Privacy Policy

Effective date: January 21, 2026

This Privacy Policy explains how EasyAuth ("we", "us", or "our") collects, uses, and shares information when you use our website and services (the "Service").

Note: This template is provided for convenience and is not legal advice. You should have counsel review this Privacy Policy for your specific data practices and jurisdiction.

1. Information We Collect

Information you provide

  • Account information such as name, email address, and/or phone number.
  • Support requests or other communications you send to us.

Information from authentication providers

If you sign in using a third-party provider (for example, Google), we receive information such as a provider user ID, your email address, and basic profile information, depending on what you authorize and what the provider shares.

Google Sign-In (Google user data)

When you choose to sign in with Google, our Service uses Google OAuth to request the following scopes: openid, email, and profile. This means we access only basic Google account information needed to authenticate you and create or link your account.

Data accessed

  • Google account identifier (OpenID “sub”).
  • Email address and email verification status (when provided by Google).
  • Basic profile information (for example, display name).

We do not request access to sensitive Google data such as Gmail content, Google Drive files, contacts, or calendars.

Data usage

  • Authenticate you and allow you to sign in to the Service.
  • Create a new account or link to an existing account (for example, by matching your verified email address).
  • Maintain account security and prevent abuse (including validation of OAuth “state”).

We use Google-provided access tokens only during the sign-in flow to retrieve your user info and we do not store those access tokens in our database.

Data sharing

  • We share information with Google as needed to complete the OAuth sign-in flow you initiate.
  • We do not sell Google user data.
  • We do not share Google user data with third parties except as described in this policy (for example, service providers) or when required by law.

Data storage & protection

If you sign in with Google, we store the Google account identifier (Google user ID) on your user record, along with your account information such as name and email address. We protect personal information using reasonable administrative, technical, and organizational safeguards. For example, account passwords are stored as hashed values.

Data retention & deletion

We retain Google account identifier and related account information for as long as your account remains active or as needed to provide the Service, comply with legal obligations, and enforce agreements. You may request deletion of your account and associated personal information by contacting us at info@naviagency.co.tz.

Information collected automatically

  • Device and browser information (such as user agent).
  • IP address and approximate location inferred from IP.
  • Logs related to authentication, security, and usage.
  • Cookies and similar technologies used for session management and security.

2. How We Use Information

We use information to:

  • Provide, operate, and maintain the Service.
  • Authenticate users and secure accounts (including fraud prevention and abuse detection).
  • Communicate with you about the Service (for example, support and important notices).
  • Monitor and improve performance, reliability, and user experience.
  • Comply with legal obligations and enforce our terms.

3. How We Share Information

We may share information with:

  • Service providers that help us operate the Service (hosting, analytics, email delivery, etc.).
  • Authentication providers when you choose to use them to sign in.
  • Legal and safety authorities when required by law or to protect rights, safety, and security.

4. Cookies and Session Storage

We use cookies and similar technologies primarily to keep you signed in, maintain session state, and protect the Service. You may be able to control cookies through your browser settings.

5. Data Retention

We retain information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods may vary depending on the type of information and purpose.

6. Security

We take reasonable measures designed to protect information from unauthorized access, alteration, disclosure, or destruction. However, no method of transmission or storage is 100% secure.

7. Your Choices and Rights

Depending on where you live, you may have rights to access, correct, delete, or object to certain processing of your personal information. You can also update certain account details within the Service.

To request help with privacy-related rights, contact us at info@naviagency.co.tz.

8. Children’s Privacy

The Service is not intended for children under the age of 13 (or other age as required by local law). We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will take reasonable steps to notify you (for example, by posting an updated effective date).

10. Contact

Questions about privacy? Contact us at info@naviagency.co.tz.