Privacy Policy • Pyxis Cloud App

1) Who we are

Controller / Provider: Pyxis Lab, Inc.
Address: 21242 Spell Circle · Tomball, Texas 77375 · USA
Email: service@pyxis-lab.com

2) Scope

This policy applies to the App and backend Pyxis Cloud services. If you access third-party services through the App (for example, map tiles or analytics SDKs), their privacy practices govern their use of your data.

3) Information we collect

A. Account & organization information

Identifiers (name, email, username), role/permissions, organization membership, and audit logs created by administrators.
Support communications and metadata (tickets, feedback).

B. Operational/IoT & field data

Device identifiers and telemetry from industrial water treatment systems (e.g., sensor readings, water quality metrics, timestamps).
Manually entered data (e.g., test results, forms, notes, photos if you choose to attach them).
Asset information (IDs, status, maintenance history).

C. Usage & diagnostics

App interactions, crash data, performance diagnostics, and device characteristics (model, OS version).
Approximate location or IP-derived region for security and service availability. We do not collect precise GPS location unless you explicitly enable a location-based feature.

D. Cookies & similar technologies

If you sign in via the in-app web view or portal, we may use cookies and similar technologies for authentication, session management, and analytics. You can control cookies in your browser settings where applicable.

4) How we use information

Provide and operate the App and services.
Process telemetry and manual entries to generate dashboards and reports.
Administer organizations, roles, and access controls.
Monitor, troubleshoot, and improve reliability and security.
Communicate service notices and respond to support requests.
Comply with legal obligations and enforce terms.
Develop new features and perform aggregated analytics.

5) Legal bases (EEA/UK and similar jurisdictions)

Contract To provide the App and services you request.
Legitimate Interests To keep services secure, prevent abuse, and improve features.
Consent Where required (e.g., certain analytics, notifications, or precise location features).
Legal Obligation Where we must retain or disclose information under applicable law.

Service providers processing data under contract (cloud hosting, analytics, support, crash reporting).
Organization administrators can access data created under their organization per configured roles and audit policies.
Legal and safety when required by law, regulation, or to protect rights, users, or the public.
Business transfers in connection with a merger, acquisition, or asset sale, subject to this Policy.

We do not sell personal information. We do not use personal information for targeted advertising within the App.

7) Data retention

We retain information for as long as necessary to provide the services, comply with legal obligations, resolve disputes, and enforce agreements. Organization administrators may control retention of operational data (e.g., telemetry history) via policies. When no longer needed, we will delete or anonymize data.

8) Security

We implement technical and organizational measures to protect information, including encryption in transit, role-based access controls, logging, and periodic audits. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

9) International data transfers

Your information may be processed in countries other than your own. Where required, we use approved legal mechanisms (such as Standard Contractual Clauses) to safeguard cross-border transfers.

10) Your rights & choices

Access, correction, deletion: You (or your admin) can access, update, or delete certain data via the App. You may also contact us for additional requests.
Portability & restriction: In some jurisdictions you may request a copy of your data or ask us to restrict processing.
Opt-outs: You can manage notifications in system settings and control analytics where offered in-App.
Appeals & complaints: EEA/UK residents may contact their local supervisory authority; California residents have CPRA rights; Brazil residents have LGPD rights; Canada residents have PIPEDA rights.

11) App permissions

Depending on how you use the App, you may be asked to grant permissions:

Camera/Photos: To attach images to records (optional).
Location: To tag assets or readings to a place (optional; precise location used only when enabled).
Notifications: To receive alerts and service updates (optional).
Network: To connect to Pyxis Cloud services (required).

12) Google Play Data safety summary

This summary is provided to help you complete Google Play’s Data safety section. It reflects the App’s typical behavior; your organization’s configuration may change what is collected.

Data collected

Identifiers (name, email, user ID), Organization & role metadata.
App activity and crash logs.
Device or other IDs and diagnostics.
Operational/IoT data and manual entries uploaded by users.
Approximate location (security/availability) and optional precise location when enabled for tagged records.

Data shared

Data may be shared with service providers for processing on our behalf. We do not sell data.

Data handling

Data is encrypted in transit.
You can request deletion of certain data via admin controls or by contacting us.
Data is used for App functionality, analytics (where enabled), and account management.

13) Children’s privacy

The App is intended for professional/enterprise users and is not directed to children. We do not knowingly collect personal information from children under 16 (or a lower age where permitted by law). If you believe a child has provided personal information, please contact us to request deletion.

14) Changes to this policy

We may update this Policy from time to time. We will post the new version here and update the “Last updated” date. Material changes may also be communicated in-App or by email.

15) Contact

Questions or requests about this Policy can be sent to: privacy@pyxiscloud.example or to our postal address above.

Contents