Effective Date: November 5, 2025
Last Updated: November 5, 2025
- Introduction
- Definitions
- Information We Collect
- How We Use Your Information
- Data Storage & Security
- Third-Party Services
- Your Privacy Rights
- International Data Transfers
- Children's Privacy
- Data Retention
- California Privacy Rights (CCPA)
- European Privacy Rights (GDPR)
- Changes to This Policy
- Contact Us
GoldTrak Solutions ("GoldTrak," "we," "our," or "us") is committed to protecting your privacy and ensuring transparency in how we handle your information. This Privacy Policy explains our data practices when you use the GoldTrak jewelry inventory management mobile application ("App" or "Service").
By using GoldTrak, you agree to the collection and use of information in accordance with this Privacy Policy.
This policy applies to all users of the GoldTrak mobile application, regardless of geographic location.
For purposes of this Privacy Policy:
- "Personal Data" means any information relating to an identified or identifiable individual.
- "Processing" means any operation performed on Personal Data, including collection, storage, use, or deletion.
- "You" or "User" means the individual accessing or using the App.
- "Device" means the mobile device (smartphone or tablet) on which you install and use the App.
- "Local Storage" means data stored exclusively on your Device, not transmitted to external servers.
GoldTrak stores the following information exclusively on your Device using secure local storage:
- Jewelry item descriptions, names, and categories
- Metal types, karat values, and weights
- Purchase prices, sale prices, and profit margins
- Item quantities and stock levels
- High-resolution product images and photos
- Custom notes and additional item details
- Item creation and modification timestamps
- Sales transaction details (date, time, amount, item sold)
- Purchase transaction records (supplier information, costs)
- Payment method information (for record-keeping only)
- Transaction history and audit trails
- Revenue and expense calculations
- Store name and business information
- Currency preferences (USD, EUR, etc.)
- Language selection
- Custom category definitions
- Auto-numbering settings and suffixes
- Application preferences and settings
- Calculated statistics (total inventory value, revenue)
- Sales performance metrics
- Category performance analysis
- Historical trend data for charts and reports
Important: All of the above data remains on your Device. We do NOT have access to, upload, or store any of this information on our servers.
When you submit a service request form for custom enterprise features, you may provide:
- Full name
- Email address
- Phone number (optional)
- Company name (optional)
- Description of requested services
- Any additional information you choose to include
Note: Submitting this information is entirely optional and occurs only if you actively choose to request enterprise services.
- When the App retrieves real-time gold market prices, it makes anonymous API requests to third-party gold price providers
- No personal information, user identifiers, or device information is transmitted with these requests
- These are purely informational queries with no tracking
The App may access the following technical information, which remains on your Device:
- Device operating system version (for compatibility)
- App version number (for feature availability)
- Screen resolution (for display optimization)
This technical information is used solely for app functionality and is NOT transmitted to our servers.
We are committed to minimal data collection. We explicitly do NOT collect:
- ❌ Location data - We do not track your geographic location
- ❌ Contact information - We do not access your device contacts
- ❌ Browsing history - We do not track your web browsing or app usage patterns
- ❌ Device identifiers - We do not collect advertising IDs or unique device identifiers
- ❌ Biometric data - We do not access fingerprints, face recognition, or other biometrics
- ❌ Background activity - We do not track what you do outside the App
- ❌ Social media data - We do not access or link to social media accounts
- ❌ Call or SMS data - We do not access phone calls or text messages
- ❌ Sensor data - We do not collect accelerometer, gyroscope, or other sensor data
- ❌ Account credentials - We do not require or store login credentials (no account system)
All inventory, transaction, and business data stored locally on your Device is processed solely for the following purposes:
- Inventory Management: Displaying, organizing, and tracking your jewelry items
- Transaction Processing: Recording sales and purchases
- Financial Calculations: Computing totals, profits, revenue, and inventory value
- Analytics & Reporting: Generating statistics, charts, and business insights
- Search & Filtering: Enabling you to find and organize items efficiently
- Export Functionality: Creating CSV/Excel files of your data for backup or external use
- Personalization: Remembering your preferences, language, and currency settings
- Performance Optimization: Caching data for faster app performance
- Visual Display: Rendering your jewelry images and item details
All of this processing occurs locally on your Device. We do not process this data on our servers.
When you voluntarily submit an enterprise service request, we use your provided information to:
- Respond to Inquiries: Contact you regarding your service request
- Provide Support: Answer questions about enterprise features
- Deliver Services: Fulfill custom development or integration requests
- Communicate: Send follow-up emails related to your specific request
Legitimate Interest: Processing is necessary to respond to your request and provide the services you've asked for.
We will NEVER:
- Sell or rent your contact information to third parties
- Use your information for unsolicited marketing or advertising
- Share your information with unrelated companies
- Send promotional emails without your explicit consent
Gold price data fetching serves the following purposes:
- Market Information: Providing real-time gold prices for different karats
- Historical Analysis: Displaying price trends and charts
- Business Insights: Helping you make informed pricing decisions
No personal data is transmitted when fetching gold prices. API requests are anonymous and do not contain user identifiers.
For users in the European Economic Area (EEA), our legal basis for processing includes:
- Consent: You provide consent by using the App and its features
- Contractual Necessity: Processing is necessary to provide the App's core functionality
- Legitimate Interest: We have a legitimate interest in responding to service requests and improving the App
- All inventory, transaction, and business data is stored exclusively on your Device
- Data is stored using your device's secure app-specific storage mechanisms
- Photos and images are stored in the App's private directory, inaccessible to other applications
- iOS: Uses secure iOS app sandbox and encrypted storage
- Android: Uses secure Android app-specific storage with encryption support
- Data is protected by your device's operating system security features
- You are responsible for backing up your data
- We recommend regularly exporting your inventory data as CSV/Excel files
- Device backups (iCloud, Google Backup) may include app data based on your device settings
We implement industry-standard security practices to protect your information:
- Local Encryption: Data stored using device-level encryption
- Secure Transmission: All network communications use HTTPS/TLS encryption
- No Cloud Storage: We do not maintain cloud servers with your inventory data
- Secure Coding Practices: App developed following OWASP mobile security guidelines
- Regular Updates: Security patches and updates provided through app stores
- Your data security depends on your Device's physical security
- We recommend using device lock screens, biometric authentication, and strong passwords
- If your Device is lost or stolen, your data may be accessible if not properly secured
- Limited employee access to any submitted service request information
- Email communications secured with standard email encryption protocols
- No automated processing or profiling of your inventory data (it never reaches us)
- Sent via HTTPS encrypted connection
- Relayed through Web3Forms using TLS 1.2+ encryption
- Delivered to our team email via secure email protocols
- Anonymous requests via HTTPS
- No authentication tokens or personal identifiers transmitted
- Read-only access to public market data
While we implement reasonable security measures, please be aware:
- No System is 100% Secure: Despite our best efforts, no electronic storage or transmission is completely secure
- Device Security: Local data security depends on your device's security settings
- Third-Party Risk: Services like Web3Forms have their own security practices beyond our control
- User Responsibility: You are responsible for maintaining the confidentiality of any data you export or share
If you discover a security vulnerability, please report it to: goldtrak.solutions@gmail.com
GoldTrak integrates with limited third-party services to enhance functionality. We carefully select partners with strong privacy commitments.
Service Provider: Web3Forms
Purpose: Delivers enterprise service request form submissions to our support team
When you submit a service request:
- Your name
- Email address
- Phone number (if provided)
- Message/description of services requested
- Privacy Policy: https://web3forms.com/privacy
- Terms of Service: https://web3forms.com/terms
- Data Retention: 30-90 days for delivery verification, then deleted
- GDPR Compliant: Yes
- Location: Cloud-based service (servers may be located globally)
- Security: Industry-standard encryption and security practices
- Submitting service requests is entirely optional
- You can choose not to use this feature
- You can request deletion of submitted data by contacting us
Purpose: Fetch real-time gold and precious metal market prices
- None - API requests are completely anonymous
- No personal information, user IDs, or device identifiers are transmitted
- Requests do not contain tracking parameters
- We use public gold price APIs from reputable market data providers
- Requests are read-only and retrieve publicly available price information
- API providers may log IP addresses for their own security and analytics (standard practice)
- Gold price features require internet connectivity
- You can use the App's other features without fetching price data
- Price updates only occur when you actively view price-related screens
- App distributed through Apple App Store
- Subject to Apple's privacy practices and policies
- May use iOS system features (camera for photos, local storage)
- Apple Privacy Policy: https://www.apple.com/privacy/
- App distributed through Google Play Store
- Subject to Google Play policies
- May use Android system features (camera for photos, local storage)
- Google Privacy Policy: https://policies.google.com/privacy
Important: GoldTrak does NOT use:
- ❌ Google Analytics or similar analytics platforms
- ❌ Facebook SDK or social media tracking pixels
- ❌ Advertising networks or ad IDs
- ❌ Crash reporting services that collect personal data
- ❌ User behavior tracking tools
We respect your rights regarding your personal data. Depending on your location, you may have different rights under applicable law.
Regardless of your location, you have the following rights:
- ✅ View Your Data: All your inventory and transaction data is accessible directly within the App
- ✅ Transparency: This Privacy Policy explains what data we collect and how we use it
- ✅ Export Data: Export your inventory and transactions as CSV/Excel files at any time
- ✅ Delete Data: Remove all local data by uninstalling the App
- ✅ Opt-Out: Choose not to submit service requests or use gold price features
- ✅ Local Storage: All your business data stays on your Device
- ✅ No Tracking: We do not track your behavior or create user profiles
- ✅ Minimal Collection: We collect only what's necessary for app functionality
- Access: Open the App and view your data directly
- Export: Use the built-in export feature to create CSV/Excel backups
- Delete: Uninstall the App from your Device to remove all data
- Modify: Edit or update any information directly in the App
To exercise rights regarding service request submissions:
- Access Your Data: Email us at goldtrak.solutions@gmail.com
- Request Deletion: We will delete your service request information from our records
- Correct Information: Contact us to update any submitted information
- Withdraw Consent: Request that we stop using your contact information
Response Time: We will respond to your request within 30 days.
See sections 11. California Privacy Rights (CCPA) and 12. European Privacy Rights (GDPR) for location-specific rights.
- Your inventory and transaction data remains exclusively on your Device
- No cross-border transfers occur for this data
- Data location is wherever your Device is physically located
If you submit a service request:
- Data is transmitted via Web3Forms (cloud-based service with global infrastructure)
- May be temporarily stored on servers in various countries
- Emails are delivered to our team at goldtrak.solutions@gmail.com (Gmail infrastructure)
- Web3Forms is GDPR compliant and uses Standard Contractual Clauses for EU data transfers
When data crosses borders (service requests only):
- Encryption: All transmissions use HTTPS/TLS encryption
- GDPR Compliance: Web3Forms complies with GDPR requirements
- Limited Retention: Data retained only as long as necessary (30-90 days by Web3Forms)
- Security Standards: Service providers implement appropriate technical and organizational measures
- You can choose not to submit service requests to avoid international data transfers
- All core App features work without any data leaving your Device
- International transfers occur only with your active consent (by submitting a form)
GoldTrak is a professional business application intended for commercial use in jewelry inventory management.
- Minimum Age: Not intended for use by individuals under 13 years of age (16 in the EEA)
- No Knowingly Collection: We do not knowingly collect personal information from children
- Parental Control: Parents/guardians should monitor children's device usage
If we become aware that we have collected personal information from a child without parental consent:
- We will take steps to delete that information as soon as possible
- We will terminate any service request submissions from children
- We will take reasonable measures to prevent future collection
If you believe your child has provided information to us:
- Contact us immediately at goldtrak.solutions@gmail.com
- Provide details about the information submitted
- We will promptly delete any collected information
Note: Since all inventory data is stored locally on the Device, parents can remove this data by uninstalling the App from their child's device.
- Duration: Stored indefinitely on your Device until you manually delete it
- Your Control: You can delete individual items, transactions, or all data at any time
- Uninstallation: All local data is permanently deleted when you uninstall the App
- Device Backups: May be included in device backups (iCloud, Google Backup) based on your device settings
- Duration: Retained on your Device until you uninstall the App
- Reset Option: You can reset settings to default within the App
If you submit a service request:
- Duration: 30-90 days for email delivery verification purposes
- Automatic Deletion: Automatically deleted after retention period
- Purpose: Ensures reliable email delivery and provides delivery logs
- Duration: We retain service request emails as long as necessary to respond to your inquiry
- Typical Period: Until your request is fulfilled or closed
- Deletion on Request: You can request deletion at any time by contacting us
- Business Records: We may retain limited records for legitimate business purposes (e.g., accounting, legal compliance)
We determine retention periods based on:
- Legal Requirements: Compliance with applicable laws and regulations
- Business Necessity: Operational needs and legitimate business purposes
- User Expectations: Reasonable expectations for data availability
- Data Minimization: Deleting data when no longer needed
When data is deleted:
- Local Data: Removed from Device storage using standard deletion methods
- Service Requests: Deleted from email systems and any backup systems
- Secure Practices: Following industry-standard secure deletion procedures
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA).
In the past 12 months, we have collected the following categories of personal information:
| Category | Collected | Examples | Source |
|---|---|---|---|
| Identifiers | ✅ Yes (Optional) | Name, email, phone number | Service request form submissions |
| Commercial Information | ❌ No | Purchase history, consumer profiles | N/A - Data stays on your device |
| Internet Activity | ❌ No | Browsing history, search history | N/A - We don't track |
| Geolocation Data | ❌ No | Physical location | N/A - We don't collect |
| Biometric Information | ❌ No | Fingerprints, facial recognition | N/A - We don't access |
| Professional Information | ✅ Yes (Optional) | Business name, service needs | Service request form submissions |
We use collected personal information (service requests only) for:
- Business Purposes: Responding to service inquiries and fulfilling requests
- Commercial Purposes: Providing information about enterprise features (only if you ask)
We do NOT sell your personal information. We have not sold personal information in the past 12 months.
As a California resident, you have the right to:
- Request disclosure of personal information we've collected about you
- Request categories of sources from which we collected personal information
- Request the business or commercial purpose for collecting personal information
- Request deletion of personal information we've collected from you
- We will delete your information unless an exception applies
- Opt-out of the sale of personal information (Note: We don't sell your information)
- Exercise your CCPA rights without discriminatory treatment
- We will not deny services, charge different prices, or provide different service levels
Email: goldtrak.solutions@gmail.com
Subject Line: "CCPA Privacy Request"
Include in your request:
- Your full name
- Email address used for service request (if applicable)
- Specific right you wish to exercise
- Description of your request
Verification: We may ask for additional information to verify your identity.
Response Time: Within 45 days (may extend by 45 days if needed with notice).
Free Requests: You may make 2 requests per 12-month period free of charge.
Under California Civil Code Section 1798.83, California residents can request information about disclosure of personal information to third parties for direct marketing purposes.
We do not share personal information with third parties for their direct marketing purposes.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have specific rights under the General Data Protection Regulation (GDPR).
We process personal data based on:
| Processing Activity | Legal Basis |
|---|---|
| Local data storage (inventory, transactions) | Consent - You consent by using the App |
| Service request processing | Legitimate Interest - Responding to your inquiry |
| Gold price data fetching | Legitimate Interest - Providing App functionality |
| Compliance with laws | Legal Obligation - Complying with applicable laws |
You have the following rights under GDPR:
- Obtain confirmation of whether we process your personal data
- Access your personal data and receive information about processing
- Correct inaccurate or incomplete personal data
- Request deletion of your personal data in certain circumstances
- Request restriction of processing your personal data
- Receive your personal data in a structured, machine-readable format
- Transmit your data to another controller
- Object to processing based on legitimate interests or direct marketing
- Withdraw consent at any time (does not affect lawfulness of prior processing)
- Lodge a complaint with your local Data Protection Authority (DPA)
Contact: goldtrak.solutions@gmail.com
Subject: "GDPR Data Protection Inquiry"
For users in the EU, our designated representative for GDPR matters:
Email: goldtrak.solutions@gmail.com
Email: goldtrak.solutions@gmail.com
Subject: "GDPR Rights Request"
Include:
- Your full name and contact information
- Specific right you wish to exercise
- Description of your request
- Proof of identity (if necessary for verification)
Response Time: Within 1 month (may extend by 2 months for complex requests with notice).
If you're not satisfied with our response, you can lodge a complaint with your local supervisory authority:
- EU DPA List: https://edpb.europa.eu/about-edpb/board/members_en
- UK ICO: https://ico.org.uk/
- Swiss FDPIC: https://www.edoeb.admin.ch/
Service request data may be transferred outside the EEA to:
- United States: Web3Forms infrastructure and Gmail services
- Safeguards: Standard Contractual Clauses (SCCs), GDPR-compliant service providers
- Your Control: You can opt not to submit service requests
We reserve the right to modify this Privacy Policy at any time to reflect:
- Changes in our data practices
- New legal requirements or regulations
- Improvements to our privacy protections
- New features or services
When we make material changes to this Privacy Policy:
- Effective Date: Update the "Last Updated" date at the top of this policy
- Notice: Post the updated policy in the App and on our website/GitHub repository
- Significant Changes: May provide additional notice (e.g., in-app notification or email if we have your contact)
We encourage you to review this Privacy Policy periodically. The current version is always available:
- In the GoldTrak App (Settings > Privacy Policy)
- On our GitHub repository: https://github.com/goldtrak/goldtrak-support/blob/main/PRIVACY.md
Continued use of GoldTrak after policy changes constitutes your acceptance of the updated Privacy Policy.
If you do not agree with changes, you should stop using the App and uninstall it from your Device.
For questions, concerns, or requests about this Privacy Policy or our data practices:
Email: goldtrak.solutions@gmail.com
Response Time: We aim to respond within 48 hours for general inquiries and within legally required timeframes for privacy rights requests.
For technical support or app-related questions:
Email: goldtrak.solutions@gmail.com
GitHub Support: https://github.com/goldtrak/goldtrak-support
For inquiries about custom development or enterprise features:
Email: goldtrak.solutions@gmail.com
Subject: "Enterprise Services Inquiry"
If you discover a security issue or vulnerability:
Email: goldtrak.solutions@gmail.com
Subject: "Security Vulnerability Report"
Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Your contact information (optional)
We take security seriously and will respond promptly to legitimate security reports.
For GDPR or CCPA-related requests:
Email: goldtrak.solutions@gmail.com
Subject Lines:
- "GDPR Rights Request" (for GDPR)
- "CCPA Privacy Request" (for CCPA)
GoldTrak Solutions
[Your Business Address - To be added if required by local laws]
Note: GoldTrak is a software product. We do not have physical retail locations.
🔐 Privacy-First Design
- Your inventory data never leaves your device
- We don't track, profile, or sell your information
- Minimal data collection - only what's essential
📱 Local Control
- All business data stored exclusively on your device
- You can export, delete, or modify data anytime
- Full control over your information
🔒 Strong Security
- HTTPS/TLS encryption for all network communications
- No cloud storage of your inventory data
- Industry-standard security practices
✅ Your Rights
- Access, export, and delete your data
- Opt-out of optional features
- GDPR and CCPA compliant
🌍 Transparency
- Clear disclosure of third-party services
- Version-controlled privacy policy on GitHub
- Open communication with users
🚫 What We DON'T Do
- ❌ No selling of personal information
- ❌ No advertising or tracking networks
- ❌ No unnecessary data collection
- ❌ No hidden data practices
Policy Version: 2.0
Effective Date: November 6, 2025
Last Updated: November 6, 2025
Governing Law: [To be specified based on company jurisdiction]
Jurisdiction: International (with specific provisions for California and EEA)
© 2025 GoldTrak Solutions. All rights reserved.
goldtrak.solutions@gmail.com • Terms of Service
Your privacy is our priority. We're committed to transparency and protecting your business data.