Privacy Policy

This Privacy Policy explains how COVACHI processes personal data required to provide account access, authentication, subscription management, payment handling, support and security for the service.

The controller/operator details are intentionally neutral until the UK company is registered. Service brand: COVACHI. Intended future jurisdiction: England and Wales. Legal entity: to be confirmed. Contact: support@covachi.com. Website: https://app.covachi.com.

Data we may process includes email address, account identifier, authentication code status, subscription plan, subscription status, access expiration date, device-key identifiers, support messages, payment metadata, provider payment reference, service emails and security-related technical records.

COVACHI does not intentionally store browsing history, visited websites, DNS query history, message contents, traffic contents or customer activity logs for resale or advertising profiling.

Limited technical logs may exist at system, application, payment, email or infrastructure level for security, abuse prevention, debugging, service reliability, fraud prevention, legal compliance and server administration. Production configuration is intended to minimise logs and avoid exposing customer secrets.

Payment processing may be handled by third-party payment providers. COVACHI may receive payment status, invoice/reference identifiers, amount, plan information and payer/account metadata. COVACHI does not need to store full bank card details.

Service emails may be sent for authentication, setup instructions, renewal, payment status, support and important service notices. These emails are necessary for account operation and service delivery.

The purposes of processing include account creation, authentication, access provisioning, subscription management, payment processing, renewal, support, fraud prevention, abuse prevention, service security, troubleshooting, legal compliance and business administration.

The legal bases may include performance of a contract or steps requested before entering a contract, legitimate interests in operating and protecting the service, compliance with legal obligations, and consent where consent is specifically requested.

Data is retained only as long as reasonably necessary for the purposes described in this Policy. Account and subscription records may be kept while the account is active. Payment, tax, abuse-prevention, legal and accounting records may be kept for longer where required by law or legitimate business need.

Users may request access, correction, deletion, restriction, objection, portability where applicable, and withdrawal of consent where consent is the relevant lawful basis. Some requests may be limited where retention is required for legal, accounting, security or fraud-prevention reasons.

Users may contact support@covachi.com for privacy requests. The request should include the account email and a clear description of the request. Additional verification may be required before account-related data is disclosed or changed.

COVACHI may use hosting, infrastructure, email, payment, security and support providers as processors or independent providers where required to deliver the service. These providers should process data only as needed for their role.

COVACHI does not knowingly provide the service to children under the age required by applicable law. If a parent or guardian believes a child has provided personal data, they may contact support for review.

This Policy may be updated to reflect service, legal, provider or operational changes. The version date shown on this page identifies the current version.