Privacy Policy

1. Introduction

Evgeny Lysenko, doing business as Aimpossible ("Aimpossible," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Aimpossible.com website, mobile applications (iOS and Android), and related services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Service.

2. Information We Collect

2.1 Information You Provide to Us

We collect information that you voluntarily provide to us when you:

• Create an account: Name, email address, password
• Set goals: Goal descriptions, deadlines, stake amounts, self-assessment data
• Make payments: Payment information is processed by our payment processor (Paddle) and we receive transaction confirmation and relevant payment details
• Contact us: Any information you provide in communications with our support team

2.2 Information Automatically Collected

When you use the Service, we automatically collect certain information, including:

• Device information: Device type, operating system, browser type, IP address, unique device identifiers
• Usage data: Pages visited, features used, time spent on the Service, interaction data
• Location data: General location based on IP address (not precise geolocation)
• Cookies and similar technologies: See our Cookie Policy for details

2.3 Information from Third Parties

We may receive information about you from third-party services, including:

• Payment processors: Transaction confirmations and payment status from Paddle
• Analytics providers: Aggregated usage data from PostHog

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 To Provide and Maintain the Service

• Create and manage your account
• Process goal creation and self-assessments
• Process payments based on self-assessments
• Send transactional emails (account verification, goal reminders, payment confirmations)
• Provide customer support

3.2 To Improve and Develop the Service

• Analyze usage patterns and trends
• Identify and fix technical issues
• Develop new features and functionality
• Conduct research and testing

3.3 To Ensure Security and Prevent Fraud

• Monitor for suspicious activity
• Detect and prevent fraud or abuse
• Enforce our Terms of Service
• Protect the rights and safety of users

3.4 To Comply with Legal Obligations

• Respond to legal requests and prevent harm
• Comply with applicable laws and regulations
• Protect our legal rights and interests

4. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who perform services on our behalf:

Service Provider	Purpose	Data Shared
Supabase	Database and backend services	All user data necessary for service operation
Paddle	Payment processing	Payment information, transaction details
Mailersend	Email delivery	Email address, name, transactional email content
PostHog	Analytics	Usage data, device information (anonymized where possible)
Netlify	Hosting and content delivery	Technical data necessary for service delivery

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas).

4.3 Business Transfers

If Aimpossible is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share your information for any other purpose with your explicit consent.

5. International Data Transfers

Your information may be transferred to and processed in the European Union and other jurisdictions where our service providers operate. These jurisdictions may have different data protection laws than your country of residence.

When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Using service providers that comply with GDPR and other applicable data protection regulations
• Implementing Standard Contractual Clauses (SCCs) where required
• Ensuring adequate levels of data protection

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

• Active accounts: Data is retained while your account is active
• After account deletion: Data is retained for 30 days for backup and legal purposes, then permanently deleted
• Financial records: Payment and transaction records may be retained longer to comply with legal and accounting requirements
• Analytics data: Aggregated, anonymized usage data may be retained indefinitely

7. Your Rights and Choices

7.1 Access and Portability

You have the right to access your personal information and request a copy in a portable format.

7.2 Correction

You have the right to correct inaccurate or incomplete personal information.

7.3 Deletion

You have the right to request deletion of your personal information, subject to certain legal exceptions. You can delete your account through the Service settings, provided all active goals are completed and payments are settled.

7.4 Objection and Restriction

You have the right to object to certain processing of your personal information and request restriction of processing in certain circumstances.

7.5 Withdraw Consent

Where we rely on your consent to process your information, you have the right to withdraw that consent at any time.

7.6 Email Communications

You cannot opt out of transactional emails (account verification, goal reminders, payment confirmations) as they are essential to the Service. We do not send marketing emails.

7.7 How to Exercise Your Rights

To exercise any of these rights, please contact us at contact@aimpossible.com. We will respond to your request within 30 days.

8. Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest
• Secure authentication and access controls
• Regular security assessments and monitoring
• Limiting access to personal information to authorized personnel only

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from someone under 18, we will take steps to delete that information promptly.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of the Service. For detailed information about the cookies we use and your choices, please see our Cookie Policy.

11. Do Not Track Signals

Some browsers have a "Do Not Track" feature that lets you tell websites that you do not want to have your online activities tracked. We do not currently respond to Do Not Track signals.

12. Your California Privacy Rights (CCPA)

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA):

12.1 Right to Know

You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purpose, and the categories of third parties with whom we share personal information.

12.2 Right to Delete

You have the right to request deletion of your personal information, subject to certain exceptions.

12.3 Right to Opt-Out of Sale

We do not sell your personal information and have not sold personal information in the past 12 months.

12.4 Right to Non-Discrimination

You have the right not to receive discriminatory treatment for exercising your CCPA rights.

12.5 Exercising Your Rights

To exercise your CCPA rights, please contact us at contact@aimpossible.com. We may need to verify your identity before processing your request.

13. Your European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have certain rights under the General Data Protection Regulation (GDPR):

13.1 Legal Basis for Processing

We process your personal information based on the following legal grounds:

• Contract performance: Processing necessary to provide the Service you requested
• Legitimate interests: Processing necessary for our legitimate business interests (e.g., fraud prevention, service improvement)
• Consent: Where you have given explicit consent (e.g., for analytics)
• Legal obligations: Processing necessary to comply with legal requirements

13.2 Data Subject Rights

You have the rights described in Section 7, including the right to lodge a complaint with a supervisory authority in your country.

13.3 Data Protection Officer

For GDPR-related inquiries, please contact us at contact@aimpossible.com.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:

• Posting the updated Privacy Policy on this page
• Updating the "Last Updated" date at the top of this policy
• Sending you an email notification for significant changes

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes are posted constitutes your acceptance of the updated Privacy Policy.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Evgeny Lysenko (Aimpossible)
Zenkova str., 59, apartment 10
050000, Almaty, Kazakhstan
Email: contact@aimpossible.com

We will respond to your inquiry within 30 days.