Waska Privacy Policy

Last updated: 19 February 2026

1) Purpose and Scope

This document explains what data Waska processes when you use the mobile application, the purposes, legal bases, retention periods, and your rights. Waska is committed to data minimization and transparency. No user account is created and no personal information (name, email, age, etc.) is requested.

2) Data We Process & How We Collect It

Waska does not require account creation. The app processes the following data:

2.1 Push Notifications (APNs)

When push notifications are enabled, the following data is processed:

• Device Token (APNs): Technical device identifier provided by Apple, stored on backend (VPS) for sending notifications
• Anonymous UID: Randomly generated UUID on device (stored in Keychain). Associated with push records, contains no personal information
• Subscription Preferences: Which notifications are enabled (target price alerts, whale tracking, economic calendar, etc.)
• Pro Status: For notification rights management (only sent during push registration)

This data is stored in a local database (SQLite) on the app backend (VPS server). Tokens are only used to send push notifications via APNs.

Data Deletion: Contact support via Settings → Support, or email your UID to waskadestek@gmail.com with a "delete my token" request.

2.2 AI Analysis and Chat

• Processed Data: User messages/queries for analysis or chat
• Flow: User message → Backend (VPS) → Third-party AI service provider → Response to user
• Storage: User messages are processed temporarily, not stored permanently. Cache duration is short
• Usage Limits: Daily limited requests for free users, unlimited for Pro users

2.3 Market Data

• Crypto Price API: Device connects directly to various cryptocurrency exchange APIs. No personal data sent, only symbol/price data received
• Stock Data API: Stock data from various financial data providers via backend (VPS). Symbol info sent from device to backend (not personal data)
• Embedded Charts: Charts provided by third-party chart service providers. No official partnership exists.

2.4 Economic Calendar and Correlation

• Economic Calendar: Global economic event data from backend (cached)
• Correlation Analysis: Correlation matrix between cryptocurrencies from backend
• On-Chain Data: Blockchain metrics from backend

2.5 Device-Local Data

• Analysis/Backtest Counters: Free usage rights (Keychain/UserDefaults). Not sent to server
• Strategy Records: User-defined strategies (UserDefaults, stored on device)
• Preferences: Language, theme, notification permission status (UserDefaults)
• Anonymous UID: Stored in Keychain, may remain after app deletion

2.6 Purchases (StoreKit)

• Transaction Data: Transaction IDs generated by Apple (for subscription verification)
• Payment Information: Processed by Apple, not stored by the application
• Purchase/transaction verification data: Apple-generated identifiers (e.g., transaction id) may be used to validate purchases and apply entitlements. Payment card/bank details are not collected by us; they are processed by Apple.

3) Purposes of Processing

• Core Functions: Display market data and perform analysis
• AI Chat: AI-powered analysis and chat via third-party AI service provider
• Push Notifications: User-defined target price, whale movements, and economic calendar alerts
• Strategy Backtest: Local simulation and result storage
• Subscription Management: Verify Pro rights via Apple StoreKit
• Support: Respond to user inquiries

4) Legal Bases

• Contract Performance: Terms of Use and service provision
• Legitimate Interest: Security, performance optimization, and debugging
• Consent: User permission for push notifications and device-local data storage

5) Third Parties & Transfers

• Apple StoreKit: Purchase and subscription verification (processed by Apple)
• Apple Push Notification Service (APNs): Notification delivery
• AI Service Provider: AI analysis and chat (user messages processed temporarily, not stored permanently)
• Chart Service Provider: Embedded charts (no official partnership)
• Crypto/Stock API Providers: Market data (called directly from device, no personal data sent)

Important: No external database services are used. Data is stored locally on device or on our own VPS backend (SQLite).

6) Accounts

No account is required. The App supports guest usage and does not ask for identifying information.

7) Cookies & Tracking

Waska does not track users for advertising. No third‑party ad SDKs are used.

8) Retention

• Push Notification Records: As long as service is active or until user requests deletion
• AI Analysis Data: Processed temporarily, short cache duration then deleted, not stored permanently
• Device-Local Data: Until app is removed (some Keychain data may persist)
• Subscription Records: Stored by Apple for legal duration

9) Security

• TLS Encryption: All backend communication via HTTPS
• Token Security: Push tokens only used for APNs, not shared with third parties
• Database: SQLite (local file on VPS), encrypted access
• Backup: Device-local data is not backed up (strategies, counters remain on device only)

10) Your Rights

• Access, rectification, erasure
• Objection and restriction
• Data portability

To exercise rights: waskadestek@gmail.com. We may ask for proof of identity.

11) Children’s Privacy

Not directed to children under 18.

12) Data Export & Deletion

• Push Registration Deletion: View your UID in Settings. Email this UID to waskadestek@gmail.com with a "delete my token" request. Device token and associated records will be deleted from backend.
• Device-Local Data: Deleting the app clears most data. UID and counters in Keychain may persist (Apple's behavior).
• Strategy Records: Can be manually deleted from Strategy Lab.

13) Compliance & Transparency (App Store 5.1.1)

• No Account Required: No user account creation, guest usage by default
• No Ads: No IDFA/IDFV usage, no advertising SDK
• No External Database: No third-party database services used
• Payments: Via Apple StoreKit, payment data not stored by us
• Data Requests: waskadestek@gmail.com

14) Changes

We may update this policy; the effective date will be shown above.

15) Contact

Email: waskadestek@gmail.com

---

Waska processes only the minimum data required to operate the service and is committed to user privacy.