Privacy Policy

1) Overview

This Privacy Policy explains how Persian Hub collects, uses, discloses, and protects your personal information. We comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). If you are in the EEA/UK, we also outline additional GDPR rights below.

Controller: [Company legal name, e.g., Aussie Avatar Pty Ltd] (ABN [ABN]).

Contact: [privacy@yourdomain] • [postal address]

2) Information we collect

Information you provide

• Account details: name, email, password (hashed), phone, preferred language (FA/EN).
• Business details (for owners): business name, category, description, address, phone, email, website, opening hours, images, proof documents where requested.
• User content: reviews, comments, messages, flags/reports.
• Support & comms: enquiries, feedback, and correspondence.

Information we collect automatically

• Location data: precise location (when you opt in) for "Near me" results; coarse IP-based location otherwise.
• Device & log data: IP address, device type, OS, app version, timestamps, diagnostics, crash logs.
• Usage data: pages/screens visited, search queries, clicks, and interactions.

Information from third parties

• Auth providers: if you sign in with Google/Apple (name, email, profile image if you allow).
• Maps/Geocoding: address/place IDs and coordinates returned by providers.
• Payment/Promo (future): limited data to process sponsored placements or promotions.

3) How we use your information

We use personal information to:

• provide and maintain the service (account creation, authentication, listings, search, maps);
• process submissions, approvals, verification checks, and community reports;
• show relevant results (including "near me") and measure distance to listings;
• communicate service updates, moderation outcomes, and security alerts;
• improve safety (fraud/spam prevention, rate limiting) and diagnose issues;
• analyze usage to improve features and performance;
• comply with legal obligations and enforce our Terms.

Where required, we rely on your consent (e.g., precise location, marketing communications). You can withdraw consent at any time (see "Your choices").

4) Legal bases for EEA/UK users (GDPR)

Our processing is based on: contract (to provide the service), legitimate interests (to secure and improve the service, prevent abuse), consent (location, marketing), and legal obligations.

5) Sharing your information

We may share information with:

• Service providers/Processors: hosting, storage (e.g., Supabase), email/SMS, analytics, crash reporting, content moderation, and customer support tools;
• Mapping providers: e.g., Google Maps/Places to provide maps and geocoding;
• Business owners: limited data (e.g., aggregated analytics or your public review/username);
• Authorities or third parties when required by law, to protect rights, or investigate abuse;
• Successors in a merger, acquisition, or asset transfer (with safeguards).

We do not sell personal information.

6) International transfers

Our providers may store or process data outside Australia (e.g., EU or US). We take reasonable steps to ensure recipients protect your information in line with the APPs and, where applicable, GDPR transfer mechanisms.

7) Retention

We keep personal information as long as needed for the purposes above:

• Account data: while your account is active (and for a reasonable period after deletion for backups, dispute resolution, and legal compliance).
• Listings & media: while published and for a reasonable archival period after removal.
• Audit logs & security records: typically 24–36 months (longer if legally required).

When no longer needed, we take reasonable steps to de-identify or delete data.

8) Security

We use reasonable technical and organisational measures (encryption in transit, access controls, logging, least-privilege, RLS on data, etc.). No method is 100% secure; please use a strong, unique password and enable device security features.

9) Your choices & rights

• Location: You can enable/disable precise location in your device settings; "Near me" works best with precise location enabled.
• Marketing: You can opt out of non-essential emails via unsubscribe links.
• Access & correction: You may request access to, or correction of, your personal information.
• Deletion: You may request deletion of your account and associated personal information, subject to legal or operational retention needs (e.g., fraud prevention, disputes).
• EEA/UK users: You may also have rights to object, restrict processing, data portability, and lodge a complaint with your local supervisory authority.

Requests: [privacy@yourdomain]. We may need to verify your identity.

10) Cookies & similar technologies

We use essential cookies and similar technologies to keep you signed in and secure the service. We may also use analytics cookies to understand usage and improve features. You can manage cookies in your browser/app settings; disabling some may limit functionality.

11) Children

Persian Hub is not directed to children under 16. If you believe a child has provided personal information, contact us to remove it.

12) Data breaches

We assess suspected breaches promptly. If an eligible data breach occurs under Australia's Notifiable Data Breaches scheme, we will notify affected individuals and the OAIC as required.

13) Third-party sites & content

Links to third-party websites or listings are provided for convenience. Their privacy practices are their own; we encourage you to read their policies.

14) Changes to this Policy

We may update this Policy to reflect changes to our practices or legal requirements. If changes are material, we'll take reasonable steps to notify you (e.g., in-app notice). Your continued use means you accept the updated Policy.