Privacy Policy

1. Introduction

This Privacy Policy (the “Policy”) describes how MemiApp Website Application Services (doing business as “MemiApp”), (“MemiApp,” “we,” “us,” or “our”) collects, uses, discloses, stores, and protects personal data in connection with the websites https://memiapp.ph/ and https://app.memiapp.ph/ (collectively, the “Service”).

MemiApp enables users to create a digital “memory vault” and record or upload messages (including text, audio, and video) that the user chooses to store and deliver to designated recipients on a future date or occasion.

By accessing or using the Service, you acknowledge that you have read and understood this Policy.

2. Who We Are

Personal Information Controller: MemiApp Website Application Services

Registered Address: Kapilis, Subabasbas 6015, City of Lapu-Lapu, Cebu, Philippines

Privacy Contact: littlerockcebu@gmail.com

3. Scope

This Policy applies to personal data we process in connection with:

• Browsing memiapp.ph (marketing site);
• Creating an account and using the Service via app.memiapp.ph;
• Customer support interactions and communications with us.

4. Personal Data We Collect

We may collect the following categories of personal data:

A. Data you provide

Account and profile data. Name, email address, password (stored in hashed form), and other profile details you choose to provide.

Memory vault content. Content you create or upload, including text, audio, and video messages and related details (e.g., titles, notes, and scheduled delivery dates). Because audio/video can identify a person, we treat such content with heightened care.

Recipient and delivery details. Information about the person(s) you wish to receive a message (e.g., name, email address, phone number, relationship, delivery date/occasion, and delivery instructions).

Payment and subscription data. Your plan selection and billing status (e.g., active/canceled, renewal date). Payment card details are typically processed by our payment processor and are not stored directly by us.

Support and communications. Messages you send to us, attachments you provide, and related metadata.

B. Data collected automatically

• Device and browser data (e.g., IP address, device identifiers, browser type, operating system, language, and approximate location derived from IP);
• Usage data (e.g., pages or screens viewed, actions taken, timestamps, referrer URLs, and error logs);
• Cookies and local storage used for essential functionality (such as login sessions) and, where enabled, analytics.

C. Data from third parties

• Payment processors (e.g., transaction confirmation and billing status);
• Email/SMS delivery providers (e.g., delivery success/failure and bounce reports);
• Analytics, hosting, and security providers (e.g., technical logs and aggregated service insights).

5. How We Use Personal Data

We use personal data for the following purposes:

• To provide, operate, and maintain the Service, including creating and managing accounts, storing user content, and delivering messages when scheduled;
• To process payments and manage subscriptions, including renewals, receipts, invoicing, and fraud prevention;
• To communicate with you regarding support requests, service updates, security notices, and account matters;
• To monitor, protect, and improve the Service, including troubleshooting, analytics (where enabled), and enforcing policies;
• To comply with applicable legal and regulatory obligations and respond to lawful requests.

6. Legal Bases for Processing

Where applicable under Philippine data protection requirements and similar frameworks, we process personal data on one or more of the following legal bases:

• Contract: processing is necessary to perform our agreement with you (e.g., providing the Service you request);
• Consent: you have provided consent for specific processing activities (e.g., certain communications or optional features);
• Legal obligation: processing is required to comply with law (e.g., accounting, tax, or lawful requests);
• Legitimate interests: processing is necessary for our legitimate interests (e.g., securing the Service and preventing fraud), balanced against your rights and interests.

7. How We Share Personal Data

We do not sell your personal data.

We may disclose personal data in the following circumstances:

A. With recipients you designate

The Service is designed to deliver the message(s) you create to the recipient(s) you choose at the date or occasion you select. Accordingly, message content and related delivery details will be shared with the designated recipient(s) upon delivery.

B. With service providers (processors)

We may engage trusted third-party service providers to perform functions on our behalf, such as cloud hosting and storage, content delivery and security, email/SMS delivery, payment processing, analytics and error monitoring, and customer support tools. These providers are authorized to process personal data only as necessary to provide services to us and are required to implement appropriate safeguards.

C. For legal, safety, and business reasons

• To comply with law, regulation, subpoena, court order, or lawful government request;
• To protect the rights, safety, and security of users, the public, and the Service;
• In connection with a corporate transaction such as a merger, acquisition, financing, reorganization, or sale of assets (subject to appropriate confidentiality and security measures).

8. International Transfers

Your personal data may be stored or processed in the Philippines and/or other jurisdictions where our service providers operate. Where personal data is transferred internationally, we take steps to ensure appropriate protections, including contractual safeguards and reasonable security measures.

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, including to comply with legal obligations, resolve disputes, and enforce agreements. By way of example:

• Account data is retained while your account is active and as needed thereafter for legitimate business and legal purposes;
• Message content is retained until delivered and/or until you delete it, subject to backups and legal retention requirements;
• Billing records are retained as required by applicable law and standard accounting practices;
• Logs and security records are retained for a limited period for security, compliance, and troubleshooting.

Backups may persist for a limited time even after deletion.

If you want to request for a deletion of your account, please visit our Account Deletion page for instructions.

10. Cookies and Similar Technologies

We use cookies, local storage, and similar technologies to operate and secure the Service, maintain sessions, remember preferences, and, where enabled, measure and improve performance. You can manage cookies through your browser settings. Some cookies are essential; blocking them may prevent certain features from working properly.

11. Security

We implement reasonable administrative, technical, and organizational measures designed to protect personal data (such as access controls, encryption in transit where applicable, and least-privilege access). However, no method of transmission over the internet or electronic storage is completely secure.

12. Your Rights

If you are a data subject under the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its implementing rules and regulations, you may have rights including the rights to be informed, access, object, rectify, erasure or blocking, damages, and data portability, subject to legal limitations.

Where permitted by law, lawful heirs or assigns may exercise certain rights on behalf of a data subject after death or incapacity.

How to exercise your rights: Email littlerockcebu@gmail.com with your request. For security, we may verify your identity before acting on a request.

You may also file a complaint with the National Privacy Commission (NPC) if you believe your rights have been violated.

13. Children’s Privacy

The Service is not intended for children. If you believe that a minor has provided personal data to us, please contact us at littlerockcebu@gmail.com so we can take appropriate action.

14. Content About Other People

Your messages may include personal data about other individuals (for example, names, photos, stories, or references). You are responsible for ensuring you have the right to share such content and for avoiding unnecessary sensitive personal data about others.

15. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. Their practices are governed by their own privacy policies.

16. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will provide additional notice as required by law. The “Last updated” date at the top of this Policy indicates when it was most recently revised.

17. Contact Us

If you have questions about this Policy or our privacy practices, or if you wish to exercise your rights, contact: