Privacy & Data Protection

Privacy Policy

DreamsApp is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your information when you use our virtual trading and communication platform.

Last updated: May 6, 2026 Version 1.0.0

Our core promise: We never sell or share your personal data with third parties for marketing purposes. Your trading activity and messages are used solely to operate and improve DreamsApp.

Overview

DEVELOPER

Taghyeer Information Technologies

APP NAME

DreamsApp

CONTACT EMAIL

dreamsapp@taghyeer.ai

DreamsApp ("we," "us," "our," or "the App") is a mobile platform combining virtual precious metals trading, real-time messaging, and a referral network. This Privacy Policy explains how we collect, use, and protect your information when you use our iOS and Android application.

Key Privacy Principles

Security by Design — User data is protected at every layer
Data Minimization — We collect only what is necessary to operate the platform
User Control — You can access, correct, or delete your data at any time
Transparency — We clearly explain what we collect and why
No Marketing Sales — Your data is never sold to advertisers or third parties

Information We Collect

1.1 Account & Identity Information

  • Phone number (used for OTP authentication)
  • Full name, date of birth, nationality (collected during KYC)
  • Government-issued identity documents (ID card, passport — for KYC verification)
  • Profile photo (optional)
  • Business account names and linked account details

1.2 Trading Activity

  • Buy and sell orders for Gold and Silver
  • Trade history (open and closed positions)
  • Real-time P&L, net balance, and margin usage data
  • Linked trading account identifiers
  • Account switcher preferences

1.3 Communication Data

  • Personal (direct) messages between users
  • Business channel messages and group conversations
  • Business entities you browse or join
  • Message timestamps and read status

1.4 Affiliation & Referral Data

  • Referral codes you generate or use
  • Affiliate connections and partnership records
  • Network growth activity and referral timestamps

1.5 Technical & Device Information

  • Device type, operating system version
  • App version and session identifiers
  • IP address and approximate location (for fraud prevention)
  • Push notification tokens

1.6 Information NOT Collected

We do NOT collect:

Precise GPS location
Browsing history
Contacts or address book
Calendar data
Health or biometric data
Advertising ID
Social media accounts
Financial account passwords

How We Collect Information

2.1 Directly From You

When you register, complete KYC, execute trades, send messages, configure your profile, or use the affiliation system.

2.2 Automatically

We automatically collect session data, trading activity timestamps, and device information when you use the app to ensure platform stability, security, and a personalized experience.

2.3 From Third Parties

We may receive data from KYC verification partners to validate identity documents, and from linked trading infrastructure to stream live market prices. We do not receive data from ad networks or social platforms.

How We Use Your Information

TRADING

Execute virtual trades, stream live Gold & Silver prices, display P&L and portfolio history across your accounts.

COMMUNICATION

Deliver personal messages and business channel conversations, and send relevant push notifications.

COMPLIANCE

Verify identity via KYC, prevent fraud, comply with legal obligations, and maintain platform security.

3.1 Additional Uses

Manage your referral network and affiliation records
Support multiple business account switching
Provide customer support and respond to inquiries
Improve platform features and fix bugs

3.2 What We DON'T Do

We do NOT sell your data, share it with advertisers, use it for targeted ads, profile you for credit decisions, or share your trading activity with unrelated third parties.

Data Storage & Security

4.1 Where Data is Stored

DreamsApp is a connected platform. Account, trading, chat, and affiliation data is securely stored on our servers to enable real-time functionality across devices.

  • Server-side: Account profiles, KYC records, trade history, chat messages, affiliation data
  • Device-side: Session tokens, local preferences, push notification settings
  • Data centers: Hosted on secured, access-controlled infrastructure

4.2 Security Measures

TLS/HTTPS encryption for all data in transit
Encrypted storage for sensitive fields (KYC documents, tokens)
OTP phone authentication — no plain-text passwords
WebSocket connections secured with authentication tokens
Access controls and role-based permissions on server infrastructure
Regular security reviews and dependency updates

4.3 Data Retention

Account data retained while your account is active
Trade history retained per regulatory requirements
KYC documents retained as required by identity verification obligations
Chat messages retained for platform operation; deletable by users
Data deleted upon account deletion request within 30 days

Data Sharing & Disclosure

5.1 KYC Verification Partners

To verify your identity, we share document data with licensed KYC/AML service providers. These partners are contractually bound to process data solely for verification purposes.

5.2 Trading Infrastructure

Live price feeds and trade execution may involve integrated trading infrastructure. Only the minimum necessary data (account identifiers and order parameters) is shared.

5.3 No Marketing Sharing

We do NOT share your data with advertisers, data brokers, social platforms, or analytics companies for marketing purposes.

5.4 Required Disclosures

We may disclose data if required by applicable law, court order, regulatory authority, or to protect the safety and rights of users and the platform.

Permissions & How We Use Them

6.1 Permissions Requested

POST_NOTIFICATIONS (Android 13+)

For trade alerts, chat message notifications, KYC status updates, and affiliation activity. Only sent when relevant events occur.

INTERNET

Required for all core features — live trading prices (WebSocket), chat, KYC submission, and account sync.

READ_EXTERNAL_STORAGE / CAMERA (optional)

Only requested if you choose to upload a profile photo or submit KYC documents from your device. Not required for trading or chat.

6.2 Permissions NOT Requested

We do not request Precise Location, Microphone, Contacts, Calendar, SMS, or Biometric access.

User Rights & Data Control

7.1 Your Rights

Access: View your account data, trade history, and profile at any time in the app
Correct: Edit your profile information and preferences
Delete: Request full account deletion including all associated data
Export: Request a copy of your personal data by contacting support
Opt-out: Disable push notifications at any time via device settings
Withdraw KYC consent: Contact support to request removal of KYC documents

7.2 How to Exercise Your Rights

Profile → Edit AccountSettings → Delete AccountEmail: dreamsapp@taghyeer.aiDevice Settings → Notifications

Children's Privacy

8.1 Age Requirement

DreamsApp is not intended for users under the age of 18. The platform involves virtual financial trading and requires KYC identity verification, which presupposes adult legal capacity. We do not knowingly collect data from minors.

8.2 Discovery of Minor Accounts

If we become aware that a user under 18 has registered, we will suspend the account and delete associated data promptly. To report such a case, contact dreamsapp@taghyeer.ai.

International Data Protection

9.1 GDPR (European Union)

Users in the EU have rights to access, rectification, erasure, restriction, and portability. Legal basis for processing: contract performance and legitimate interest.

9.2 CCPA (California, USA)

California residents have rights to know, delete, and opt out of the sale of personal information. We do not sell personal data.

9.3 Other Jurisdictions

We strive to comply with applicable privacy laws in all regions where DreamsApp operates, including Bangladesh, India, UAE, Canada (PIPEDA), Australia, UK, and Brazil (LGPD).

Data Breaches & Security Incidents

10.1 Prevention

We employ encryption in transit and at rest, access controls, and regular security audits to prevent unauthorized access to user data.

10.2 Incident Response

In the event of a confirmed data breach, we will notify affected users via the app and/or registered contact within 72 hours of discovery, as required by applicable law. We will provide details of what was affected and steps taken to mitigate harm.

Updates to This Policy

We may update this Privacy Policy to reflect changes in our platform, legal requirements, or data practices. Significant changes will be communicated via in-app notification. Continued use of DreamsApp after an update constitutes acceptance of the revised policy.

Version 1.0.0 (May 6, 2026)

Contact Us

For any privacy concerns, data requests, or questions about this policy, reach our team at:

dreamsapp@taghyeer.ai

Response time: 24–48 hours

Summary

What We CollectAccount info, KYC documents, trade history, chat messages, referral data, and device identifiers.
How We Store ItSecurely on our servers with encryption in transit and at rest. No data is sold to third parties.
What We Don't DoNo selling data, no advertising profiling, no sharing with unrelated third parties.
Your ControlEdit profile, delete account, disable notifications, or contact us to export your data.
✅ Google Play Store Requirements✅ Apple App Store Guidelines✅ GDPR / CCPA Compliance✅ KYC / AML Standards

Your Privacy is Our Priority

"Thank you for trusting DreamsApp with your trading and communication."

© 2026TAGHYEER INFORMATION TECHNOLOGIES. ALL RIGHTS RESERVED.   POLICY VERSION: 1.0.0 (MAY 6, 2026)