Mobile Application Privacy Policy

Last updated: June 1, 2026  ·  Applies to: Mosaic iOS & Android apps

This Privacy Policy describes how the Mosaic mobile application ("App", "we", "us", or "our") collects, uses, and protects your information. This policy applies to the Mosaic iOS app (tr.net.mosaic.ios) and the Mosaic Android app (tr.net.mosaic.android).

The App is a companion client for the Mosaic social media analytics dashboard. It is intended for use only by authorized personnel of organizations registered on the platform. It is not a public consumer application.

1. Information We Collect

1.1 Information You Provide

• Email address and password: Used solely to authenticate you against the Mosaic API. Credentials are transmitted over encrypted HTTPS and are never stored on-device in plaintext.

1.2 Information Stored on Your Device

• Authentication token: After login, a Bearer token issued by the Mosaic server is stored in the device's secure Keychain (iOS) / EncryptedSharedPreferences (Android). This token is used to authenticate subsequent API requests and is deleted when you log out.
• Display name and role: Your name and role (admin / manager / user) as returned by the API are stored in UserDefaults (iOS) / SharedPreferences (Android) for display purposes only. These are non-sensitive values and are deleted on logout.

1.3 Information We Do NOT Collect

• We do not collect device identifiers (IDFA, GAID, serial number).
• We do not collect location data.
• We do not collect contacts, photos, camera, or microphone data.
• We do not collect crash analytics or usage analytics via third-party SDKs.
• We do not use advertising or tracking networks of any kind.

2. How We Use Your Information

• To authenticate you and maintain your session securely.
• To display your name and role in the App interface.
• To retrieve your organization's social media analytics from the Mosaic API over HTTPS.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

3. Data Transmission and Security

• All communication between the App and the Mosaic server uses HTTPS (TLS).
• Your authentication token is stored in the iOS Keychain (protected by the device's Secure Enclave) or Android EncryptedSharedPreferences (AES-256 encryption).
• The App connects to www.mosaic.net.tr (primary) and www.mosaic.prj.be (fallback). No other external servers are contacted.
• The App uses only standard HTTPS encryption, which is exempt from US export regulations (ITSAppUsesNonExemptEncryption = false).

4. Third-Party Services

The App does not include any third-party SDKs (analytics, advertising, crash reporting, social login, etc.). All network requests go exclusively to the Mosaic API.

The social media analytics data displayed in the App (follower counts, etc.) originates from third-party platforms (Twitter/X, Instagram, Facebook, YouTube, TikTok, LinkedIn, Bluesky, Mastodon, Telegram). This data is fetched by the Mosaic server, not directly by the App.

5. Data Retention

• On-device data (token, name, role) is deleted immediately when you log out.
• Uninstalling the App removes all locally stored data.
• Server-side data retention is governed by the Mosaic Web Privacy Policy.

6. Children's Privacy

The App is not directed to children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

7. Your Rights

You have the right to:

• Access the personal data we hold about you.
• Delete your account and associated data by contacting us or using the Data Deletion Request page.
• Correct inaccurate information by contacting an administrator of your organization.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by the "Last updated" date at the top of this page. Continued use of the App after changes constitutes acceptance of the revised policy.

9. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:
Email: privacy@mosaic.net.tr
Web: www.mosaic.net.tr