Privacy Policy

Last Updated: March 20, 2025

This Privacy Policy describes our policies and procedures regarding the collection, use, and disclosure of your information when you use our service.
It also explains your privacy rights and how the law protects you.

Interpretation and Definitions

Interpretation

Words with capitalized initials have specific meanings defined under certain conditions. These definitions apply whether they appear in singular or plural form.

Definitions

• Account means a unique account created for you to access our Service or parts of our Service.
• Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest, or other securities entitled to vote for the election of directors or other managing authority.
• Application refers to MDTate, a Multiplatform application program provided by the Company.
• Company refers to The Fourth Jump Ltd. a private company registered under the laws of the State of Israel (registration number 516868577), (referred to as "the Company", "We", "Us", or "Our" in this Agreement).
• Cookies are small files that are placed on your computer, mobile device, or any other device by a website, containing the details of your browsing history on that website among its many uses.
• Country refers to Israel.
• Device means any device that can access the Service such as a computer, a cellphone, or a digital tablet.
• Personal Data is any information that relates to an identified or identifiable individual.
• Service refers to the MDTate's Application or the Website or both.
• Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service, or to assist the Company in analyzing how the Service is used.
• Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
• You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Collecting and Using Your Personal Data

This section outlines how our application collects, uses, stores, and shares your information. We take your privacy seriously and want you to understand how your information is handled when you use our application.

Types of Data Collected

Personal Data

As you use our service, we may request specific personally identifiable information that allows us to contact or identify you. This information, referred to as Personal Data, may include but is not limited to:

• Personal Information: this information may include the email address associated with your account, your first and last name, your gender and your birth date.
• Usage Data: Information automatically collected during your use of the service, such as the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers, and other diagnostic data.
• Image Information: With your prior permission, we may collect pictures from your device's camera and photo library, solely for the purpose of creating and managing your user profile within the application.

Authentication Data

Users are added to Firebase for authentication and account management, and their data is used solely for these purposes, ensuring a secure and personalized experience on our platform.

We collect personal information through Firebase Authentication to enable a variety of authentication methods, including email and password, Google Sign-In, and Apple Sign-In. When users sign up, we collect details such as their name, email address, and authentication credentials (e.g., password or third-party account data) in order to provide a secure and personalized experience. This data is stored securely on Firebase for authentication purposes, account management, and to enhance the user experience. By using our Service, users agree to the collection and storage of their data for these purposes. Additionally, we may collect data through the information users voluntarily provide during account creation or interaction with the Service, such as profile information, preferences, and settings.

Browser and Device Data

We may also collect information that your browser sends whenever you visit our Service or when you access the Service by or through a mobile device. including, but not limited to:

• The type of device you use
• Your device unique ID
• Your device operating system
• Your Device's Internet Protocol address (IP address)
• Browser type and version
• Pages visited on our app
• Time and date of your visit
• Time spent on specific pages
• Unique device identifiers and other diagnostic data

This information helps us understand how you interact with our service, allowing us to improve its functionality, optimize content, and enhance overall user experience.

Image Information

With your prior permission, we may collect pictures from your device's camera and photo library, solely for the purpose of creating and managing your user profile within the application. The image information may be uploaded to the Company's servers and/or a Service Provider's server, or it may be simply stored on your device. You can enable or disable access to this information at any time through your device settings.

Google user data

When you sign in with Google, we may collect the following types of Google user data:

• User Profiles: Includes your name, profile picture, and other profile-related information from your Google account.
• Email Addresses: The email address associated with your Google account.
• Authentication Tokens: Secure tokens used to authenticate and manage your session.

We collect and use Google user data for the following purposes:

• Personalizing User Experience: To tailor the app's content, features, and interactions to your preferences.
• Providing Access to Features: To allow you to sign in and use features that require Google authentication.
• Enhancing Functionality: To improve app functionality and provide a smoother user experience.

By signing in with Google, you consent to the collection and use of your Google account information as described above. You can manage your account permissions and revoke access at any time through your Google account settings.

Apple User Data

When you sign in with Apple, we may collect the following types of Apple user data:

• User Profiles: Includes your name, email address, and any other profile-related information provided by your Apple account.
• Email Addresses: The email address associated with your Apple ID, if shared with the app during the sign-in process. If you use Apple's "Hide My Email" feature, we may receive a unique, anonymous email address that forwards messages to your personal inbox.
• Authentication Tokens: Secure tokens used to authenticate and manage your session.

We collect and use Apple user data for the following purposes:

• Personalizing User Experience: To tailor the app's content, features, and interactions to your preferences.
• Providing Access to Features: To allow you to sign in and use features that require Apple authentication.
• Enhancing Functionality: To improve app functionality and provide a smoother user experience.

By signing in with Apple, you consent to the collection and use of your Apple account information as described above. You can manage your account permissions and revoke access at any time through your Apple ID settings.

Please note that you are not required to provide us with your Personal Data by law. However, providing this information is essential for certain functionalities of the service. You can manage your preferences and permissions in your account settings.

Data Security and Storage

We store data using MongoDB, a NoSQL database system. Our MongoDB instance is hosted on MongoDB Atlas, ensuring a scalable and reliable data storage solution.

Access to our MongoDB database is controlled through robust authentication mechanisms and role-based access controls. This ensures that only authorized individuals with the appropriate permissions can access and manage the stored data.

Sensitive data within our application is further secured using the Node.js crypto library. This library provides cryptographic functionality, allowing us to encrypt and decrypt sensitive information, adding an additional layer of protection for data at rest.

To enhance the security of data in transit, we utilize SSL encryption. This ensures that the communication between our application server and the MongoDB database is encrypted, reducing the risk of unauthorized access during transmission.

Use of Your Personal Data

The Company may utilize your Personal Data for various purposes, including:

• Providing and Maintaining our Service: This involves monitoring the usage of our Service to ensure its functionality.
• Account Management: We use your Personal Data to oversee your registration as a user, granting access to different Service functionalities available to registered users.
• Contractual Performance: Engaging in the development, compliance, and execution of contractual agreements, such as purchase contracts for products, items, or services through the Service.
• Contacting You: Communication via email, telephone calls, SMS, or other electronic means, including push notifications from mobile applications. This may include updates, informative communications, and security-related messages as necessary.
• Handling Your Requests: Attending to and managing your requests submitted to us.
• Business Transfers: Evaluating or executing mergers, divestitures, restructurings, reorganizations, dissolutions, or other sales or transfers of some or all of our assets. This may occur as part of bankruptcy, liquidation, or a similar proceeding, wherein Personal Data held by us about our Service users is transferred as an asset.
• Other Purposes: Utilizing your information for additional purposes, such as data analysis, identifying usage trends, assessing the effectiveness of promotional campaigns, and evaluating and improving our Service, products, services, marketing, and overall user experience.
• With Your Consent: Disclosing your personal information for any other purpose with your explicit consent.

Data Sharing and Third-Party Access

We may share your personal data with:

• Service Providers: To facilitate our service, provide it on our behalf, perform related services, or assist in analyzing how our service is used. These providers have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
• Analytics Providers: We use third-party analytics tools, such as Firebase Analytics, to help us understand how users interact with our app. These providers may have access to some user data, such as usage data and device information, in order to track usage patterns, optimize app functionality, and improve the user experience. These analytics services are generally used to collect anonymized data and are bound by their own privacy policies regarding data usage and collection. You can opt out of analytics tracking through your device settings or the tools provided by the analytics service.
• Affiliates: We may share Your information with Our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include Our parent company and any other subsidiaries, joint venture partners or other companies that We control or that are under common control with Us.
• Business Partners: To offer you certain products, services, or promotions, with your consent.
• External Services: If we display content from external services (e.g., through webviews or embedded media), those services may collect user data, such as cookies or usage information, in accordance with their privacy policies. These external services may track your interactions with their content. We are not responsible for the data collection practices of these external services, and we encourage you to review their privacy policies for more information.
• Legal Authorities: If required by law, to comply with legal obligations, protect and defend our rights, prevent wrongdoing in connection with our service, protect the personal safety of our users or the public, and protect against legal liability.
• For Business Transfers: We may share or transfer Your personal information in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
• For Any Other Purposes: With Your consent we may disclose Your personal information for any other purpose with Your consent.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:

• Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.
• Web Beacons. Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
• Analytics Tools. We use analytics tools like Firebase Analytics, Google Analytics, and other third-party services to collect information about how users interact with our service. This may include pages visited, features used, and other user interactions within the app. This data is used to improve the functionality of the service, optimize user experience, and personalize content. By using our Service, you consent to the collection of this data for analytics purposes.

Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser. Learn more about cookies on the Use Of Cookies And Tracking article.

We use both Session and Persistent Cookies for the purposes outlined below:

• Necessary / Essential Cookies
  • Type: Session Cookies
  • Administered by: Us
  • Purpose: These Cookies are indispensable for providing you with services available through the Website and enabling you to use its features. They authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the requested services cannot be provided, and we use them solely for this purpose.
• Cookies Policy / Notice Acceptance Cookies
  • Type: Persistent Cookies
  • Administered by: Us
  • Purpose: These Cookies identify whether users have accepted the use of cookies on the Website.
• Functionality Cookies
  • Type: Persistent Cookies
  • Administered by: Us
  • Purpose: These Cookies enable us to remember the choices you make when using the Website, such as login details or language preference. Their purpose is to provide you with a more personalized experience and eliminate the need to re-enter your preferences with each use of the Website.

Retaining and Storing Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.

The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from Your jurisdiction.

Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer.

The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.

Delete Your Personal Data

You can request deletion of your data at any time by contacting us at mdtate@thefourthjump.com or by filing out the form in https://api.thefourthjump.com/web/account_removal_request. We will process your request promptly, subject to legal and operational constraints.

Our Service may give You the ability to delete certain information about You from within the Service.

You may update, amend, or delete Your information at any time by signing in to Your Account, if you have one, and visiting the account settings section that allows you to manage Your personal information. You may also contact Us to request access to, correct, or delete any personal information that You have provided to Us.

Please note, however, that We may need to retain certain information when we have a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

Law enforcement

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).

Other legal requirements

The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

Security Measures

The security of your personal data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee its absolute security.

Some of the security measures we use are:

• Encryption: SSL encryption for data in transit and the Node.js crypto library for data at rest. Additionally, sensitive data stored locally is protected using Flutter's flutter_secure_storage to ensure encryption of user credentials and other sensitive information stored on the device.
• Firebase Security Rules: We use Firebase Authentication and Firebase Messaging to securely handle user authentication and notifications. Firebase security rules ensure that only authorized users can access their own data within Firebase databases and that all communications with Firebase are secure and protected.
• Access Controls: Role-based access controls and authentication mechanisms to ensure only authorized personnel can access data.
• Regular Audits: Regular security audits and vulnerability assessments to identify and mitigate potential security risks.

Compliance with Regulations

We comply with applicable data protection laws and regulations, Under these laws, you have rights to:

• Access your data
• Correct inaccurate data
• Request data deletion
• Restrict processing
• Data portability

To exercise these rights, contact us at mdtate@thefourthjump.com. We will respond to your request in accordance with applicable laws.

Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under the age of 16. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 16 without verification of parental consent, we take steps to remove that information from Our servers.

If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent's consent before We collect and use that information.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Your Consent

By using the Application, you consent to our data collection, usage, and sharing practices as described in this Privacy Policy now and as amended by us. We will obtain explicit consent before collecting any sensitive information or sharing your data with third parties for purposes other than those specified here.

Contact Us

If you have any questions about this Privacy Policy, You can contact us:

• By email: mdtate@thefourthjump.com