Questr — Privacy Policy

1. Introduction

Questr Software Ltd. (“Questr,” “we,” “us,” or “our”) values your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information when you access or use our mobile application, website, APIs, or any related services (“Platform”).

By using the Platform, you consent to this Privacy Policy and the processing of your information as described herein. If you do not agree, discontinue use immediately. This Policy applies to all users, including Providers, Clients, visitors, and any individual interacting with Questr.

2. Scope and Applicability

This Privacy Policy applies globally to all data collected by Questr, whether you access the Platform from Canada, the United States, or any other jurisdiction. It incorporates principles of the Personal Information Protection and Electronic Documents Act (PIPEDA), Canada’s Consumer Privacy Protection Act (CPPA, pending), the EU General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA/CPRA), and other applicable state and federal privacy laws.

In case of conflict between this Policy and local law, the stricter standard will govern.

3. Information We Collect

A. Information you provide directly:

• Registration data – name, email, phone, password, and verification codes.
• Profile data – biography, service categories, photos, address, and skills.
• Payment data – credit/debit details, payout preferences, tax or business IDs (processed by third-party payment processors).
• Communications – messages, job details, reviews, or uploaded attachments.
• Identity verification – government ID images, selfie validation, or background-check details where required.

B. Information collected automatically:

• Device identifiers (IP address, hardware ID, OS type, app version).
• Location and GPS data (when permission is granted).
• Log files, session durations, crash reports, and clickstream analytics.
• Cookies, beacons, and similar tracking technologies.

C. Information from third parties:

• Payment partners, analytics vendors, anti-fraud services, and background-check providers.
• Social-media platforms if you choose to link accounts (e.g., “Sign in with Google”).
• Publicly available or commercially obtained demographic data to enhance accuracy of records.

4. How We Use Information

• Create, authenticate, and manage user accounts.
• Facilitate job postings, messaging, offers, and scheduling.
• Process payments and payouts securely.
• Send administrative and security notifications.
• Provide customer support and respond to inquiries.
• Personalize content, job suggestions, and marketing offers.
• Improve app performance, algorithms, and fraud detection.
• Conduct research, analytics, and quality assurance.
• Enforce our Terms of Service, investigate misuse, and comply with legal obligations.

5. Legal Bases for Processing

• Contractual necessity – to provide requested services.
• Consent – for optional features like location or marketing.
• Legitimate interests – to prevent fraud, secure systems, and improve operations.
• Legal obligation – to satisfy record-keeping, taxation, or regulatory requirements.

6. How We Share Information

Questr does not sell your personal information. We may share data only as follows:

• With other users when required for job arrangements or communications.
• With trusted vendors providing hosting, analytics, messaging, payment, or identity-verification services.
• With legal authorities when compelled by subpoena, court order, or applicable law.
• With affiliates and subsidiaries under common ownership.
• With potential buyers or investors during corporate restructuring, merger, or acquisition (subject to confidentiality safeguards).
• With your consent, for integrations or partner promotions you choose to enable.

7. Data Retention

We retain data only for as long as necessary for legitimate business or legal purposes, including dispute resolution, fraud prevention, and compliance. When no longer needed, data is anonymized or securely deleted using encryption-based destruction methods.

8. Data Security and Incident Response

We use industry-standard safeguards including encryption in transit (TLS 1.3), role-based access controls, firewalls, regular security audits, and secure cloud infrastructure (AWS Canada/US).

In the unlikely event of a data breach, we will notify affected individuals and regulators as required by law, describing the nature of the breach, possible consequences, and mitigation steps taken.

9. Automated Decision-Making and Analytics

Questr may use automated algorithms to detect fraud, suggest jobs, or flag suspicious activity. These processes are designed to protect users and maintain integrity of the Platform.

We do not use fully automated decision-making that has legal or similarly significant effects without human review.

10. Your Rights and Choices

Depending on your jurisdiction, you may have rights to:

• Access or obtain a copy of your personal data.
• Correct inaccurate or incomplete data.
• Delete data (subject to legal retention exceptions).
• Withdraw consent for processing.
• Restrict or object to specific uses.
• Port your data to another service provider.
• File a complaint with a supervisory authority (e.g., Office of the Privacy Commissioner of Canada or the EU Data Protection Authority).

Requests can be submitted to support@questrapp.com, and we may require identity verification before processing.

11. Cookies and Similar Technologies

We use cookies, device storage, and analytics SDKs to remember preferences, measure engagement, and deliver relevant content. You can disable cookies or reset identifiers in device settings, but some Platform features may not function properly.

12. Third-Party Services and Links

The Platform may contain links to or integrations with third-party websites and applications (e.g., maps, payment gateways, or authentication tools). Questr is not responsible for their privacy practices, and we encourage you to review each third party’s policy before sharing personal data.

Payments and identity verification are processed via Stripe Connect, subject to the Stripe Privacy Policy and Stripe Services Agreement.

13. Children’s Privacy

Questr is intended for adults 18 years or older. We do not knowingly collect personal information from minors. If we discover that a child under 18 has provided data, we will promptly delete it and may disable related accounts.

14. International Transfers

Your data may be processed in countries outside your residence, including Canada and the United States. We rely on contractual data-transfer safeguards such as Standard Contractual Clauses (SCCs) and equivalent mechanisms to ensure adequate protection consistent with global privacy standards.

15. Data Storage Location

All primary data is stored on secure servers hosted in AWS regions (us-east-2 and ca-central-1) with redundant encrypted backups. We do not store payment card data on Questr servers; all such information is processed via PCI-DSS-compliant providers.

16. Marketing and Communications

We may send promotional offers, feature updates, or service announcements. You may opt out of marketing communications by following the unsubscribe link or contacting us at support@questrapp.com.

Transactional or security-related emails (such as password resets or policy updates) will continue to be sent as required for account functionality.

17. Behavioral Advertising and Analytics

Questr may use analytics tools such as Google Analytics for Firebase or AWS Pinpoint to analyze user engagement. These tools collect pseudonymous identifiers to help improve user experience. We do not use cross-app behavioral tracking for targeted advertising without explicit consent.

18. Do Not Track Signals

Some browsers send “Do Not Track” signals. Our Platform does not currently respond to these signals, but we honor legally required opt-out mechanisms such as the CCPA’s “Do Not Sell or Share My Personal Information” provisions.

19. Changes to This Policy

We may update this Privacy Policy periodically. The revised version will be identified by the “Effective Date” at the top of this page. Significant changes will be communicated via in-app notification or email. Continued use after such updates constitutes acceptance.

20. Contact Information

21. Acknowledgment

By using Questr, you confirm that you have read, understood, and agree to this Privacy Policy and our Terms of Service. You acknowledge that Questr acts as a data controller for user accounts and as a data processor for user-generated transactions between independent parties.

For more information, please review our Terms of Service.