Privacy Policy

1. Introduction

Welcome to the Boost ERP mobile application ("App"), operated by Boost Training ("we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application. Please read this policy carefully. By accessing or using the App, you agree to the terms of this Privacy Policy.

2. Information We Collect

2.1 Account Information

When you register or sign in to the App, we collect the following personal information:

• Full name
• Username
• Email address
• Phone number
• Job title
• Profile picture (optional)
• Password (stored securely in encrypted form)

2.2 Device Information

To deliver push notifications and ensure proper functionality, we collect:

• Firebase Cloud Messaging (FCM) token for push notifications
• Device name
• Device platform (e.g., iOS, Android)

2.3 Task and Operational Data

Through your use of the App, we process data related to your work activities, including:

• Project tasks, opportunity tasks, and course group tasks
• Task subtasks and stage updates
• Task attachments (files you upload)
• Task review assignments

2.4 Notification Data

We maintain records of notifications sent to your device, including their read/unread status, to provide you with accurate notification management.

2.5 Authentication Data

We generate and manage access tokens and refresh tokens to maintain secure authenticated sessions. These tokens are stored locally on your device and on our servers.

3. How We Use Your Information

We use the collected information for the following purposes:

• Authentication & Access: To verify your identity, manage login sessions, and provide secure access to the App.
• Task Management: To enable you to create, view, update, and manage project tasks, opportunity tasks, and course group tasks, including subtasks and attachments.
• Push Notifications: To send you real-time notifications about task updates, assignments, and other relevant activity using Firebase Cloud Messaging.
• Profile Management: To allow you to view and update your profile information and profile picture.
• Account Recovery: To facilitate password reset and account recovery via OTP verification.
• Service Improvement: To monitor app performance, diagnose technical issues, and improve our services.

4. Data Storage & Security

We implement industry-standard security measures to protect your personal information:

• All data transmissions are encrypted using HTTPS/TLS protocols.
• Passwords are securely hashed and never stored in plain text.
• Authentication tokens have defined expiration periods and can be revoked.
• Device tokens are removed from our servers when you unregister your device or log out.

5. Data Sharing & Third Parties

We do not sell your personal data. We may share your information only in the following circumstances:

• Firebase Cloud Messaging (Google):We share your FCM device token with Google's Firebase service solely for delivering push notifications.
• Within Your Organization: Task and operational data may be visible to other authorized members of your organization as required for collaborative work.
• Legal Requirements: We may disclose information if required by law, regulation, or legal process.

6. Your Rights

You have the right to:

• Access and view your personal data through the App's profile section.
• Update or correct your profile information, including your name, email, phone number, and profile picture.
• Change your password at any time.
• Unregister your device to stop receiving push notifications.
• Request deletion of your account and associated data by contacting us.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our services. Task data and attachments are retained in accordance with your organization's data management policies. When you log out or unregister your device, device-specific tokens are promptly removed from our servers.

8. Children's Privacy

The App is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Last updated" date at the top of this page. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise any of your rights, please contact us at: