This Privacy Agreement (hereinafter referred to as “This Agreement”) is designed to explain how Leaflet Notebooks (hereinafter referred to as “This Software”) collect, use, store, protect, and disclose the personal data and notes of users (hereinafter referred to as “You”). This Agreement protects your privacy rights and data security in accordance with international privacy regulations such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), and the California Online Privacy Protection Act (CalOPPA). By using this Software, you have fully read, understood, and agreed to all the terms and conditions of this Agreement.
1. Definition and Scope
1.1 Definition
- 1.1.1 “Personal Data”: Means information that can directly or indirectly identify you, including but not limited to email addresses, device identifiers, usage records, etc.
- 1.1.2 “Note Content”: Means text, video clips, to-do lists, and other types of data that you create, edit, and store through this Software.
- 1.1.3 “Data Controller”: Means the entity responsible for deciding the purpose and manner of processing personal data. The data controller for this Software is the Leaflet operations team.
1.2 Applicability
- 1.2.1 This Agreement applies to all behaviors of your use of all features and services of this Software, including but not limited to the creation of notes, classification management, video insertion, to-do list recording, recycling station use, etc.
- 1.2.2 This Agreement does not apply to third-party services or products, and if you access third-party services through this Software, you are subject to the third-party‘s independent privacy policy.
2. Data Collection and Processing
2.1 Types of Information Collected
- 2.1.1 Required Operational Data: To ensure smooth software operation, device model, OS version, software usage logs (such as feature access time, operation frequency), and device identifiers are automatically collected. This data is used only for troubleshooting and functionality optimization.
- 2.1.2 Information you voluntarily provide: This includes the content of notes you create (words, video clips, to-do items), custom folder classification information, and the email address you use to solicit feedback.
2.2 Data Processing Purposes
- 2.2.1 Provides core services: Real-time automatic saving of notes, classification management, video insert playback, recycling station staging, and to-do list management.
- 2.2.2 Optimize user experience: Fix issues such as freezes and crashes using log analytics software performance, improve operational smoothness, and eliminate redundant functional interference.
- 2.2.3 Responding to User Claims: Responding to inquiries, handling complaints and feature suggestions via the email address you provide.
3. Data Storage and Protection
3.1 Storage Methods and Durations
- 3.1.1 Data storage location: All data is stored on cloud servers that comply with international security standards, use encrypted storage technology, and have limited access only to authorized personnel.
- 3.1.2 Retention period: Note content and classification data will be continuously stored until you actively delete or log out of your account; necessary operational data will be stored until collection purposes are achieved, then anonymized or permanently deleted; recycling station data will be retained for 90 days, and automatically and permanently deleted when expired.
3.2 Security Measures
- 3.2.1 Technology Protection: Use technologies such as Transport Layer Encryption (TLS), Data Encryption Storage, and Access Rights Management to prevent unauthorized access, tampering, disclosure, or destruction of data.
- 3.2.2 Operational Protection: Establish a data security management system, restrict access to internal personnel, conduct regular security audits and vulnerability remediation, and ensure compliance with data processing.
4. Data Sharing and Disclosure
- 4.1 The Software will not share, sell, or lease your personal data and notes content to any third party, except in the following circumstances:
- 4.1.1 With your explicit written consent in advance;
- 4.1.2 Disclosure to competent authorities as required by applicable laws, regulations, judicial rulings or administrative orders;
- 4.1.3 Disclosure to the extent reasonably necessary to protect the legitimate rights and public interest of you or others;
- 4.1.4 Delegation of technical support (such as server hosting) to third-party providers, third parties are required to strictly comply with this agreement and privacy regulations, only process data for the purposes of services, and are not permitted to use it for other purposes.
5. User Data Rights
- 5.1 You have the right to exercise the following data rights in accordance with applicable regulations:
- 5.1.1 Access rights: Queries on the storage of your personal data and notes contents;
- 5.1.2 Correction Right: Correct inaccurate Personal Data and Notes Content;
- 5.1.3 Delete rights: Proactively delete the contents of notes, empty recycling station data, or request to log out of an account and delete all associated data;
- 5.1.4 Data Portability Rights: Requires the export of your notes in a structured, machine-readable format;
- 5.1.5 Revocation of Consent: Revoke your consent to data processing at any time (revocation may affect the use of certain features).
- 5.2 In exercise of the above rights, you can submit a request by contacting the email address phucng19@icloud.com. We will verify and provide feedback on the processing results within 30 business days.
6. Cross-Border Data Transfer
- 6.1 If your personal data needs to be transferred across borders, we will ensure compliance with international privacy regulations by taking one of the following compliance measures:
- 6.1.1 Transfer to countries/regions deemed to have sufficient protection level by the European Commission;
- 6.1.2 International-recognized cross-border transfer mechanisms such as Standard Contractual Clauses (SCCs) and Binding Company Rules (BCRs);
- 6.1.3 Get your explicit consent and take sufficient data security measures.
7. Use of Cookies and Similar Technologies
- 7.1 This Software can use cookie technology to remember your software preferences (such as font styles, interface layout) to improve usability.
- 7.2 You can reject or delete cookies through your device browser settings, but if you disable cookies, some personalization features may not work properly.
8. Protocol Updates and Notifications
- 8.1 We may amend this Agreement in accordance with updates to privacy regulations and iterations of software functionality.
- 8.2 After the Agreement is updated, you will be notified through a pop-up window, notification, or contact mailbox in the Software that the updated Agreement is effective from the date of notification; if you continue to use this Software, it is considered that you agree to the revised Agreement.
9. Complaints and Contact
- 9.1 If you have questions, complaints, or need to exercise your data rights regarding the processing of your personal data, you can contact us by:
- 9.1.1 Contact email: phucng19@icloud.com
- 9.2 You also have the right to file a complaint with the data protection regulator in your region.
10. Other Terms
- 10.1 This Agreement is governed by international privacy regulations and data storage laws. Disputes arising from this Agreement will be prioritized to be resolved through friendly negotiation; if negotiation fails, the decision will be submitted to the authority with jurisdiction over the data storage.
- 10.2 This Agreement is effective from the date of your first use of this Software.
Leaflet Operations Team