MobiLoud Privacy Policy

Introduction

MobiLoud (Fifty Pixels Ltd) provides website operators with tools to create, publish, and manage mobile applications. This policy covers our website, WordPress plugins, Shopify/BigCommerce apps, and app development services.

Scope

This policy applies to MobiLoud customers - website operators using our services. It does NOT cover end-users of apps created with MobiLoud. One exception exists: the MobiLoud Shopify App processes some end-user data (see separate Shopify App Privacy Policy).

Important Note on End-User Data: MobiLoud does not directly collect, store, or access the personal data of app end-users, except through the MobiLoud Shopify App (see separate Shopify App Privacy Policy). End-user data collection in Customer apps happens through the Customer’s own systems and third-party services, including:
- Firebase SDK/Google Analytics (Customer-controlled)
- OneSignal SDK or Klaviyo for push notifications (Customer-controlled)
- The Customer’s website and its existing functionality
- Other third-party services integrated by the Customer

MobiLoud’s infrastructure providers (such as Cloudflare) may process limited technical data, including IP addresses, when end-user devices request app configuration files hosted on MobiLoud’s infrastructure. MobiLoud does not access, store, or use this technical data. Such processing is governed by MobiLoud’s data processing agreements with those providers.

Information We Collect

Information You Provide

  • Basic Account Information: name, email, phone number
  • Transaction/Billing Information: company name, credit card info, VAT number
  • Credentials: WordPress credentials, iTunes credentials, App Store credentials
  • App Store credentials used solely for publication, stored securely, accessed only by authorized staff

Information Collected Automatically

  • Log Information: browser type, IP address, device identifiers, language preference, operating system
  • Website Information: theme in use, WooCommerce plugins detected
  • Usage Information: page views, button clicks, support document searches
  • Location Information: approximate location from IP address
  • Cookies & Technologies: pixel tags, web beacons for visitor tracking and ad targeting

How We Use Information

MobiLoud uses collected data to:
- Provide and maintain Services
- Develop new features
- Monitor trends and improve Services
- Detect fraud and protect security
- Communicate offers and promotions
- Comply with legal obligations

Information Sharing

MobiLoud does not sell customer personal information. We share data with:

Third Parties

  • Payment processors
  • Analytics providers
  • Customer support tools
  • Infrastructure/hosting providers
  • AI service providers (see “Use of AI Tools” below)

Legal Requirements

  • Subpoenas, court orders, government requests
  • Protection of rights, property, or safety
  • Legal/regulatory compliance

Business Transfers

Customer information may transfer in mergers/acquisitions. The policy continues to apply.

Other Sharing

  • Aggregated, anonymized data
  • With explicit consent
  • Support requests (identifying information removed)

Security

MobiLoud implements appropriate security measures to protect your Personal Data when you transmit it and regularly monitors systems for vulnerabilities.

Access Controls

Data accessible to staff (administration, sales, marketing, legal, system admin) and external parties (technical providers, hosting companies, IT firms).

International Data Transfers

Standard Contractual Clauses, UK International Data Transfer Agreement, and additional technical measures.

Privacy Contact

privacy@mobiloud.com

Breach Notification

In the case of a data breach affecting your Personal Data, we will notify the applicable supervisory authority within 72 hours where required by applicable law. We will notify affected Customers without undue delay where the breach is likely to result in a high risk to their rights and freedoms.

Use of AI Tools

MobiLoud uses artificial intelligence tools and services (including those provided by OpenAI and Anthropic) to assist its team in sales, customer support, onboarding, and internal operations. These tools may process Customer data provided to MobiLoud in the course of delivering the Services, such as the Customer’s name, email address, company name, website URL, and the content of support requests. MobiLoud does not use AI tools to process the personal data of the Customer’s end users.

By providing data to MobiLoud as part of the Services, the Customer acknowledges that such data may be processed by AI-powered tools as part of MobiLoud’s operations. MobiLoud’s use of AI tools is subject to the same confidentiality and data protection obligations set out in this policy and in our Terms and Conditions.

Choices

Limit Information

Decline optional information, though this may limit Service features.

Electronic Communications

Opt out of promotional messages by following instructions in communications.

Cookie Management

We use CookieYes for consent management:
- Essential cookies: Required, cannot decline, based on contract
- Functional cookies: Remember preferences, based on legitimate interests
- Analytics cookies: Understand usage, require explicit consent, retained up to 2 years
- Marketing cookies: Personalized ads, require explicit consent, retained up to 180 days

Data Access

Request copies, corrections, deletion, or export by contacting privacy@mobiloud.com

Data Retention

Data retained based on purpose:
- Contract-related data: retained until contract completion
- Legitimate interest data: retained as long as needed
- Consent-based data: retained while consent active
- Legal obligations: retained as required by law

International Data Transfers

MobiLoud uses service providers located in various countries, including the United States. Where Customer data is transferred outside the United Kingdom or European Economic Area, MobiLoud relies on appropriate transfer mechanisms, including the UK International Data Transfer Agreement (IDTA) and EU Standard Contractual Clauses (SCCs), along with additional technical and organizational measures where appropriate.

Legal Rights and Bases

Customer Rights

Customers may:
- Withdraw consent
- Object to processing
- Access their data
- Seek rectification
- Restrict processing
- Request deletion
- Receive data transfer
- Lodge complaints with supervisory authorities

Legal Basis of Processing

  • Consent: Marketing communications, non-essential cookies, specific analytics
  • Contract Performance: Account creation, service delivery, payment processing, support
  • Legal Obligations: Tax records, business records, legal requests, security incidents
  • Legitimate Interests: Service improvement, fraud prevention, security, business operations

Right to Object

Customers may object to legitimate interest processing by providing relevant grounds. Direct marketing can be opposed anytime without justification.

Exercising Rights

Requests addressed free of charge within one month via contact details in document.

Third Party Services

Analytics

  • Google Analytics: Cookies, Usage Data; US; Privacy Policy: https://policies.google.com/privacy
  • PostHog: Usage and behavioral analytics; US/EU; Privacy Policy: https://posthog.com/privacy
  • Appfigures: App store metrics and public reviews; US; Privacy Policy: https://appfigures.com/privacy
  • Databox: Custom analytics dashboards; where Customers opt into this add-on, they connect their own analytics data (e.g. Google Analytics) to MobiLoud’s Databox account; US; Privacy Policy: https://databox.com/privacy
  • Google Tag Manager: Usage Data; US; Privacy Policy: https://policies.google.com/privacy

Customer Relationship Management

  • Service Provider Pro: Name, email, company, billing; EU; Privacy Policy: https://spp.co/privacy
  • Intercom: Email, various data; US; Privacy Policy: https://www.intercom.com/legal/privacy
  • Pipedrive CRM: Email, phone, various data; US; Privacy Policy: https://www.pipedrive.com/en/privacy
  • Xero: Various data; New Zealand; Privacy Policy: https://www.xero.com/privacy/

Advertising & Marketing

  • Facebook Pixel: Cookies, Usage Data, device IDs, IP addresses, customer lists; US; Privacy Policy: https://www.facebook.com/privacy/policy/
  • Google Ads: Cookies, Usage Data, conversion actions, customer match; US; Privacy Policy: https://policies.google.com/privacy
  • LinkedIn Insight Tag: URL data, device metadata, page events, form submissions; US; Privacy Policy: https://www.linkedin.com/legal/privacy-policy
  • Microsoft (Bing Ads): Cookies, Usage Data, conversion actions; US; Privacy Policy: https://privacy.microsoft.com/en-us/privacystatement
  • Perfect Audience: Cookies, Usage Data; US; Privacy Policy: https://www.perfectaudience.com/privacy/

Forms & Data Collection

  • Tally: Form submissions, user inputs; US; Privacy Policy: https://tally.so/privacy

Infrastructure & Hosting

  • AWS: Various data; Global; Privacy Policy: https://aws.amazon.com/privacy/
  • Digital Ocean: Various data; US; Privacy Policy: https://www.digitalocean.com/legal/privacy-policy
  • Google Cloud Storage: Various data; US; Privacy Policy: https://cloud.google.com/security/privacy
  • Cloudflare: Filters traffic, hosts app config files, logs IP/HTTP headers; US; Privacy Policy: https://www.cloudflare.com/privacypolicy/
  • Webflow: Website usage, form submissions; US; Privacy Policy: https://webflow.com/legal/privacy

Payment Processing

  • PayPal: Various data; US; Privacy Policy: https://www.paypal.com/privacy
  • Stripe: Various data; US; Privacy Policy: https://stripe.com/privacy

System Logs and Maintenance

Files recording Service interactions and IP addresses collected for operation/maintenance purposes.

California Privacy Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:

  • Right to Know. You may request that we disclose what personal information we collect, use, disclose, share, and sell about you.
  • Right to Delete. You may request that we delete the personal information we have collected about you.
  • Right to Correct. You may request that we correct inaccurate personal information we maintain about you.
  • Right to Opt-Out of Sale or Sharing. We share certain personal information with third-party advertising partners (including through cookies and tracking pixels) for purposes of cross-context behavioral advertising. You have the right to opt out of this sharing. You may exercise this right by clicking the “Do Not Sell or Share My Personal Information” link in our website footer, or by enabling a Global Privacy Control (GPC) signal in your browser.
  • Right to Limit Use of Sensitive Personal Information. We do not use or disclose sensitive personal information for purposes beyond those permitted under CPRA.
  • Right to Non-Discrimination. We will not discriminate against you for exercising any of these rights.

Categories of Personal Information Shared for Advertising

We share the following categories of personal information with advertising partners for cross-context behavioral advertising purposes: identifiers (such as device IDs, cookie IDs, and IP addresses), internet or electronic network activity information (such as browsing history and interactions with our website), and inferences drawn from this information. Our advertising partners include Meta (Facebook Pixel), Google (Google Ads), Microsoft (Bing Ads), LinkedIn (Insight Tag), and Perfect Audience.

How to Exercise Your Rights

To submit a request, email privacy@mobiloud.com. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.

We honor Global Privacy Control (GPC) opt-out preference signals as a valid opt-out of the sale and sharing of your personal information.

Changes to Privacy Policy

MobiLoud may change this policy anytime by notifying on this page. Changes effective when posted. New consent collected if changes affect consent-based processing.

Children’s Privacy

Services not intended for children under 16. MobiLoud doesn’t knowingly collect information from children under 16. Contact privacy@mobiloud.com if you believe otherwise.

Definitions

  • Personal Data: Information allowing identification of a natural person
  • Usage Data: Automatically collected information including IP addresses, browser type, device OS, page views, visit duration
  • Customer: Individual/organization using MobiLoud Services
  • Data Subject: Natural person to whom Personal Data refers
  • Data Processor: Entity processing Personal Data on Controller’s behalf
  • Data Controller: The entity that determines the purposes and means of processing. For Customer data collected by MobiLoud directly, the Controller is MobiLoud (Fifty Pixels Ltd). For end-user data processed through the MobiLoud Shopify App, the Controller is the Customer.
  • Services: MobiLoud’s products/services
  • European Union (EU): Current member states and European Economic Area
  • Cookie: Small data sets stored in visitor’s browser
  • Tracker: Technology enabling customer tracking (cookies, identifiers, web beacons, scripts, fingerprinting)

Legal Information and Jurisdiction

Policy based on:
- GDPR (EU 2016/679)
- CCPA (California Consumer Privacy Act)
- CPRA (California Privacy Rights Act)
- Other applicable privacy laws

Governing Law: England and Wales laws, with exclusive jurisdiction in English courts.

Contact Information:

Fifty Pixels Ltd
209 High Road, N2 8AN
London, UK
Email: privacy@mobiloud.com

Date last updated: March 16, 2026