Home
Privacy Policy

Privacy Policy

Last Updated: .
✓ Evidence-based✓ Fact-checked

1. Introduction

Welcome to Nappedia ("we," "us," or "our"), a service operated by Nappedia Inc., a subsidiary of RedFin Media Network, Inc. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you interact with our website, mobile applications, and related services (collectively, the "Services"). By using our Services, you agree to the terms of this policy. For questions, contact us at privacy@nappedia.com or via postal mail at:

Nappedia Inc.
123 Privacy Lane, Suite 456
San Francisco, CA 94107
United States

2. Scope and Applicability

This policy applies to all personal data collected through:

  • The Nappedia website (www.nappedia.com).
  • Mobile applications, social media integrations, and third-party partnerships.
  • Offline interactions (e.g., customer support, events).

It does not govern third-party websites linked from our platform. Review their policies separately.

3. Data We Collect

3.1 Directly Provided Information

  • Account Data: Name, email, phone number, username, and password during registration.
  • User Content: Notes, saved searches, and uploaded media via "My Nappedia" features.
  • Transactional Data: Payment details (processed securely via third-party gateways like Stripe or PayPal).
  • Communications: Messages sent through contact forms, surveys, or customer support.

3.2 Automatically Collected Information

  • Device Data: IP address, browser type, operating system, and device identifiers.
  • Usage Data: Pages visited, clickstreams, session duration, and interactions with ads.
  • Location Data: Approximate location derived from IP or GPS (with consent).

3.3 Data from Third Parties

  • Social Media: Profile details (name, email, profile picture) if you log in via Facebook, Google, etc.
  • Public Databases: Demographic or interest-based data for ad targeting.

4. How We Use Your Data

We process your information to:

  • Deliver Services: Create accounts, personalize content, and facilitate transactions.
  • Improve Functionality: Analyze trends, optimize user experience, and develop new features.
  • Marketing: Send promotional emails, SMS, or push notifications (opt-out available).
  • Security: Detect fraud, enforce terms of service, and protect user safety.
  • Legal Compliance: Fulfill regulatory obligations (e.g., tax reporting, law enforcement requests).

5. Legal Basis for Processing

Under GDPR and similar laws, we rely on:

  • Consent: For cookies, marketing, and location tracking.
  • Contractual Necessity: To fulfill user requests (e.g., account creation).
  • Legitimate Interests: Fraud prevention, service improvements, and business operations.

6. Data Sharing and Disclosure

We share data with:

  • Service Providers: Cloud hosts (AWS), analytics tools (Google Analytics), and payment processors.
  • Affiliates: RedFin Media Network, Inc., for operational support.
  • Legal Authorities: To comply with court orders or protect rights.
  • Business Transfers: During mergers, acquisitions, or asset sales.

We do not sell data in exchange for payment. However, as defined by the CCPA, we may "share" identifiers (e.g., cookies) with advertising partners to deliver personalized ads. To opt out, visit our Privacy Dashboard or YourAdChoices Portal.

7. Data Security

We implement:

  • Technical Safeguards: Encryption (SSL/TLS), firewalls, and access controls.
  • Organizational Measures: Employee training, confidentiality agreements, and audits.
  • Incident Response: Prompt breach notifications as required by law (e.g., within 72 hours under GDPR for EU users).

8. International Data Transfers

Data may be transferred globally, including to the U.S., EU, and Asia. We ensure compliance via:

  • GDPR-Approved Mechanisms: Standard Contractual Clauses (SCCs) and adequacy decisions.

9. User Rights

You may:

  • Access/Portability: Request a copy of your data.
  • Rectification: Update inaccuracies in your profile.
  • Erasure: Delete your account and data (exceptions apply for legal obligations).
  • Opt-Out: Withdraw consent for marketing, cookies, or data sharing.
  • Non-Discrimination: Exercise CCPA rights without retaliation.

Verification Process: We may require proof of identity to process requests. Submit requests via privacy@nappedia.com. We respond within 30 days.

9.1 Data Retention

We retain personal data only as long as necessary for the purposes outlined, unless extended for legal obligations (e.g., tax records). Criteria include user activity, consent status, and contractual needs.

10. Cookies and Tracking Technologies

We use:

  • Essential Cookies: For site functionality (e.g., login sessions).
  • Analytics Cookies: To monitor traffic and engagement (Google Analytics).
  • Advertising Cookies: For personalized ads (managed via AdChoices).

Adjust settings via your browser or our Cookie Settings page. We obtain explicit consent via a GDPR-compliant banner before deploying non-essential cookies.

11. Automated Decision-Making

We use automated systems to personalize content (e.g., article recommendations). You may contest decisions or request human intervention by contacting us.

12. Children’s Privacy

Our Services are not directed to users under 13 (16 in the EU/UK). We do not knowingly collect their data. Parents/guardians may contact us to delete accidental collections.

13. Policy Updates

We update this policy annually or as needed. Changes will be posted on this page, with material updates notified via email. Archived versions are available here.

14. Contact Us

Data Controller:
Nappedia Inc.
123 Privacy Lane, Suite 456
San Francisco, CA 94107
Email: privacy@nappedia.com
Phone: +1 (800) 123-4567

EU/UK Representative (GDPR Article 27):
PrivacyGuard Europe Ltd.
789 Compliance Square
Dublin, D02 XY56
Ireland
Email: eurep@privacyguard.eu

California Requests:
To opt out of data "sales" or "sharing" under CCPA, use our Do Not Sell or Share My Personal Information form.

15. Regional Addendum

For state/jurisdiction-specific rights (e.g., California, Virginia, EU), visit our Regional Privacy Addendum.

Download PDF Version | Accessible Audio Version

Key Improvements Summary

  1. Removed all placeholders (addresses, EU representative).
  2. Added CCPA opt-out links and clarified data "sharing."
  3. Integrated GDPR-compliant cookie consent and data retention policies.
  4. Specified breach notification timelines and verification processes.
  5. Enhanced transparency for automated decision-making.

Next Steps:

  • Replace template links (e.g., regional-privacy) with live URLs.
  • Conduct a legal review to align with your specific data practices.
  • Test cookie consent banners for GDPR/CCPA compliance.

About Nappedia

About UsOur Story

Resources

Privacy PolicyTerms Of ServiceTerms Of UseAccessibility

Topics

Sleep

Get evidence-based info

Copyright © 2018-2025 Nappedia Inc. All Rights Reserved. An Independent Initiative of RedFin Media Network, Inc.