Privacy Policy

Last updated: 2026-04-19

This Privacy Policy describes how GetCheats Support (the "Service", "we", "us") collects, uses, stores, and protects your personal information when you use our customer support ticketing application for iOS and Android (the "App"). We are committed to handling your data responsibly and transparently.

1. Who We Are

GetCheats Support is a customer support ticketing service that allows users to submit support requests, exchange messages with our support team, and receive real-time notifications about ticket status. The Service is operated by the owner of the App; contact details are available in the "Contact Us" section below.

2. Information We Collect

We collect only the data necessary to provide the Service. Specifically:

• Account identifiers: email address and nickname (if provided). Email is used exclusively for one-time verification codes and re-authentication during account deletion.
• Authentication data: a device-unique installation identifier (UUID generated on first launch), a hashed PIN (never transmitted in plain text), and, if you opt in to biometric unlock, an encrypted refresh token bound to your device's Secure Enclave / Keystore.
• Support ticket content: the text messages you send, photo attachments you upload, and the corresponding timestamps. This content is shared between you and our support team only.
• Push notification token: an opaque device token issued by Apple Push Notification Service (APNs) or Google Firebase Cloud Messaging (FCM), used to deliver notifications about ticket activity.
• Technical metadata: platform (iOS / Android), app version, and connection status — used for service reliability, never for profiling or advertising.

We do not collect: your real name, phone number, precise location, contacts, calendar, microphone input, camera images captured by the device camera, biometric identifiers themselves (Face ID / Touch ID never leave the device — we only receive a yes/no result), advertising identifiers, or any behavioral tracking data.

3. How We Use Your Information

Your information is used strictly to operate the Service:

• Authenticate you and keep your session secure.
• Deliver messages and notifications about your support tickets.
• Display attached photos within your ticket thread.
• Verify account ownership when you request account deletion.
• Diagnose service outages and prevent abuse.

We do not use your data for advertising, behavioral profiling, market research, or sale to third parties. We do not sell, rent, or trade your personal information under any circumstances.

4. Legal Basis for Processing

For users in the European Economic Area, the United Kingdom, and other jurisdictions requiring a legal basis under applicable data protection law, we rely on:

• Performance of a contract: processing your account data and ticket content is necessary to provide the Service you requested.
• Legitimate interest: maintaining service security, preventing abuse, and diagnosing technical issues.
• Consent: explicit consent for push notifications, biometric unlock, and access to your photo library (you may revoke consent at any time in device settings).
• Legal obligation: where required by law to retain records of communications.

5. Data Storage and Security

Your data is stored on secured servers operated on our behalf. All network communication between the App and our backend uses TLS encryption. On your device, authentication secrets are stored in the operating system's secure enclave (iOS Keychain or Android Keystore) with hardware-backed protection where available. Photo attachments are served over HTTPS and are not indexed by search engines.

We employ industry-standard technical and organizational measures, including access controls, encrypted backups, and periodic security reviews. Despite these measures, no system is perfectly secure — please use a strong PIN and keep your device's operating system up to date.

6. Third-Party Services

We use a minimal set of infrastructure providers, none of which have access to the content of your tickets:

• Apple Push Notification Service (APNs) — delivers push notifications on iOS. Apple receives an opaque device token and the notification payload (subject, short preview); content is never analyzed for advertising.
• Google Firebase Cloud Messaging (FCM) — delivers push notifications on Android. Same scope as APNs.
• Expo Push Service — routes push notifications to APNs/FCM. Expo acts as a pass-through relay; it does not persist notification payloads.
• Cloud hosting provider — our backend infrastructure. Stores encrypted ticket data at rest.

We do not use analytics, advertising networks, or any third-party tracking SDKs. Our App contains no Facebook SDK, no Google Analytics, no AppsFlyer, no Firebase Analytics, and no similar services.

7. Data Retention

We retain data only as long as necessary to deliver the Service:

• Active ticket content — retained for the lifetime of the ticket.
• Closed (archived) tickets — retained in the archive so you can reference past conversations. Archived tickets are not used for any purpose other than display to you.
• Authentication tokens — rotated automatically; revoked immediately on logout or account deletion.
• Deleted accounts — personal data is purged irreversibly within 30 days of account deletion (see Section 9).

8. Your Rights

Depending on your jurisdiction, you have the following rights regarding your personal information:

• Access: you can view your ticket history directly within the App.
• Rectification: you can request corrections to your profile data by contacting us (see Section 13).
• Erasure: you can delete your account and all associated data from within the App (see Section 9).
• Objection and restriction: you can revoke biometric, push notification, and photo library permissions in your device settings at any time.
• Portability and complaint: you may request a copy of your data or lodge a complaint with your local data protection authority by contacting us.

9. Account Deletion

You can delete your account at any time, without contacting support, directly from within the App:

1. Open the App and go to "Settings".
2. Tap "Delete Account" at the bottom of the screen.
3. Confirm your intent and enter the verification code sent to your email.

Upon confirmation, we irreversibly delete your account identifiers, ticket history (including all messages and attachments), push tokens, and biometric refresh tokens. Aggregated, non-identifying operational logs may be retained for up to 90 days for security and abuse-prevention purposes, after which they are automatically purged.

10. Children's Privacy

The App is not directed to children under 13 (or the equivalent minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete such information promptly.

11. International Data Transfers

Our infrastructure is located in a single region. If you access the Service from outside this region, your data will be transferred across borders. Where required by law, such transfers are made under Standard Contractual Clauses or equivalent safeguards.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page and, for material changes, notify you through the App. Continued use of the Service after such notice constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions, to exercise your rights, or to report a concern, contact us at support@tickets.getcheats.io. We aim to respond to all privacy requests within 14 days.