Privacy Policy
Introduction
Through the MobiLoud service, we, Fifty Pixels Ltd trading as "MobiLoud", provide website operators and other individuals with tools, services and assistance to create, publish, and manage mobile applications. This Privacy Policy explains how we collect, use, and protect information about our customers when they use:
- Our website (mobiloud.com)
- Our WordPress plugins (News, Canvas and Commerce)
- Our Shopify and BigCommerce apps
- Our app development and publishing services
Throughout this Privacy Policy, "Services" refers to all these products and services collectively, and "Customer" refers to website operators and individuals using MobiLoud's services.
Scope
This Privacy Policy applies specifically to MobiLoud's customers - the website operators and organizations using our services to create mobile applications. MobiLoud only collects data about our customers (such as when you and your team members sign up, use our dashboard, make payments, etc.).
This policy does NOT cover end-users of mobile applications created using MobiLoud. If you are an end-user of an app created with MobiLoud, please refer to that app's privacy policy.
Important Note on End-User Data
MobiLoud generally does not directly collect, track, access, or process personal data from end-users of customer apps, with one exception: our Shopify Push Notifications App, when the app is installed and used for triggering order update push notifications. For the Shopify App, we process certain end-user data as described in our separate Shopify App Privacy Policy (available at mobiloud.com/merchant-app-privacy).
For all other mobile apps, user data collection happens in these ways:
- Analytics and Tracking
- Through Firebase SDK (included by default), which sends data to Google Analytics
- You will register for and manage your own Firebase account
- Any additional analytics tools you choose to integrate
- Push Notifications
- Through OneSignal SDK (default provider) or Klaviyo
- You will register for and manage your own OneSignal or Klaviyo account
- Website Integration
- Through your website's existing functionality
- Through any third-party services already integrated with your website
- Technical Infrastructure
- The app will make requests to our systems (hosted on Cloudflare)
- We only collect standard technical data required for operation (IP addresses and HTTP headers)
- We do not collect or store any personal user data, order data, or transaction data beyond what Cloudflare automatically logs for request handling
All end-user data collection and processing happens either through your website or through third-party services that you integrate with your apps, except where explicitly stated for our Shopify App. You are responsible for ensuring appropriate privacy notices and consent mechanisms are in place for your app users.
Information We Collect
Information You Provide to Us
We collect the information that you provide to us, as a MobiLoud customer or prospect. The amount and type of information depends on the context and how we use the information. Here are some examples:
- Basic Account Information: We require individuals who sign up for a MobiLoud account, request a demo, trial, consultation or use our WordPress plugins, Shopify, BigCommerce apps to provide a name, email address, and phone number.
- Transaction and Billing Information: If you buy something from us, like a subscription to one of our plans, you will provide additional personal and payment information required to process the transaction and your payment, such as your name, company name, credit card information, VAT number and contact information.
- Credentials: When you use one of our Services, you may provide us with access or credentials for your website or app, e.g. a WordPress username and password, if you need our help to make any changes on your site, or your iTunes account credentials, for our team to publish your apps.
App Store Credentials and Publishing
When we publish apps on your behalf, we may require:
- Apple App Store credentials (Apple ID, certificates, provisioning profiles)
- Google Play Store credentials (developer account access)
- App signing keys and certificates
- App store listing content and metadata
- Website admin access
These credentials are used solely for app publication, maintenance, and updates. They are stored securely and only accessed by authorized MobiLoud team members who need them to perform app publishing tasks. We do not use these credentials for any other purpose.
Information We Collect Automatically
We also collect some information automatically:
- Log Information: Like most online service providers, we collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, unique device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. We collect log information when you use our Services or browse our website. Additionally, when end-users of your mobile apps access app configuration files hosted on our infrastructure through Cloudflare, basic technical data such as IP addresses and HTTP headers are automatically logged.
- Information About your Website: We may collect information about your website, such as what theme is in use, or if you're using WooCommerce on your site, to provide better technical support, suggest appropriate configurations for your app and ensure compatibility with the most used themes and plugins.
- Usage Information: We collect information about your usage of our Services and website. For example, we collect information about actions that you take when using our website. We also collect information about what happens when you use our Services (e.g., page views, support document searches, button clicks) along with information about your device. We use this information to provide our Services to you and to get insights on how people use our Services.
- Location Information: We may determine the approximate location of your device from your IP address. We collect and use this information to calculate how many people visit our Services from certain geographic regions.
- Information from Cookies & Other Technologies: A cookie is a string of information that a website stores on a visitor's computer, and that the visitor's browser provides to the website each time the visitor returns. Pixel tags (also called web beacons) are small blocks of code placed on websites and emails. MobiLoud uses cookies and other technologies like pixel tags to help us identify and track visitors, usage, and access preferences for our Services, as well as track and understand email campaign effectiveness and to deliver targeted ads.
How We Use Information
We use information about you as follows:
- To provide our Services – for example, to set up and maintain your account, build your apps or charge you for any of our paid Services, host your application’s configuration.
- To further develop our Services – for example by adding new features that we think our Customers will enjoy or will help them to create and manage their apps
- To monitor and analyze trends and better understand how Customers interact with our Services, which helps us improve our Services and make them easier to use
- To monitor and protect the security of our Services, detect and prevent fraudulent transactions and other illegal activities, fight spam, and protect the rights and property of MobiLoud and others
- To communicate with you about offers and promotions offered by MobiLoud and others we think will be of interest to you, solicit your feedback, or keep you up to date on MobiLoud and our products
- To comply with legal obligations and respond to lawful requests from public authorities
Information Sharing
We do not sell our Customers' private personal information. We share information about you in these limited circumstances:
Internal Sharing
We may disclose information to our subsidiaries, employees, and independent contractors who need access to provide Services or process information on our behalf. All internal recipients must follow this Privacy Policy.
Third Party Vendors
We share necessary information with third party vendors who help provide our Services, including:
- Payment processors (credit card information)
- Analytics providers
- Customer support tools
- Infrastructure and hosting providers
We require vendors to agree to privacy commitments and only share what's needed for their specific service. See the "Third Party Services" section for the complete vendor list.
Legal Requirements
We may disclose information:
- In response to a subpoena, court order, or other governmental request
- When we believe in good faith that disclosure is needed to protect rights, property, or safety
- To comply with applicable laws and regulations
Business Transfers
If MobiLoud is involved in a merger, acquisition, or sale of assets, customer information may be transferred as part of that transaction. This Privacy Policy will continue to apply to your information. We'll notify customers of any ownership changes that affect their data.
With Consent
We may share information with your explicit consent or at your direction.
Aggregated Data
We may share aggregated, anonymized data that cannot reasonably identify individual customers.
Support Requests
If you send us a support request, we may publish it (and our response) to help other customers, after removing identifying information.
Security
While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so.
Security Overview
We implement appropriate security measures to protect your Personal Data when you transmit it to us and when we store it on our systems. We regularly monitor our systems for vulnerabilities and attacks. All data processing is carried out using computers and IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.
We conduct regular reviews of our security practices and update them as needed to maintain appropriate protection of Customer data.
Access Controls
In addition to MobiLoud staff, in some cases, the Data may be accessible to certain types of persons involved with the operation of our Services (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors. The updated list of these parties may be requested from MobiLoud at any time.
International Data Transfers
When we transfer Customer data internationally, we implement appropriate safeguards including:
- Standard Contractual Clauses approved by the European Commission
- UK International Data Transfer Agreement
- Additional technical measures as required by applicable laws
Privacy Contact
While not legally required to have a Data Protection Officer, we maintain a dedicated privacy email address for handling privacy-related matters. For any privacy concerns or questions, you can contact our privacy email address at privacy@mobiloud.com.
Breach Notification
In the case of a data breach affecting your Personal Data, we will notify you and the applicable supervisory authority within 72 hours of becoming aware of it, unless the breach is unlikely to result in a risk to your rights and freedoms. Our incident response procedures include immediate investigation, mitigation measures, and clear communication with affected Customers.
Choices
You have several choices available when it comes to information about you:
Limit Information Provided
If you have an account with us, you can choose not to provide optional account information, profile information, and transaction and billing information. Please keep in mind that if you do not provide this information, certain features of our Services may not be accessible.
Electronic Communications
You may opt out of receiving promotional messages from us. Just follow the instructions in those messages. If you opt out of promotional messages, we may still send you other messages, like those about your account and legal notices.
Cookie Management
We use CookieYes for cookie consent management. When you visit our site, you can control your cookie preferences through the cookie consent banner. You can modify these choices at any time through the cookie settings link in our website footer.
Essential cookies are required for the basic operation of our Services. These cookies are necessary for core website functionality and cannot be declined. They are used based on our contract to provide you with access to our Services.
We may use functional cookies to remember your preferences and customize your experience. These cookies help us remember your settings, such as language preferences or customized views, and are based on our legitimate interests to provide you with a better user experience. You may decline these cookies, though this may impact certain website features.
Analytics cookies help us understand how Customers use our Services. We use this information to improve our Services and measure their effectiveness. These cookies collect information about your browsing behavior and usage patterns, but only with your explicit consent. This information is aggregated and anonymized where possible.
Marketing cookies enable us to deliver personalized advertisements and track their effectiveness. These cookies can follow your browsing habits across different websites and are only placed with your explicit consent. You can withdraw this consent at any time through your cookie preferences.
The duration of cookies varies by type. Session cookies are deleted when you close your browser. Persistent cookies used for analytics may remain for up to 2 years, marketing cookies for up to 180 days, and preference cookies for up to 1 year. You can remove any cookies at any time through your browser settings.
Some features of MobiLoud's websites may not function properly without certain cookies. You can set your browser to remove or reject browser cookies before using our websites, though this may limit your ability to use certain features of our Services.
If you’re in the US, when you visit or log in to our website, cookies and similar technologies may be used by RB2B (Retention.com) to associate these activities with other personal information they or others have about you, including by association with your email or home address. We (or service providers on our behalf) may then send communications and marketing to these email or home addresses. You may opt out of receiving this advertising by visiting https://app.retention.com/optout.
Data Access
You can request:
- Copies of your personal data
- Corrections to your data
- Deletion of your data
- Export of your data
Contact support@mobiloud.com to exercise these choices.
Data Retention
Personal Data shall be processed and stored for as long as required by the purpose they have been collected for.
Therefore:
- Personal Data collected for purposes related to the performance of a contract between MobiLoud and the Customer shall be retained until such contract has been fully performed
- Personal Data collected for MobiLoud's legitimate interests shall be retained as long as needed to fulfill such purposes.
Customers may find specific information regarding the legitimate interests pursued by MobiLoud within the relevant sections of this document or by contacting us.
MobiLoud may be allowed to retain Personal Data for a longer period whenever the Customer has given consent to such processing, as long as such consent is not withdrawn. Furthermore, MobiLoud may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.
International Data Transfers
MobiLoud is a worldwide service. By accessing or using the Services or otherwise providing information to us, you consent to the processing, transfer, and storage of information in and to the U.S. and other countries, which may have rights and protections that are different from those in your home country.
The Data is processed at MobiLoud's operating offices and in any other places where the parties involved in the processing are located.
Depending on your location, data transfers may involve transferring your Data to a country other than your own. To find out more about the place of processing of such transferred Data, you can check the section containing details about the processing of Personal Data.
You are entitled to learn about:
- The legal basis of Data transfers to a country outside the European Union
- Transfers to any international organization governed by public international law
- The security measures taken by MobiLoud to safeguard your Data during transfer
For specific information about where your data is processed, please refer to the Third Party Services section of this policy or contact us.
Legal Rights and Bases
Customer Rights
Customers may exercise certain rights regarding their Data processed by MobiLoud. They can withdraw their consent where previously given, object to processing of their Data carried out on legal bases other than consent, and access their Data to learn if it is being processed by MobiLoud. They may verify and seek rectification of their Data, restrict its processing, have their Personal Data deleted or removed, receive their Data and have it transferred to another controller, and lodge a complaint with a supervisory authority.
Legal Basis of Processing
MobiLoud may process Personal Data relating to Customers based on several legal grounds. When Customers have given their consent for specific purposes, such as receiving marketing communications, using non-essential cookies, or collecting certain analytics data, we process data based on this consent. Processing may also be necessary for the performance of an agreement with the Customer, including account creation and management, service delivery and customization, payment processing, and technical support.
Where we have legal obligations, we process data as required by applicable laws and regulations, such as maintaining tax and accounting records, retaining business records, responding to legal requests, and reporting security incidents as required by data protection laws.
MobiLoud may also process Personal Data for the purposes of our legitimate interests, provided these interests are not overridden by the Customer's rights. These legitimate interests include improving and developing our Services, preventing fraud and ensuring security, analyzing business operations, and managing customer relationships. For each legitimate interest, we have conducted balancing tests to ensure Customer rights are protected.
Customers should note that when processing is based on legitimate interests, they have the right to object by providing grounds relating to their particular situation. For direct marketing purposes, Customers may object at any time without providing any justification.
Right to Object
Where Personal Data is processed for a public interest, in the exercise of an official authority, or for legitimate interests, Customers may object to such processing by providing a ground related to their particular situation to justify the objection.
Customers must know that, should their Personal Data be processed for direct marketing purposes, they can object to that processing at any time without providing any justification. To learn whether MobiLoud is processing Personal Data for direct marketing purposes, Customers may refer to the relevant sections of this document.
Exercising Your Rights
Any requests to exercise Customer rights can be directed to MobiLoud through the contact details provided in this document. These requests can be exercised free of charge and will be addressed as early as possible and always within one month.
Additional Information
Third Party Services
Personal Data is collected for the following purposes and using the following services:
Analytics
The services contained in this section enable us to monitor and analyze web traffic and can be used to keep track of your browsing behaviour on our website.
Google Analytics (Google Inc.)
Personal Data processed: Cookies; Usage Data.
Place of processing: US – Privacy Policy – Opt Out
PostHog
Personal Data processed: Usage Data; behavioral analytics data.
Place of processing: US/EU – Privacy Policy
Appfigures
AppFigures provides analytics for mobile app downloads, reviews, and performance metrics. We use this service to monitor app reviews and identify potential issues that need resolution.Data processed: App store metrics (download numbers, app rankings), public app reviews.
Place of processing: US – Privacy Policy
Note: Customers can opt out of this monitoring service by contacting support@mobiloud.com.
Google Tag Manager
Personal Data processed: Usage Data.
Place of processing: US – Privacy Policy
Customer Relationship Management
Service Provider Pro
Personal Data processed: Name; email; company details; billing information.
Place of processing: EU – Privacy Policy
Intercom (Intercom Inc.)
Personal Data processed: email address; various types of Data.
Place of processing: US – Privacy Policy
Pipedrive CRM
Personal Data processed: email address; phone number; various types of Data.
Place of processing: US – Privacy Policy
Xero
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: New Zealand – Privacy Policy
Advertising and Marketing
Facebook Ads conversion tracking (Facebook pixel)
Personal Data processed: Cookies; Usage Data; device identifiers; IP addresses; customer list data.
Place of processing: US – Privacy Policy
Google Ads conversion tracking
Personal Data processed: Cookies; Usage Data; conversion actions; customer match data.
Place of processing: US – Privacy Policy
LinkedIn Insight Tag
Personal Data processed: URL data; device metadata; page events; form submissions.
Place of processing: US – Privacy Policy
Perfect Audience (NowSpots, Inc.)
Personal Data processed: Cookies; Usage Data.
Place of processing: US – Privacy Policy – Opt Out
RB2B (Retention.com)
Personal Data processed: Email addresses; customer behavior data.
Place of processing: US – Privacy Policy
Forms and Data Collection
Tally
Personal Data processed: Form submissions; user inputs.
Place of processing: US – Privacy Policy
Infrastructure and Hosting
Amazon Web Services (AWS)
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: Global – Privacy Policy
Digital Ocean
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: US – Privacy Policy
Google Cloud Storage
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: US – Privacy Policy
Cloudflare
Cloudflare filters all the traffic through MobiLoud, i.e., communication between mobiloud.com, our web apps, and your browser. Additionally, Cloudflare hosts configuration files necessary for your mobile apps to function, and logs basic technical data (such as IP addresses and HTTP headers) from app users accessing these files. This data is used solely for operation and maintenance purposes.
Personal Data processed: Cookies; IP addresses; HTTP headers; various types of Data.
Place of processing: US – Privacy Policy
Webflow
Personal Data processed: Website usage data; form submissions.
Place of processing: US – Privacy Policy
Payment Processing
PayPal (PayPal Inc.)
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: US – Privacy Policy
Stripe (Stripe Inc)
Personal Data processed: various types of Data as specified in the privacy policy of the service.
Place of processing: US – Privacy Policy
Customers may opt out of many of these services through their provided opt-out mechanisms or by contacting us. For detailed information about any service's data practices, please refer to their respective privacy policies.
System Logs and Maintenance
For operation and maintenance purposes, MobiLoud and any third-party services may collect files that record interaction with our Services (System logs) and use other Personal Data (such as IP Address) for this purpose.
California Privacy Rights
If you are a California resident, you have the following additional rights:
- The right to know what personal information we collect and how it is used and shared
- The right to delete personal information collected from you
- The right to opt-out of the sale of your personal information
- The right to non-discrimination for exercising your privacy rights
California's "Shine the Light" law permits California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes.
To make a request under California privacy laws, contact support@mobiloud.com.
Changes to This Privacy Policy
MobiLoud reserves the right to make changes to this privacy policy at any time by notifying Customers on this page and possibly sending a notice via any contact information available. Changes will be effective when posted to this page.
Should the changes affect processing activities performed on the basis of Customer consent, MobiLoud shall collect new consent where required.
Children's Privacy
Our Services are not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe we may have collected information about a child, please contact us at support@mobiloud.com.
Definitions
Personal Data: Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.
Usage Data: Information collected automatically through our Services, which can include: the IP addresses or domain names of the computers utilized by Customers, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized, the various time details per visit (e.g., the time spent on each page) and the details about the path followed within our Services with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the Customer's IT environment.
Customer: The individual or organization using MobiLoud's Services who, unless otherwise specified, coincides with the Data Subject.
Data Subject: The natural person to whom the Personal Data refers.
Data Processor (or Data Supervisor): The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.
Data Controller: MobiLoud (Fifty Pixels Ltd), which determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of our Services.
Services: The services provided by MobiLoud as described in our terms and on our website.
European Union (or EU): Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.
Cookie: Cookies are Trackers consisting of small sets of data stored in the Customer's browser.
Tracker: Tracker indicates any technology – e.g Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting – that enables the tracking of Customers, for example by accessing or storing information on the Customer's device.
Legal Information and Jurisdiction
This privacy statement has been prepared based on provisions of multiple legislations, including:
- Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation)
- California Consumer Privacy Act (CCPA)
- California Privacy Rights Act (CPRA)
- Other applicable privacy laws
Governing Law
This policy shall be governed by and construed in accordance with the laws of England and Wales. Any disputes shall be subject to the exclusive jurisdiction of the courts of England and Wales.
This privacy policy relates solely to MobiLoud, if not stated otherwise within this document.
For questions about this policy, please contact:
Fifty Pixels Ltd
209 High Road, N2 8AN
London, UK
Email: support@mobiloud.com
Date last updated: December 13th 2024