Privacy Policy

Last updated: April 12, 2026

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal Data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation

The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

• Account means a unique account created for You to access our Service or parts of our Service.
• Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
• Company (referred to as either "the Company", "We", "Us" or "Our" in this Privacy Policy) refers to Shaw Apps LLC, 1922 County Road 366, Gainesville, TX 76240.
• Consumer (for CCPA/CPRA purposes) means a natural person who is a California resident.
• Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
• Country refers to: Texas, United States.
• Data Controller means the Company, as the entity that determines the purposes and means of the processing of Personal Data.
• Device means any device that can access the Service such as a computer, a cell phone or a digital tablet.
• Personal Data (or "Personal Information") is any information that relates to an identified or identifiable individual. We use "Personal Data" and "Personal Information" interchangeably unless a law uses a specific term.
• Service refers to the Website and our mobile application(s) that include in-app purchases.
• Service Provider means any natural or legal person who processes the data on behalf of the Company.
• Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
• Website refers to Shaw Apps, accessible from https://shawapps.com.
• You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:

• Email address
• First name and last name
• Phone number
• Payment and billing information (such as credit card details or other payment method information processed through secure third-party providers when You make in-app purchases)
• Purchase history and commercial information (records of products or services purchased, obtained, or considered through in-app purchases)

Usage Data

Usage Data is collected automatically when using the Service. Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device's unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.

Sensitive Personal Information (under CCPA/CPRA and where applicable under GDPR)

We may collect or process sensitive personal information in limited cases, such as precise geolocation (if enabled) or certain payment-related data. We only use such information for the specific purposes disclosed and do not use or disclose it for additional purposes without providing the right to limit its use where required.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies We use include beacons, tags, and scripts to collect and track information and to improve and analyze Our Service.

We use both Session and Persistent Cookies for the purposes set out below. Where required by law, we use non-essential cookies (such as analytics, advertising, and remarketing cookies) only with Your consent. You can withdraw or change Your consent at any time using Our cookie preferences tool (if available) or through Your browser/device settings.

• Necessary / Essential Cookies — Type: Session Cookies. Administered by: Us. Purpose: These Cookies are essential to provide You with services available through the Service and to enable You to use some of its features.
• Cookies Policy / Notice Acceptance Cookies — Type: Persistent Cookies. Administered by: Us. Purpose: These Cookies identify if users have accepted the use of cookies on the Service.
• Functionality Cookies — Type: Persistent Cookies. Administered by: Us. Purpose: These Cookies allow Us to remember choices You make when You use the Service, such as remembering your login details or language preference.

For more information about the cookies we use and your choices regarding cookies, please see the Tracking Technologies and Cookies section of Our Privacy Policy.

Invisible CAPTCHAs

We use invisible CAPTCHA services (such as Google reCAPTCHA or similar technologies) to protect the Service from spam, abuse, fraud, and automated bots. These tools operate in the background and analyze user interactions with the Service without always requiring explicit action from You.

When You interact with the Service, the invisible CAPTCHA may automatically collect and process certain information, including but not limited to: Your IP address, device and browser information, mouse movements, scrolling behavior, typing patterns, referral URLs, and cookies set by the CAPTCHA provider.

This data helps generate a risk score to determine whether the interaction appears human or automated. The primary purpose is security and to ensure the integrity of the Service, including protecting in-app features and purchases from fraudulent activity.

The CAPTCHA service is provided by a third-party Service Provider. Your use of the invisible CAPTCHA is subject to that provider's privacy policy and terms of service.

Lawful Basis (GDPR): Processing is generally based on Our legitimate interests in protecting the Service from abuse and maintaining security.

CCPA/CPRA and CalOPPA: This involves sharing of personal information with the CAPTCHA provider for business/security purposes. We do not sell this data.

Email Communications

We send emails to You as part of providing and improving the Service. We distinguish between transactional emails and marketing emails:

• Transactional (or Service-Related) Emails: These are essential communications necessary for the performance of our contract with You or for Our legitimate interests. Examples include account registration confirmations, in-app purchase receipts, security alerts, support responses, and important service updates. Transactional emails do not require separate marketing consent and You generally cannot opt out of them.
• Marketing (or Promotional) Emails: These are occasional non-essential communications about news, special offers, new features, or events. We send these only where We have a valid lawful basis, such as Your explicit consent or legitimate interests (where permitted).

You can opt out of marketing emails at any time by clicking the unsubscribe link in every marketing email or by contacting Us. Withdrawing consent for marketing does not affect Our ability to send transactional emails.

All emails We send will include Our company name, a clear subject line, a link to this Privacy Policy, and an unsubscribe option (for marketing emails).

We use secure third-party email service providers who act as Our Service Providers and are contractually required to protect Your data.

Lawful Basis for Processing Personal Data under GDPR

We process Your Personal Data only when we have a valid lawful basis under the GDPR. Depending on the specific purpose, these bases may include:

• Performance of a contract
• Consent (which You can withdraw at any time)
• Legitimate interests (such as improving the Service, security, and fraud prevention)
• Legal obligation

For in-app purchases and transactional communications, processing is primarily based on contract performance. For invisible CAPTCHAs and occasional marketing, We rely on legitimate interests or consent as appropriate.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

• To provide and maintain our Service, including to monitor the usage of our Service.
• To manage Your Account.
• For the performance of a contract, including processing in-app purchases.
• To contact You regarding updates, security, or service-related matters.
• To provide You with news, special offers, and general information about other goods, services and events which We offer (occasionally via marketing emails).
• To manage Your requests.
• For business transfers.
• For other purposes such as data analysis, identifying usage trends, and improving our Service.

We may also use information collected via invisible CAPTCHAs to prevent fraudulent activity and secure the Service.

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We apply different retention periods to different categories of Personal Data. Unless otherwise stated, the retention periods below are maximum periods:

• User Accounts: retained for the duration of your account relationship plus up to 24 months after account closure.
• Customer Support Data: up to 24 months from closure.
• Usage Data and analytics: up to 24 months from collection.
• Email communications and purchase records: up to 24 months or as required by law.

We may retain data longer where necessary for legal obligations, security, fraud prevention, or to defend legal claims. When retention periods expire, We securely delete or anonymize the data.

Transfer of Your Personal Data

Your information, including Personal Data, may be transferred to and maintained on computers located outside of Your state, province, country or other governmental jurisdiction, including outside the European Economic Area (EEA).

For transfers from the EEA to countries without an adequacy decision (such as the United States), We implement appropriate safeguards such as the European Commission's Standard Contractual Clauses, supplemented by additional measures where necessary.

Data processed by invisible CAPTCHA providers or other Service Providers may also be transferred subject to these safeguards.

Your Data Subject Rights

GDPR Data Subject Rights (for users in the EEA)

You have the right to access, rectify, erase, restrict processing, data portability, object to processing (including for direct marketing), and withdraw consent. You also have the right to lodge a complaint with a supervisory authority. To exercise these rights, contact Us at support@shawapps.com. We will respond within one month.

California Privacy Rights (CCPA/CPRA) for California Consumers

If You are a California resident, You have the right to:

• Know what personal information We have collected about You.
• Delete Your personal information.
• Correct inaccurate personal information.
• Opt-out of the sale or sharing of Your personal information.
• Limit the use of sensitive personal information.
• Not be discriminated against for exercising these rights.

Selling or Sharing of Personal Information

We do not sell or share Your personal information as those terms are defined under the CCPA/CPRA. We only disclose personal information to trusted Service Providers (such as payment processors, third-party authentication providers, email services, hosting providers, analytics tools, and invisible CAPTCHA services) solely to the extent necessary for them to perform services on Our behalf as an integral part of operating the app. These providers are contractually prohibited from selling or sharing Your data further.

How to Exercise Your Rights

You may submit a verifiable consumer request by emailing support@shawapps.com. We will respond within 45 days (extendable where permitted). We may verify Your identity before fulfilling a request.

Disclosure of Your Personal Data

We may share Your Personal Data in the following situations:

• With Service Providers: We may share Your Personal Data with Service Providers (including third-party authentication providers, payment processors for in-app purchases, email delivery services, hosting companies, analytics providers, and security tools like invisible CAPTCHA) solely to the extent necessary for them to perform services on Our behalf and as an integral part of operating the app. These providers are contractually obligated to use Your data only for the specified purposes and not to sell or share it.
• For business transfers.
• With Affiliates (who must honor this Privacy Policy).
• With business partners (to offer products or services).
• With other users (in public areas, if applicable).
• With Your consent.

Except as described above or otherwise required by law, We do not disclose, sell, rent, or share Your personal information with any third parties outside Our company.

Security of Your Personal Data

The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially reasonable means to protect Your Personal Data, We cannot guarantee its absolute security. We implement appropriate technical and organizational measures consistent with GDPR and CCPA/CPRA expectations.

Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If We become aware that We have collected Personal Data from a child under 16 without verification of parental consent, We take steps to remove that information from Our servers.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and, where appropriate, by email or a prominent notice on Our Service. We encourage You to review this Privacy Policy periodically. Changes are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy, You can contact us:

• By email: support@shawapps.com

For GDPR, CCPA/CPRA, CalOPPA, or questions about email communications or data sharing, please specify the topic in Your request so We can assist You promptly.