Empiric Apps
TappieNautilus

Privacy Policy

Last updated: January 6, 2025

1. Introduction

Empiric Apps ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our applications—Nautilus (Docker & Kubernetes Management) and Tappie (Homebrew Package Manager)—collectively the "Apps," and our website at https://empiricapps.com (the "Website").

This policy applies to all users globally, including those in the European Economic Area (EEA), United Kingdom, California, and other jurisdictions with specific privacy regulations.

2. Data Controller

Empiric Apps is the data controller responsible for your personal data. If you have questions about this policy or our data practices, contact us at: contact@empiricapps.com

3. Information We Collect

3.1 Information You Provide

  • Account Information: Email address and name when you purchase a license or create an account.
  • Payment Information: Processed securely by our payment provider, Paddle. We do not store credit card numbers or banking details on our servers.
  • Support Communications: Information you provide when contacting our support team.
  • License Information: License keys associated with your purchase.

3.2 Information Collected Automatically

  • Device Information: Hardware identifier (for license activation), device name, operating system version, and app version.
  • Usage Data: App launch events, feature usage statistics, and crash reports (if you opt-in).
  • Log Data: IP address, browser type, pages visited, time and date of visit, and time spent on pages (Website only).

3.3 Information We Do NOT Collect

For Nautilus:

  • Container contents, source code, or Docker/Kubernetes configurations
  • Environment variables or secrets stored in your containers
  • Network traffic or data transmitted to/from your containers
  • File system contents of your computer or containers

For Tappie:

  • Your Homebrew packages list or installed software
  • Package configurations or formulae contents
  • Terminal commands or output
  • File system contents of your computer

4. How We Use Your Information

We use your information for the following purposes and legal bases:

  • Contract Performance: To provide, maintain, and deliver the App and services you purchased; to manage your license and activations; to process transactions.
  • Legitimate Interests: To improve our App and services; to analyze usage patterns; to detect, prevent, and address technical issues or fraud; to send important product updates.
  • Consent: To send marketing communications (you can opt-out at any time); to collect optional analytics and crash reports.
  • Legal Obligation: To comply with applicable laws and regulations; to respond to legal requests.

5. How We Share Your Information

We do not sell your personal data. We may share your information with:

  • Payment Processor (Paddle): Paddle acts as our Merchant of Record and processes all payments. They collect payment information directly and are responsible for PCI compliance. See Paddle's Privacy Policy.
  • Infrastructure Providers: Cloud hosting services that store our databases and serve our website, under strict data processing agreements.
  • Analytics (if enabled): Anonymized usage statistics to help us improve the App.
  • Legal Requirements: When required by law, court order, or governmental authority.

6. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the EEA or UK, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with an adequacy decision
  • Other legally approved transfer mechanisms

7. Data Retention

We retain your personal data only as long as necessary:

  • Account and License Data: For the duration of your license validity, plus 3 years for tax and legal compliance.
  • Transaction Records: 7 years as required by financial regulations.
  • Support Communications: 2 years after resolution.
  • Analytics Data: 26 months, then automatically deleted or anonymized.

8. Your Privacy Rights

8.1 Rights for All Users

  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your personal data.
  • Opt-out: Unsubscribe from marketing communications.

8.2 Additional Rights for EEA/UK Residents (GDPR)

  • Restriction: Request restriction of processing.
  • Portability: Receive your data in a portable format.
  • Object: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw consent at any time (where processing is based on consent).
  • Lodge Complaint: File a complaint with your local data protection authority.

8.3 Additional Rights for California Residents (CCPA/CPRA)

  • Right to Know: Categories and specific pieces of personal information collected.
  • Right to Delete: Request deletion of personal information.
  • Right to Opt-Out: We do not sell personal information.
  • Non-Discrimination: We will not discriminate against you for exercising your rights.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Limit: Limit the use of sensitive personal information.

To exercise any of these rights, contact us at contact@empiricapps.com. We will respond within the timeframe required by applicable law (typically 30 days for GDPR, 45 days for CCPA).

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/HTTPS) and at rest
  • Regular security assessments and updates
  • Access controls and authentication
  • Secure infrastructure hosted by reputable cloud providers

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

10. Cookies and Tracking Technologies

Our Website uses cookies and similar technologies:

  • Essential Cookies: Required for the Website to function properly (e.g., session management, security).
  • Analytics Cookies: Help us understand how visitors interact with our Website. These are only set with your consent.
  • Payment Cookies: Set by Paddle to process payments securely.

You can control cookies through your browser settings. Note that disabling certain cookies may affect Website functionality.

11. Children's Privacy

Our App and services are not intended for children under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at contact@empiricapps.com.

12. Third-Party Links

Our Website and App may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our Website with a new "Last updated" date
  • Sending an email notification for significant changes (if we have your email)
  • Displaying a notice in the App

Your continued use of the App after changes become effective constitutes acceptance of the revised policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Empiric Apps
Email: contact@empiricapps.com

15. Jurisdiction-Specific Disclosures

For EU/EEA/UK Residents

Under GDPR, you have the right to lodge a complaint with a supervisory authority in the EU/EEA member state of your habitual residence, place of work, or place of alleged infringement.

For California Residents

Categories of personal information collected in the last 12 months: Identifiers, commercial information, internet activity, and inferences. We collect this information for the business purposes described in Section 4.

Do Not Sell or Share My Personal Information: We do not sell or share (for cross-context behavioral advertising) your personal information as defined under CCPA/CPRA.

For Nevada Residents

Nevada residents may submit a request to opt-out of the sale of personal information. We do not currently sell personal information as defined under Nevada law.