Privacy Policy — Cigar App
◆ Privacy & Data Policy ◆

Your Privacy,
Our Commitment

Effective Date: May 25, 2026  ·  Version 1.0
Google Play Compliant Apple App Store Compliant GDPR & CCPA Ready
01

Introduction

Welcome to Cigar ("the App," "we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application.

Please read this policy carefully. If you disagree with its terms, please discontinue use of the App immediately. By accessing or using the App, you consent to the practices described herein.

Age Restriction: The Cigar App is intended solely for users who are 21 years of age or older (or the legal tobacco/cigar purchasing age in your jurisdiction). We do not knowingly collect data from or market to minors. If you are under the legal age, please do not use this App.

02

Information We Collect

We collect information that you provide directly, automatically when you use the App, and from third-party sources:

Information You Provide:

  • Account registration details (name, email address, date of birth for age verification)
  • Profile information (username, profile photo, preferences)
  • Cigar reviews, ratings, tasting notes, and journal entries you create
  • Communications with our support team
  • Payment information (processed securely by third-party payment processors — we do not store card numbers)

Information Collected Automatically:

  • Device identifiers (device ID, advertising ID where permitted)
  • Usage data (features accessed, session duration, interactions)
  • Log data (IP address, app crashes, performance data)
  • Location data (approximate location for local retailer discovery, only when permission is granted)
  • Camera/photo library access (only to add cigar photos, when explicitly permitted)
03

How We Use Your Information

We use the information we collect for the following purposes:

  • To create and manage your account and authenticate your identity
  • To provide, personalize, and improve the App's features and functionality
  • To power cigar recommendations based on your taste preferences and review history
  • To send transactional communications (account confirmations, security alerts)
  • To send marketing communications, only if you opt in
  • To process payments and manage subscriptions
  • To detect, prevent, and address fraud, abuse, and security issues
  • To comply with legal obligations and enforce our Terms of Service
  • To conduct analytics and improve product performance

We will never sell your personal data to third parties for their own marketing purposes.

04

Sharing Your Information

We may share your information only in the following limited circumstances:

  • Service Providers: Trusted vendors who help us operate the App (hosting, analytics, customer support, payment processing) under strict data processing agreements
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred with prior notice to you
  • Legal Compliance: When required by law, court order, or government authority
  • Safety: To protect the rights, property, or safety of our users or the public
  • With Your Consent: In any other circumstance where you have provided explicit consent

Public profile content (your username, reviews, and ratings) may be visible to other App users by default. You can adjust visibility in your Privacy Settings at any time.

05

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required by law. Specifically:

  • Account data is retained while your account is active and for up to 90 days after deletion to allow recovery
  • Transaction records may be retained for up to 7 years for legal and tax compliance
  • Anonymized, aggregated analytics data may be retained indefinitely
  • Backup copies may persist for up to 30 days after deletion
06

Your Rights & Choices

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data ("Right to be Forgotten")
  • Portability: Request a machine-readable export of your data
  • Objection / Restriction: Object to or restrict certain types of processing
  • Opt-Out of Marketing: Unsubscribe at any time via the link in any email or in App Settings
  • Push Notifications: Manage or disable in your device's notification settings
  • Location & Camera: Revoke permissions at any time in your device's system settings

To exercise any of these rights, contact us at privacy@stogieapp.com. We will respond within 30 days.

07

Data Security

We implement industry-standard safeguards to protect your information, including:

  • TLS/SSL encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Role-based access controls limiting who can access personal data internally
  • Regular security audits and vulnerability assessments
  • Secure deletion procedures when data is no longer needed

No method of electronic storage or transmission is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a breach, we will notify affected users and authorities as required by applicable law.

08

Third-Party Services & SDKs

The App may integrate third-party services that have their own privacy practices. These may include:

  • Firebase / Google Analytics — usage analytics and crash reporting
  • Stripe / Apple Pay / Google Pay — payment processing
  • Apple Sign In / Google Sign In — optional authentication
  • Mapbox or Google Maps — retailer location features
  • Sentry — error monitoring

We encourage you to review the privacy policies of any third-party services you interact with through the App. We are not responsible for the practices of third-party providers.

09

Platform-Specific Disclosures

Apple App Store (iOS): We comply with Apple's App Store Review Guidelines and App Privacy requirements. Our App's privacy nutrition label on the App Store accurately reflects the data types we collect. We honor Apple's App Tracking Transparency (ATT) framework — tracking will only occur after you grant explicit permission via the system prompt. We support Sign in with Apple and do not misuse data obtained through this method.

Google Play (Android): We comply with Google Play's Data Safety requirements. Our Data Safety form accurately discloses data collected, its purpose, whether it is shared with third parties, and user control options. We adhere to Google's Families Policy restrictions relevant to age-restricted content. We do not use sensitive permissions beyond what is necessary.

10

International Data Transfers

Your information may be transferred to and processed in countries other than your own. These countries may have data protection laws that differ from those in your jurisdiction. When we transfer data internationally, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or rely on adequacy decisions where applicable.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, our lawful bases for processing your personal data include: your consent, the performance of a contract with you, compliance with a legal obligation, and our legitimate interests (where not overridden by your rights).

11

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • The right to know what personal information we collect, use, and disclose
  • The right to delete personal information we have collected
  • The right to opt-out of the "sale" or "sharing" of personal information
  • The right to correct inaccurate personal information
  • The right to limit use of sensitive personal information
  • The right to non-discrimination for exercising your rights

We do not sell personal information as defined under CCPA. To submit a California privacy request, email privacy@cigarapp.com or use the in-app Privacy Request feature under Settings.

12

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. We will notify you of material changes by:

  • Posting the new policy in the App with an updated "Effective Date"
  • Sending an in-app notification or email for significant changes

Your continued use of the App after the effective date of the revised policy constitutes your acceptance of the changes. We encourage you to review this policy regularly.

13

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Email: privacy@stogieapp.com
  • Mailing Address: Stogie App, LLC · Privacy Team · [esuazo@stogieapp.com]
  • In-App: Settings → Privacy → Contact Privacy Team

For EEA users, you also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.

Cigar
Privacy Policy  ·  Effective May 25, 2026  ·  Version 1.0