Back
GhostPWA
GhostPWA Logo
ENRU

Privacy Policy

Last Updated: March 16, 2026 · Effective Date: March 16, 2026

1. Introduction and Definitions

Welcome to GHOSTPWA (the "Service"). This Privacy Policy ("Policy") governs the collection, use, disclosure, and protection of information when you access or use the GHOSTPWA platform, website, and related services (collectively, the "Platform").

The Service is provided by the GHOSTPWA project (hereinafter referred to as "we," "us," "our," or "GHOSTPWA").

GHOSTPWA is a neutral IT tool designed to assist traffic arbitrage professionals and webmasters in creating Progressive Web Apps (PWAs). We are not a gambling organizer, betting company, or advertiser. We provide software infrastructure only.

By accessing or using the Service, you ("Client," "User," or "you") agree to the terms of this Policy. If you do not agree, please discontinue use of the Service immediately.

Key Definitions

  • Personal Data: Any information relating to an identified or identifiable natural person.
  • Account: Your unique profile created to access the GHOSTPWA dashboard.
  • Service: The software, tools, and infrastructure provided by GHOSTPWA for PWA creation and management.
  • Created PWA: The Progressive Web App generated by you using the Service. You are the sole controller of any data collected within your Created PWA.

2. Information Collection

We adhere to the principle of data minimization. We collect only the data necessary to provide, maintain, and improve the Service.

2.1. Information You Provide

When registering or using the Service, we may collect:

  • Contact Information: Email address, Telegram username (for support and notifications).
  • Account Credentials: Encrypted passwords and authentication tokens.
  • Billing Information: Name and billing address. Note: GHOSTPWA does not store credit card numbers or full payment details. All financial transactions are processed by secure third-party Payment Gateways compliant with PCI-DSS standards.
  • Support Communications: Records of your correspondence with our support team.

2.2. Information Collected Automatically

When you access the Platform, certain data is collected automatically to ensure security and functionality:

  • Technical Data: IP address, browser type, browser version, device type, Device ID, and operating system.
  • Usage Data: Pages visited, time spent on the dashboard, click patterns, and error logs.
  • Location Data: General geographic location derived from IP address (not precise GPS data).

3. Tracking Technologies and Cookies

We use various technologies to collect information automatically. You may control some of these through your browser settings.

3.1. Cookies

  • Session Cookies: Temporary cookies deleted when you close your browser. Used for login sessions and security.
  • Persistent Cookies: Remain on your device for a set period. Used to remember preferences and analyze traffic trends.

3.2. LocalStorage and Cache

  • LocalStorage: The Service may store data locally on your device to improve performance and load times (e.g., dashboard settings).
  • Cache: Temporary files stored to speed up subsequent visits.

3.3. Push Notifications

With your consent, we may send push notifications regarding service updates, security alerts, or billing information.

  • Consent: You grant permission via your browser or device settings.
  • Control: You may revoke consent at any time through your device settings or the Service dashboard.

3.4. Client-Configured Trackers (Critical Disclaimer)

As part of the Service, you may independently integrate third-party tracking tools (e.g., Facebook Pixel, TikTok Pixel, Google Analytics) into your Created PWA.

  • GHOSTPWA Role: We provide the technical capability to insert these tags.
  • Responsibility: GHOSTPWA does not control, access, or process the data collected by these third-party tags. You are solely responsible for configuring these trackers in compliance with applicable laws and the policies of the third-party providers (e.g., Meta, TikTok).

4. Use of Data

We use the collected information for the following purposes:

  • Service Provision: To create, manage, and host your PWAs.
  • Communication: To send service-related emails, updates, and support responses.
  • Security: To detect fraud, prevent unauthorized access, and protect the integrity of the Platform.
  • Improvement: To analyze usage patterns and enhance user experience.
  • Billing: To process payments and manage subscriptions.
  • Legal Compliance: To comply with applicable laws and regulations.

5. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), our legal basis for processing Personal Data under GDPR Article 6 includes:

  • Contract Performance: Processing necessary to fulfill our Terms of Service with you.
  • Legitimate Interests: For security, fraud prevention, and service improvement.
  • Consent: Where you have explicitly agreed (e.g., marketing communications, push notifications).
  • Legal Obligation: To comply with tax, accounting, or legal requirements.

6. Data Sharing and Third-Party Integrations

We do not sell, trade, or rent your Personal Data to third parties. Data sharing occurs only in the following circumstances:

6.1. Service Providers

We engage trusted third-party vendors for infrastructure (hosting, cloud storage), payment processing, and customer support. These providers are bound by confidentiality agreements and process data only on our instructions.

6.2. Client-Configured Integrations

If you insert third-party pixels into your Created PWA, data is shared directly between your users and those third parties. GHOSTPWA is not a party to this data exchange.

6.3. Legal Requirements

We may disclose data if required by law, subpoena, or to protect the rights and safety of GHOSTPWA and others.

7. Cross-Border Data Transfers

GHOSTPWA operates globally. Your information may be transferred to, and processed in, countries other than your own.

  • Safeguards: We ensure adequate protection for cross-border transfers using mechanisms such as Standard Contractual Clauses (SCCs) or adequacy decisions as required by GDPR Chapter V.
  • Consent: By using the Service, you acknowledge and consent to such transfers.

8. Data Retention

We retain Personal Data only as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required by law.

  • Account Data: Retained while your account is active and for a reasonable period thereafter for legal compliance.
  • Usage Logs: Retained for security and analytics purposes for a limited time.
  • Deletion: Upon account termination, we will delete or anonymize your data, subject to legal obligations.

9. User Rights

Depending on your jurisdiction (GDPR, LGPD, CCPA, 152-FZ), you may have the following rights:

  • Access: Request a copy of the Personal Data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your data ("Right to be Forgotten"), subject to legal exceptions.
  • Portability: Request transfer of your data to another service provider.
  • Objection: Object to processing based on legitimate interests.
  • Withdrawal of Consent: Withdraw consent where processing is based on consent.

To exercise these rights, contact us through the support channels available on the Platform. We aim to respond within 30 days. You may also manage some preferences directly via your Account Settings.

10. Data Security

We implement commercially reasonable security measures to protect your data, including:

  • Encryption: Use of SSL/TLS encryption for data in transit.
  • Access Controls: Restricted access to Personal Data within our organization.
  • Regular Audits: Periodic security assessments.

Disclaimer: No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. Children's Privacy

The Service is not intended for persons under the age of 18. We do not knowingly collect Personal Data from minors. If we become aware that we have collected data from a minor, we will take steps to delete it immediately.

12. Changes to This Policy

We may update this Policy from time to time. We will notify you of significant changes via email or a prominent notice on the Platform. Continued use of the Service after changes constitutes acceptance of the new Policy.

13. Severability and Governing Law

If any provision of this Policy is found unenforceable, it shall be modified to the minimum extent necessary to be valid, while the remaining provisions remain in full force.

Any disputes arising in connection with this Policy shall be resolved in accordance with applicable international commercial law.

14. Language Precedence

This Policy is originally written in English. Translations may be provided for convenience. In case of any discrepancy, inconsistency, or conflict between the English version and any translated version, the English version shall prevail.

15. Contact

For any questions regarding this Policy or data practices, please contact us through the support channels available on the Platform.