separately).
- SMS (read-only for OTP): If you grant the SMS permission, we only read one-time verification codes (OTP) to complete authentication automatically. We do not read or store unrelated SMS content.
1.3 Device & Usage Information
- IP address, device model, operating system and version, app version, device identifiers.
- Log and diagnostic information such as pages/screens visited, time and date of access, session length, crash reports, and anonymized analytics data.
2. How We Use Your Information
- Authentication & account management: Google Sign-In and OTP verification.
- Security & fraud prevention: detect anomalous sign-in attempts and prevent unauthorized access.
- Functionality & personalization: enable app features and improve user experience.
- Support & communication: respond to support requests and send important notices about the service.
- Analytics & improvement: aggregated and anonymized usage data helps us prioritize product improvements.
3. Third-Party Services & Links
We use third-party services for authentication, analytics, and platform functionality. These services may collect information in accordance with their own privacy policies. Notable third parties:
- Google Privacy & Terms — Google Sign-In & Google Play Services
4. Data Sharing & Disclosure
We do not sell or rent personal data. We may disclose data in the following limited circumstances:
- To comply with legal obligations or respond to lawful requests by public authorities (e.g., court orders, subpoenas).
- When necessary to protect our rights, safety, property, or the safety of users and the public.
- To trusted service providers who perform services on our behalf (e.g., hosting, analytics, authentication). These providers are contractually required to process data only for the purposes we specify and to keep it confidential.
5. Data Retention
- Google account data: retained while your account is active and until you request deletion.
- Location & SMS for authentication: processed in real-time for verification. They are not retained long-term unless required for troubleshooting or legal reasons; in those cases data is minimized and access is restricted.
- Device and usage logs: retained for analytics, security, and troubleshooting for a reasonable period and then deleted or aggregated/anonymized.
6. Security
We implement reasonable administrative, technical, and physical safeguards (for example, encryption in transit, access control, and secure servers) to protect personal information. However, no method of transmission or electronic storage is completely secure — absolute security cannot be guaranteed.
7. Children’s Privacy
The Application is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided information, please contact us and we will delete that data promptly.
8. User Controls, Opt-Out & Data Deletion
- Uninstall: You can stop data collection by uninstalling the Application from your device.
- Delete account / data: To request deletion of your account or personal data, contact us at info@rexsystemsbd.com. We will respond and take action in a reasonable timeframe.
- Permissions: You may revoke Location or SMS permissions in your device settings at any time. Revoking permissions may affect functionality (for example, automatic OTP verification will stop working if SMS permission is revoked).
9. Changes to This Privacy Policy
We may update this Privacy Policy periodically. When we make material changes we will post the new policy within the app and update the Effective Date above. Continued use of the Application after changes constitutes acceptance of those changes.
10. Contact Us
If you have questions, concerns, or requests regarding privacy, please contact:
Rex System Bangladesh
Email: info@rexsystemsbd.com
Appendix — Google Play Data Safety Summary (for your Play Console)
Use this as a guide when filling the Play Console Data Safety form. You must fill the Play Console form to match your app behavior exactly.
| Data Type | Collected? | Shared with 3rd parties? | Purpose (example) |
|---|---|---|---|
| Account info (name, email) | Yes — Google Sign-In | No (unless required by law or to service providers) | Authentication, account management |
| Location (precise/approx.) | Yes — if permission granted | No (not shared by default) | Authentication checks, feature enhancement |
| SMS (OTP auto-read) | Yes — read-only for OTP when permission granted | No | Authentication (auto OTP verification) |
| Device & diagnostics (IP, logs) | Yes | Aggregated/anonymized to analytics providers | Analytics, crash reporting, troubleshooting |