Back to Home

Privacy Policy

EncoreBon Platform

Last Updated: January 26, 2026 Effective Date: January 26, 2026

1. Introduction

EncoreBon ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the EncoreBon mobile application ("App") and services ("Services").

By using the EncoreBon Platform, you consent to the data practices described in this Privacy Policy.

2. Information We Collect

2.1 Authentication Information

Google Authentication

When you sign in using Google authentication, we collect the following information from your Google account:

  • Google User ID (`sub` or `id`): Unique identifier provided by Google
  • Email Address: Your Google account email address
  • Full Name: Your display name from Google
  • Given Name (First Name): Your first name
  • Family Name (Last Name): Your last name
  • Profile Picture URL: URL to your Google profile picture

Collection Method: We use Google Sign-In SDK to authenticate your identity. Google provides this information to us after you grant permission.

Legal Basis: Your consent (you choose to sign in with Google)

Facebook Authentication

When you sign in using Facebook authentication, we collect the following information from your Facebook account:

  • Facebook User ID: Unique identifier provided by Facebook
  • Email Address: Your Facebook account email address (if provided)
  • Full Name: Your display name from Facebook
  • First Name: Your first name
  • Last Name: Your last name
  • Profile Picture URL: URL to your Facebook profile picture

Collection Method: We use Facebook Login SDK to authenticate your identity. Facebook provides this information to us after you grant permission.

Legal Basis: Your consent (you choose to sign in with Facebook)

Third-Party Policies: Your use of Google and Facebook authentication is also governed by their privacy policies:

2.2 Device Information

For security, fraud prevention, and app functionality purposes, we collect:

  • Device ID/Model: Unique device identifier and model information
  • Operating System: OS name and version (e.g., iOS 16.0, Android 13)
  • App Version: Version of the EncoreBon app you are using
  • Device Brand: Device manufacturer (e.g., Apple, Samsung)
  • Device Model: Specific device model (e.g., iPhone 14, Galaxy S23)
  • Device Type: Type of device (phone, tablet, etc.)
  • IP Address: Internet Protocol address (collected at device registration)
  • Device Fingerprint: Cryptographic hash (SHA256) of device characteristics

Collection Method: Automatically collected when you use the App

Storage: Up to 5 devices per user are tracked. Older devices are removed using FIFO (First In, First Out) method.

Legal Basis: Legitimate interest (security, fraud prevention, legal compliance)

2.3 Usage and Analytics Data

We collect data about how you use the App for internal analytics:

  • Purchase History: Records of purchases you make through the Platform
  • App Interactions: Features you use, screens you visit, actions you take
  • Advertisement Interactions: Ad impressions and clicks (see Section 2.4)
  • Location Data: City-level location (if provided) for geographic targeting
  • App Performance Data: Crash reports, error logs, performance metrics

Collection Method: Automatically collected through app usage

Legal Basis: Legitimate interest (improving app functionality and user experience)

2.4 Advertisement Data

When you view or interact with advertisements in the App, we track:

  • Ad Impressions: Number of times an ad is displayed to you
  • Ad Clicks: Number of times you click on an ad
  • Geographic Data: Your city location (for geographic ad targeting)
  • Ad Placement: Which screen the ad appeared on (Explore, Food Details)

Collection Method: Automatically collected when ads are displayed or clicked

Purpose: Measuring advertisement effectiveness and improving ad relevance

Legal Basis: Legitimate interest (internal analytics and ad optimization)

2.5 Transaction Data

When you make purchases through the Platform, we collect:

  • Purchase Information: Items purchased, quantities, prices, payment methods
  • Purchase Codes: Unique verification codes for purchases
  • Vendor Information: Information about vendors you purchase from
  • Transaction Timestamps: When purchases are made, verified, or cancelled

Collection Method: Collected when you complete transactions

Legal Basis: Contractual necessity (processing your purchases)

3. How We Use Your Information

3.1 Primary Uses

We use your information exclusively for internal purposes:

Account Management

  • Creating and managing your EncoreBon account
  • Authenticating your identity when you log in
  • Personalizing your experience within the App
  • Communicating with you about your account and purchases

Platform Operations

  • Processing purchases and transactions
  • Facilitating communication between Users and Vendors
  • Generating purchase verification codes
  • Managing your purchase history

Security and Fraud Prevention

  • Detecting and preventing fraudulent activity
  • Monitoring for unauthorized access
  • Protecting Platform security
  • Complying with legal and regulatory requirements

Internal Analytics

  • Analyzing app usage patterns to improve functionality
  • Identifying technical issues and bugs
  • Measuring advertisement effectiveness
  • Understanding user behavior to enhance features
  • Optimizing app performance

3.2 What We Do NOT Do

We do NOT:

  • Sell your data: We never sell your personal information to third parties
  • Rent or lease your data: We do not rent or lease your data to advertisers or data brokers
  • Share authentication data: We do not share your Google or Facebook authentication data with external parties (except as required by law)
  • Use data for unrelated purposes: We only use your data for Platform operations and internal analytics

3.3 Data Sharing

We may share your information only in the following limited circumstances:

Legal Requirements

  • When required by law, court order, or government regulation
  • To comply with legal processes or requests from law enforcement
  • To protect our rights, property, or safety, or that of our users

Service Providers

  • We may use third-party service providers (e.g., cloud hosting, analytics tools) who process data on our behalf
  • These providers are contractually obligated to protect your data and use it only for specified purposes
  • We do not authorize service providers to use your data for their own purposes

Business Transfers

  • If EncoreBon is acquired or merged with another company, your data may be transferred
  • You will be notified of any such change in ownership or control

4. Data Storage and Security

4.1 Data Storage

  • Location: Your data is stored on secure servers, primarily in Tunisia
  • Retention: We retain your data for as long as necessary to provide services and comply with legal obligations
  • Backup: Regular backups are performed to prevent data loss

4.2 Security Measures

We implement industry-standard security measures to protect your data:

  • Encryption: Data is encrypted in transit (HTTPS) and at rest
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Authentication: Secure authentication systems for account access
  • Monitoring: Continuous monitoring for security threats and vulnerabilities
  • Device Fingerprinting: Used for security and fraud detection

4.3 Data Breach Procedures

In the event of a data breach:

  • We will notify affected users as soon as possible
  • We will report breaches to relevant authorities as required by law
  • We will take immediate steps to mitigate the breach and prevent further unauthorized access

5. Data Suppression and Deletion

5.1 Right to Delete Account

You have the right to request deletion of your EncoreBon account at any time by:

5.2 Data Suppression Process

When you request account deletion, we perform a soft deletion (data suppression) process:

  1. Account Deactivation: Your account is marked as inactive (`is_active = False`)
  2. Access Revocation: You can no longer access the App or your account
  3. Label Suppression: Your account label/display name is removed from public view
  4. Active Purchase Cancellation: All active (pending) purchases are automatically cancelled
  5. Data Suppression: Your personal information is suppressed from active use

5.3 Data Retention After Deletion

Important: After account deletion, certain data is retained for legal and operational purposes:

Retained Data

  • Account Record: Your account record is retained in the database (marked as inactive)
  • Purchase History: Historical purchase records are retained for:
    • Legal and regulatory compliance
    • Accounting and tax requirements
    • Fraud prevention
    • Dispute resolution
  • Device Information: Device fingerprints and security data are retained for security purposes
  • Transaction Records: Purchase codes and transaction details are retained for legal compliance

Suppressed Data

  • Personal Information: Your name, email, and other personal identifiers are suppressed from active use
  • Public Visibility: Your account is no longer visible to other users
  • Active Access: You cannot access or use the Platform

5.4 Hard Deletion Limitations

Users with purchase history CANNOT be permanently deleted (hard-deleted) from our database due to:

  • Legal Requirements: Transaction records must be retained for legal compliance
  • Accounting Compliance: Purchase records are needed for accounting and tax purposes
  • Fraud Prevention: Historical data helps prevent fraud and abuse
  • Dispute Resolution: Records may be needed to resolve disputes

If you have made purchases through the Platform, only soft deletion (suppression) is available.

5.5 Specific Data Deletion Requests

For requests to delete specific data beyond account deletion:

  • Contact us at contact@encorebon.com
  • We will review your request and comply with applicable data protection laws
  • We will delete data where legally required, subject to legal retention obligations

6. Your Privacy Rights

6.1 Access Rights

You have the right to:

  • Access your data: Request a copy of the personal information we hold about you
  • Review your data: View your account information, purchase history, and other data through the App

To exercise this right: Contact us at contact@encorebon.com

6.2 Correction Rights

You have the right to:

  • Correct inaccurate data: Update your account information through the App
  • Request corrections: Contact us to correct any inaccurate information

To exercise this right: Use the App settings or contact us at contact@encorebon.com

6.3 Deletion Rights

You have the right to:

  • Delete your account: Request account deletion at any time (see Section 5)
  • Understand limitations: Be informed about data retention requirements

To exercise this right: Use the account deletion feature in the App or contact us

6.4 Data Portability

You have the right to:

  • Export your data: Request a copy of your data in a portable format
  • Transfer your data: Receive your data in a structured, commonly used format

To exercise this right: Contact us at contact@encorebon.com

6.5 Objection Rights

You have the right to:

  • Object to processing: Object to certain types of data processing
  • Opt out: Withdraw consent for data processing (may limit Platform functionality)

To exercise this right: Contact us at contact@encorebon.com

Note: Some data processing is necessary for Platform functionality. Objecting may limit your ability to use certain features.

6.6 Withdrawal of Consent

You have the right to:

  • Withdraw consent: Withdraw consent for data processing at any time
  • Understand consequences: Be informed about how withdrawal affects Platform access

To exercise this right: Contact us at contact@encorebon.com

Note: Withdrawing consent for essential data processing (e.g., authentication) may prevent you from using the Platform.

7. Cookies and Tracking Technologies

7.1 Mobile App Tracking

The EncoreBon mobile app uses:

  • Device Fingerprinting: To identify devices for security purposes
  • Analytics Tools: To measure app performance and usage
  • Advertisement Tracking: To measure ad effectiveness (see Section 2.4)

7.2 Third-Party Tracking

  • Google Analytics: We may use Google Analytics for app analytics (subject to Google's privacy policy)
  • Facebook Analytics: We may use Facebook Analytics for app analytics (subject to Facebook's privacy policy)

Opt-Out: You can limit tracking through your device settings, but this may affect app functionality.

8. Children's Privacy

The EncoreBon Platform is not intended for users under the age of 18. We do not knowingly collect personal information from children under 18.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at contact@encorebon.com, and we will delete such information.

9. International Data Transfers

Your data is primarily stored and processed in Tunisia. If we transfer data outside Tunisia:

  • We will ensure appropriate safeguards are in place
  • We will comply with applicable data protection laws
  • We will notify you of any significant changes to data storage locations

10. Changes to This Privacy Policy

10.1 Policy Updates

We may update this Privacy Policy from time to time to reflect:

  • Changes in our data practices
  • Legal or regulatory requirements
  • Improvements to our services

10.2 Notification of Changes

Material Changes: We will notify you of material changes through:

  • The App (in-app notification)
  • Email (if you have provided an email address)
  • Updated "Last Updated" date at the top of this Policy

10.3 Continued Use

  • Continued use of the Platform after changes constitutes acceptance of the updated Privacy Policy
  • If you do not agree to changes, you should stop using the Platform and delete your account

11. Data Protection Officer

For questions, concerns, or requests regarding your privacy rights:

  • Email: contact@encorebon.com
  • Subject Line: "Privacy Request" or "Data Protection Inquiry"
  • Response Time: We aim to respond within 30 days

12. Complaints

If you have concerns about how we handle your personal information:

  1. Contact Us First: Reach out to us at contact@encorebon.com
  2. Regulatory Authority: You may also file a complaint with the relevant data protection authority in Tunisia

13. Third-Party Links and Services

The EncoreBon Platform may contain links to third-party websites or services. This Privacy Policy does not apply to third-party services.

Third-Party Services We Use:

  • Google: For authentication (see Google Privacy Policy)
  • Facebook: For authentication (see Facebook Data Policy)
  • Payment Processors: For payment processing (subject to their privacy policies)
  • Cloud Services: For data storage and hosting (subject to their privacy policies)

We encourage you to review the privacy policies of third-party services you use.

14. Consent and Acknowledgment

By using the EncoreBon Platform, you acknowledge that:

  • You have read and understood this Privacy Policy
  • You consent to the collection, use, and storage of your information as described
  • You understand your privacy rights and how to exercise them
  • You understand that some data may be retained after account deletion for legal compliance
  • You understand that we use your data exclusively for internal purposes and do not sell it

If you do not agree to this Privacy Policy, you must not use the EncoreBon Platform.

15. Contact Information

For privacy-related questions, requests, or concerns: