Legal

Privacy & Data Security Policy

Last updated: June 30, 2026

1

Introduction

Zentify (“we,” “our,” or “us”) is committed to protecting your personal information. This Privacy & Data Security Policy explains what data we collect, how we use it, how we protect it, and your rights regarding your personal information.

By downloading, installing, or using the Zentify mobile application or any associated web services, you agree to the practices described in this policy. If you do not agree, please do not use our services.

2

Information We Collect

We collect the following categories of information when you use Zentify:

• Identity data: your full name and email address, provided via Google sign-in or manual registration. • Profile data: your user profile information including display name and profile preferences within the app. • Location data: your device's geographic location, used solely to identify the address where services will be rendered. • Usage data: information about how you interact with the app, including appointment history, selected services, and booking actions. • Device data: device type, operating system version, and anonymous device identifiers used to maintain your session. • Anonymous authentication data: a Firebase-generated anonymous user ID assigned when you first open the app, before formal registration.

3

How We Use Your Information

We use the data we collect exclusively to provide and improve the Zentify service:

• To create and manage your user account and appointment history. • To display your name in your profile and, where applicable, within community features that allow service providers to identify you. • To match your location to the correct service address and enable real-time appointment booking. • To send booking confirmations, reminders, and important service notifications via push, SMS, or email. • To resolve technical issues, improve app performance, and develop new features.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

4

Firebase & Cloud Storage

Zentify uses Google Firebase as its primary backend infrastructure. This includes:

• Firebase Authentication: manages anonymous and Google-based sign-in flows. Your authentication token is stored securely on your device and never exposed to third parties. • Firebase Firestore: a cloud-hosted NoSQL database where your profile, appointment records, and booking data are stored. Data is encrypted at rest by Google Cloud infrastructure. • Firebase Cloud Messaging (FCM): used to deliver push notifications to your device.

Google Firebase's data centers are compliant with ISO 27001, SOC 1, SOC 2, and SOC 3 standards. For more information on Google's data handling, visit the Google Privacy Policy.

5

Location Data

Zentify requests access to your device's location in order to:

• Identify the address at which you are requesting a service (e.g., home visit appointments). • Display nearby service providers based on your current or specified location.

Location access is only activated when you are actively using the booking features that require it. We do not track your location continuously or in the background. Location data is not stored permanently beyond the scope of the current service request and is not shared with third parties except as strictly necessary to complete the requested booking.

6

Third-Party Services

To operate Zentify, we integrate with a limited set of trusted third-party providers:

• Google Firebase: authentication, real-time database, and push notifications (see Section 4). • Google Sign-In: optional login method that provides your name and email address to Zentify. • Payment processors (when applicable): if in-app payments are enabled in your region, transactions are processed by a PCI-DSS-compliant payment provider. Zentify does not store your full card number or sensitive payment credentials.

Each third-party provider operates under their own privacy policy and security standards. We only share the minimum data required for those services to function.

7

Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Zentify service. Specifically:

• Account and profile data is retained until you request account deletion. • Appointment records are retained for up to 24 months after the appointment date to support dispute resolution and booking history. • Anonymous session data is automatically purged after 90 days of inactivity. • Location data tied to a specific service request is deleted after the appointment is completed or cancelled.

You may request deletion of your data at any time by contacting us at developer@mmsoft.com.do.

8

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: request a copy of the personal data we hold about you. • Rectification: ask us to correct inaccurate or incomplete information. • Erasure: request that we delete your personal data, subject to legal retention obligations. • Portability: receive your data in a machine-readable format. • Objection: object to certain types of processing, such as marketing communications. • Withdrawal of consent: withdraw any consent you have previously given at any time.

To exercise any of these rights, please contact us at developer@mmsoft.com.do. We will respond within 30 days.

9

Security Measures

We take the security of your data seriously and implement the following measures:

• Encryption in transit: all communication between the Zentify app and our servers uses TLS 1.2 or higher. • Encryption at rest: data stored in Firebase Firestore is encrypted at rest by Google Cloud. • Access controls: only authorized Zentify team members with a legitimate business need can access production data, and all access is logged. • Anonymous sessions: users who have not completed registration are assigned an anonymous Firebase UID, minimizing the personal data exposed during the initial booking flow. • Regular security reviews: we conduct periodic reviews of our security practices and update them as threats evolve.

No method of transmission or storage is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee its absolute security.

10

Children's Privacy

Zentify is not directed to children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal data without your consent, please contact us at developer@mmsoft.com.do and we will promptly delete that information.

11

Changes to This Policy

We may update this Privacy & Data Security Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by updating the “Last updated” date at the top of this page and, where appropriate, by sending an in-app notification or email.

Your continued use of Zentify after any changes become effective constitutes your acceptance of the revised policy. We encourage you to review this policy periodically.

12

Contact Us

If you have any questions, concerns, or requests regarding this Privacy & Data Security Policy or the way we handle your personal data, please contact us:

Zentify – MMSoft Email: developer@mmsoft.com.do

We are committed to resolving any concerns promptly and transparently.

Questions about your data or privacy? Our support team is here to help.

Go to Support Page