Privacy Policy

Embo Legacy

Last Updated: May 19, 2026

1. Information We Collect

a. Account Registration Data

  • Full name
  • Email
  • Password (bcrypt hashed)
  • Gender
  • Date of birth

b. Profile Data (Optional)

  • Biography
  • Geographical region
  • Current profession
  • Historical work experience
  • Social media links
  • Grandfather's name

c. Lineage & Ancestral Data

  • Father's name
  • Grandfather's name
  • Known relatives
  • Birth/death dates
  • Spouses
  • Suggested lineage placements

d. Payment & Subscription Data

We process subscriptions using RevenueCat and native App Store/Google Play Store billing systems. We do not store or collect payment card details.

e. Technical Data

  • Device details
  • Operating system version
  • Unique device identifiers
  • IP address
  • JWT session tokens

2. How We Use Data

We use your data to:

  • Create, secure, and manage your account
  • Render and update your private and public ancestral family trees
  • Process and validate lineage claims
  • Moderate the community workspace and prevent abuse
  • Manage premium subscriptions via RevenueCat/App Stores
  • Comply with POPIA, GDPR, and other legal regulatory obligations

3. Data Sharing

We do not sell personal data. We may share data:

  • With platform administrators and lineage verifiers
  • With service providers (Supabase database, hosting, RevenueCat)
  • With law enforcement or regulatory authorities where required by South African law
  • To protect safety, rights, and platform security

4. Legal & Compliance Disclosure

We may disclose user data, including lineage submissions and activity, to law enforcement or regulatory authorities where required by law or to prevent harm.

5. Data Retention & Account Deletion

In compliance with App Store and Google Play guidelines, you can request the permanent deletion of your account and all associated personal data at any time.

  • Directly inside the App settings panel under "Delete Account".
  • By emailing your deletion request to help@theleaderboard.site.

Upon request, your account details and private trees will be purged from our servers within 14 business days. De-identified public lineage records may remain to ensure tree integrity.

6. Data Security

We implement industry-standard safeguards including HTTPS/TLS encryption, JWT authentication, and secure Supabase Row-Level Security (RLS) policies.

No system is completely secure, and we cannot guarantee absolute protection against breaches.

7. Your Rights (POPIA / GDPR)

You have the right to:

  • Access your personal data
  • Request correction of inaccuracies
  • Request permanent deletion
  • Withdraw consent to processing

Contact: help@theleaderboard.site

8. Changes to Policy

We may update this Policy at any time. Continued use of the App constitutes acceptance of changes.

9. Contact

Email: help@theleaderboard.site