Table of Contents

Introduction

Zero-Knowledge Privacy Guarantee

At Tower Apps, we've architected our systems so that we literally cannot access your personal data, even if we wanted to. Our zero-knowledge design ensures that your privacy is mathematically guaranteed, not just promised.

This Privacy Policy explains Tower Apps Inc.'s ("we," "our," or "us") revolutionary approach to user privacy. Unlike other technology companies, we've designed our systems to collect the absolute minimum data necessary for functionality, encrypt everything, and ensure you maintain complete control over your personal information.

By using our Services, you're choosing applications that prioritize your privacy above all else. This policy details exactly how we protect your data, what we never collect, and how you can verify our privacy claims through our open-source security implementations.

Information We Collect

Information You Provide Directly

  • Account Information: When you create an account, we may collect your email address, username, and password (encrypted).
  • Content: Information you create, upload, or store within our applications (notes, files, etc.).
  • Support Communications: Information you provide when contacting our support team.
  • Feedback: Surveys, reviews, and feedback you voluntarily provide.

Information Collected Automatically

  • Device Information: Device type, operating system, app version, and device identifiers.
  • Usage Analytics: App performance data, crash reports, and feature usage (anonymized).
  • Log Data: IP addresses, access times, and pages viewed (retained temporarily for security purposes).

Information We Don't Collect

What We Mathematically Cannot Access

Our zero-knowledge architecture means we cannot access your location data, contact lists, browsing history, personal files, or any sensitive information. Even our own servers cannot decrypt your data. We don't just refuse to sell your data—we literally don't have access to it.

How We Use Information

We use the collected information for the following purposes:

  • Service Provision: To provide, maintain, and improve our applications and services.
  • Security: To protect against fraud, abuse, and security threats.
  • Communication: To send important updates, security alerts, and support messages.
  • Analytics: To understand how our services are used and to improve user experience (using anonymized data).
  • Legal Compliance: To comply with applicable laws and regulations.

We process only the minimal data required for core functionality, always with your explicit consent. We have never and will never use your data for advertising, create user profiles for marketing, or sell your information to third parties. Our business model is built on user trust, not data exploitation.

Information Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties, except in the following limited circumstances:

  • Service Providers: Trusted third-party services that help us operate our business (hosting, analytics, support) under strict data protection agreements.
  • Legal Requirements: When required by law, court order, or government regulation.
  • Safety: To protect the rights, property, or safety of Tower Apps, our users, or others.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with user notification).

Any third-party services we use undergo rigorous privacy audits and are contractually bound to our zero-access data policies. We regularly audit their compliance and immediately terminate relationships with any provider that cannot meet our privacy standards.

Data Security

Military-Grade Privacy Infrastructure

We implement AES-256 encryption, elliptic curve cryptography, perfect forward secrecy, and zero-knowledge proofs. Our security infrastructure undergoes regular third-party audits by leading cybersecurity firms to verify our privacy claims.

Security Measures

  • Encryption: All data is encrypted in transit and at rest using AES-256 encryption.
  • Access Controls: Strict access controls and regular security audits of our systems.
  • Infrastructure: Secure cloud infrastructure with regular security updates and monitoring.
  • Employee Training: Regular security training for all team members handling user data.
  • Incident Response: Comprehensive incident response plan for potential security breaches.

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We continuously work to improve our security measures.

Your Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information (right to be forgotten).
  • Portability: Request transfer of your data to another service provider.
  • Restriction: Request restriction of processing under certain circumstances.
  • Objection: Object to processing based on legitimate interests.
  • Withdrawal: Withdraw consent for data processing (where applicable).

To exercise these rights, please contact us using the information provided below. We will respond to your request within 30 days.

Cookies and Tracking

We use minimal cookies and tracking technologies:

  • Essential Cookies: Required for basic app functionality and security.
  • Analytics: Anonymous usage statistics to improve our services (opt-out available).
  • Preferences: To remember your settings and preferences.

We do not use advertising cookies or third-party tracking for marketing purposes. You can control cookie settings through your browser or device settings.

Children's Privacy

Our services are not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

For users between 13-18 years old, we recommend parental guidance when using our services and encourage parents to monitor their children's online activities.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that all international transfers comply with applicable data protection laws and implement appropriate safeguards:

  • Standard Contractual Clauses approved by relevant authorities
  • Adequacy decisions by relevant data protection authorities
  • Certification schemes and codes of conduct

Policy Changes

We may update this Privacy Policy from time to time. When we do, we will:

  • Update the "Last Updated" date at the bottom of this policy
  • Notify you through our applications or via email
  • Provide a prominent notice for significant changes
  • Obtain your consent for material changes that affect your rights

Your continued use of our services after any changes indicates your acceptance of the updated Privacy Policy.

Contact Information

Privacy Questions & Data Rights

For any privacy concerns, data rights requests, or security questions, our dedicated privacy team is here to help:

Secure Email: privacy@towerapps.com

Anonymous Contact: Available through our secure contact form

Data Protection Officer: dpo@towerapps.com

Response Time: We respond to all privacy inquiries within 24 hours and data rights requests within 72 hours.

Last updated: January 15, 2025