Privacy Policy
Last Updated: 30 May 2026
Joy Care (defined below) collects and stores personal information needed to provide our Service. We are committed to being transparent about it and keeping your personal information safe, so this Privacy Policy defines our policies and procedures regarding the collection, use, protection and disclosure of Personal Data in connection with our Service and the Website and describes the choices available to you regarding Personal Data. This Privacy Policy also explains what rights you have and how to update and correct your personal information. In case you need to sign a separate data processing agreement, please see our DPA here.
We turn to the definitions given by the General Data Protection Regulation (2016/679) when it comes to meanings of 'personal data', 'data subject', 'processing', 'controller' and 'processor'.
We collect or store information about: i) the Customers and their representatives and contact persons, ii) the Users of the Service, iii) reviewers who have published reviews in publicly available Application Stores, and iv) visitors of Joy Care website www.respondly.dev ('Website').
This Privacy Policy forms an integral part of and is incorporated into our Terms and Conditions. By using the Website and/or our Service, you agree to the practices described in this Privacy Policy. If you do not agree to this Privacy Policy, kindly do not access our Website or use our Service in any way.
This Privacy Statement may be updated from time to time. An up-to-date version will be available on our Website. In case such a change is required, which would reduce your rights, Joy Care will provide a prior notice thereof.
Any capitalized terms in this Privacy Policy shall have the same meaning as in our Terms and Conditions, unless otherwise specified. In this Privacy Policy
(i) 'Joy Care' means the Joy Care Ltd, a limited liability company constructed according to the laws of Cyprus having its principal place of business at 28 October Ave 367, office A5, 3107, Limassol, Cyprus.
(ii) 'Joy Care Personal Data' refers to personal data collected and processed by Joy Care of the Customer's representatives and contact persons, Users of our Service, as well as visitors of our Website – here Joy Care is the controller;
(iii) 'Customer's Personal Data' refers to personal data processed by Joy Care relating to reviewers and app publishers as well as to any social media or email accounts linked to the Service – here Joy Care is the processor while the Customer is the controller; and
(iv) 'Personal Data' refers jointly to Joy Care Personal Data and Customer's Personal Data.
Personal Data and Sources of Data
The Personal Data collected and/or processed by Joy Care can be divided into two different sets: Joy Care Personal Data, for which Joy Care is the controller, and Customer's Personal Data, for which Joy Care is the processor.
1. Joy Care Personal Data
We collect the data we need to be able to enter into an agreement with Customers, to be able to fulfil our obligations regarding our Service and to be able to contact each Customer if needed. We further collect this information for marketing, statistics and improvements of our Service. In relation to the information defined in this Section 1, we are the data controller.
When breaking it down, this means we gather the following information:
'Contact data' - name of each representative and/or contact person of the Customer (company) as well as representatives' email address, phone number and role/title. In case the Customer signs up for the Account by using a social media account, we will get this information from the social media account. In case our Customer is not a company but a natural person, this information is collected about said natural person.
'Account data' – meaning details of your subscription (type, length, fee), which may be personal data only if the Customer is an individual, and any feedback potentially given to us by the User.
'Usage data' – meaning information and statistics of how and how often the User uses our Service, how many Apps the User is following, geographical location (country), IP address for trouble-shooting purposes and details about the size of the screen and browser window.
'Technical data' – meaning information regarding the number of visitors to our Website divided geographically by countries, which is done for statistics and marketing purposes. In detail, this means the IP address, browser type and version, location (country), operating system and platform, and language.
'Transactional data' – meaning data regarding the amounts, dates and methods of payments (credit card or invoice) the Customer has made to Joy Care. This may be Personal Data only if the Customer in question is an individual.
Contact data is given to us by Customers and Users. Account data, Usage data, Technical data and Transactional data is collected by us via your use of our Service, our Website, and also via cookies.
We do not collect any of the following:
'Personal information' – meaning date of birth, marital status or gender.
'Sensitive personal information' – meaning personal data regarding racial or ethnic origin, political opinions, religious or philosophical beliefs, genetics, health, sexual orientation, and so forth.
'Financial data' – meaning the Customer's or the User's personal bank account or card details. We don't process the payments for our Service ourselves, so we do not collect any financial data except for when a payment was made (time), in what amount (sum) and with what method (credit card or invoice). Instead, the Customer is requested by our payment provider to provide certain personal data in order to make payments for our Service. Such payments are carried out between the payment provider and the Customer, meaning that for such data Joy Care is neither the controller nor the processor.
2. Customer's Personal Data
We collect the data we need to be able to provide our Service. This data is collected from publicly available Application Stores regarding Apps chosen by the Customer. In relation to information defined in this Section 2, we are the data processor and the Customer is the data controller.
We process the following information:
'Contact data' - name or nickname of the reviewer as entered by the reviewer when writing and publishing a review.
'Usage data' – meaning geographical location (country) of where each review was published, and the language of the review, to be able to provide our Service. We also collect the reviewer's OS version, and device model in Google Play, in case the reviewer has made the necessary integrations. This is done to understand to which application version the review is related to.
'Content data' – we process and analyze the reviews published in Application Stores and thus we may process any and all information included in the titles, body texts or other textual parts of reviews, as published by each reviewer and as chosen to be analyzed by our Customers.
'Transactional data' – we process and analyze the number and sums of payments and/or purchases made within our Customer's application, subject to the Customer making the necessary integrations. This is not Personal Data, however, as this data cannot be traced back to any individual data subject (we do not, for example, have access to any information regarding payment methods or credit card numbers).
This data we gather from publicly available Application Stores. Each reviewer has either submitted this information to an Application Store themselves, or this information has been collected by the Application Store in question. The exception is the Transactional data, which we collect through the integrations possibly made by our Customer.
Regarding the Customer's Personal Data, the Customer as data controller is responsible for ensuring that such Personal Data is collected for legitimate purposes. The Customer is also responsible for providing information, if applicable, to data subjects about data collection/processing and the rights of data subjects.
We would further like to note that the Customer's Personal Data is only processed by Joy Care subject to a Data Processing Agreement between the Customer and Joy Care, and according to this Privacy Policy. The processing is always carried out on behalf of the Customer, at the Customer's request and according to the Customer's instructions.
It is very important that you as a Customer and/or User keep your Personal Data up-to-date and accurate, as we need it to be able to provide you with our Service. Kindly be in touch, should there be any changes while you're our Customer and/or User.
How We Use Your Data
We use your data for the following purposes:
Providing our Service: we use Personal Data to both set up the designated User(s) with our Service, meaning enabling the Users to use such, and to be able to provide our Service, including the functionalities provided by them, to the Customers and Users.
Handling customer agreements: when you have an Account with us and/or are using either our Service or both, it means we have an agreement with you and vice versa. We're happy about that! We use Joy Care Personal Data for fulfilling our contractual obligations as well as handling and managing our Customer agreements, including getting in touch with you, if needed, regarding the specifics of your subscription, and any potential issues. We may also contact you for marketing purposes, but you can opt out whenever (more on this later).
Improving our Service: we use Joy Care Personal Data, namely feedback potentially provided by Customers and Users, as well as any details and recorded logs of issues and trouble-shooting activities with our Service, to fix said issues, potential bugs, and to overall develop and make our Service better. IP addresses are also collected for, and only for, this purpose.
Statistics and analytics for marketing and developing purposes: we use geographical data (countries), anonymized statistics of the number of Customers, Users, visitors to the Website, and similar metrics to see how we could improve our Service, and for marketing purposes. All of this is Joy Care Personal Data.
Compliance with applicable laws: we also use Personal Data to comply with requirements of the GDPR imposed on us, as well as to comply with Cyprus legislation and other laws that may be applicable to us, as the case may be. For this purpose, we only use Personal Data to the minimum extent to fulfil our legal obligations.
We never profile Customers, Users or visitors to the Website on the basis of Personal Data, and we never use automated decision making or enable Personal Data to be used for such decision-making purposes. We also never sell Personal Data to any third parties, for any purpose.
Do We Share Your Data?
Joy Care uses subprocessors in its activities regarding Personal Data for purposes described in this Privacy Policy.
We use subprocessors for analytic purposes, to contact and communicate with our Customers, and to store Customer's Personal Data. Subprocessors are not used for any other kind of processing or handling of Customer's Personal Data except for storage. In other words, our servers where the Customer's Personal Data is located are provided to us by our subprocessors.
Using of subprocessors is always subject to the following:
the subprocessor is located within the EEA or a country with an equivalent level of personal data protection as determined by the European Commission, or such subprocessor has provided sufficient guarantees that the subprocessor in question processes personal information with the sufficient level of protection from the GDPR-point-of-view. Such a sufficient level is reached, for example, by agreeing about it by using the standard contractual clauses (SCCs) as issued by the European Commission; and
such subprocessing is subject to the terms of an appropriate data processing agreement (DPA) between us and the subprocessor.
Joy Care may also disclose Personal Data if we have an obligation to do so according to law, decree, regulation, order by a court or other official authority, or a similar action applicable to us, or if we are allowed to do so according to an agreement we have with a Customer, or in order to seek legal remedies or enforce our rights under such agreement. In these cases, we will only disclose Personal Data to the minimum extent necessary case-by-case, and in case of an agreement with a Customer, according to the clauses of the said agreement.
Our team is distributed with some members located outside the European Economic Area. They may also process Personal Data if it's part of their job here at Joy Care. However, this is not sharing data as such, nor is this subprocessing, as these esteemed colleagues process the Personal Data on behalf and in the name of Joy Care. They are bound by the appropriate non-confidentiality obligation and their location does not affect the location of the Personal Data, e.g. the servers where that data is stored.
Keeping Your Data Safe
We respect the principles of lawfulness, fairness and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality, and accountability when it comes to Personal Data. We are obliged by the GDPR to understand and abide by these principles.
Here at Joy Care we have implemented appropriate technical, administrative and organizational measures in order to achieve many things, such as:
to be able to protect Personal Data the best we can
to ensure and to be able to demonstrate that we perform data processing in accordance with the GDPR
to prevent any unauthorized person from gaining access to computer systems processing Personal Data
to prevent any unauthorized reading, copying, alteration or removal of Personal Data
to prevent any unauthorized memory inputs as well as any unauthorized disclosure, alteration or erasure of stored Personal Data
to prevent unauthorized persons from using Joy Care's systems by means of data transmission facilities
to ensure that authorized Users of Service have access only to such Personal Data that their access right refers
to ensure that our employees processing Personal Data are subject to a duty of confidentiality and only process Personal Data according to our instructions.
Please also note that this Privacy Policy applies solely to Personal Data collected and/or processed by Joy Care and does not cover other websites and services than our Website, even if there's a link to such a website. If you go to another website, please familiarize yourself with the privacy policy located there.
How Long Do We Keep Your Data For?
We store the Personal Data only as long as necessary for the purposes laid out in this Privacy Policy or for another legitimate purpose, such as to comply with applicable legal, tax, or accounting requirements.
The necessity is most likely dictated by one of the following reasons:
storing the Personal Data is necessary for us to be able to fulfil the purpose for which said Data was collected, namely our contractual obligation with you and/or providing our Service to you
we have to store the Personal Data to comply with our legal obligations
we need the Personal Data to resolve a dispute
we need the Personal Data to be able to enforce our agreements
We check the Personal Data we have periodically and erase such parts we don't need any more. Please note that instead of deleting, we may anonymize the Personal Data and keep it for statistical purposes. At this point, the Personal Data will stop being Personal Data, as after being anonymized, it is no longer possible to identify any Data Subject from or based on said information, directly or indirectly, and not even by connecting different pieces of information.
We may keep data longer than defined above, but only in such anonymized form that can no longer be connected or traced to any individual person. This is done for statistics purposes.
In case you're a Customer, and wish to delete your account earlier including all reviews data within that account, please don't hesitate to contact us at help@respondly.dev. Please note that deletion of such data will affect our capability of providing you Service.
Where We Store Your Data
Our servers, where Personal Data is stored, are located within the EEA.
Age Restrictions
Our Service are intended for legal entities, self-employed entrepreneurs and/or individuals above the age of 18. We do not on purpose collect any personal data from anyone younger than age 18. If you are a person under the age of 18, please have your parent or a legal guardian take a look at this with you. If you are the parent or a legal guardian of a person younger than age 18 reading this, and believe that Joy Care has collected Personal Data from or regarding such a person, please give us a shout at: help@respondly.dev. We will be able to assist in deleting such Personal Data information from our files.
Your Rights, Entirely Yours
General.
In case we collect or process your Personal Data, that makes you a data subject. If you as a data subject have a request relating to your rights, please send us an email at help@respondly.dev. We will get to work and process your request without undue delay, and in any event within one (1) month. However, if necessary, and upon providing notice to you, this period of one (1) month may be extended by a further two (2) months.
The request will be handled free of charge unless otherwise mentioned below or unless it is manifestly unfounded or excessive, in which case a reasonable administrative fee may be charged.
Please note, Joy Care will generally require data subjects to identify themselves in order to be able to handle requests regarding Personal Data. If we don't know your name (or nickname, as the case may be), there's unfortunately not much we can do.
Here are things you as a data subject can request from us:
Access.
You have a right to see what we're up to, in other words, you can request a copy of your Personal Data that is undergoing processing. Please note that the first request will be processed free of charge, whereas reasonable costs will be charged for any later requests. No confidential information of Joy Care or third parties shall be provided. We don't kiss and tell.
Rectification.
It's a fancy word, and it means correction. You as a data subject have a right to request rectification of any inaccurate Personal Data concerning you. Please just give us a shout!
Erasure and data portability.
You have a right to request the erasure of your Personal Data that is no longer necessary in relation to the purposes for which it was collected, or if it's no longer processed, or in case such erasure is required for compliance with Finnish law. No need to mark deadlines for erasure in your calendar, as we periodically erase data that is no longer needed for the purpose it was collected for. However, this right is yours and you should exercise it if you feel it's necessary. We're here to help you with it.
You also have a right to request a copy of the Personal Data relating to you, in which event the Personal Data will be provided to you in machine-readable form or transferred directly to a third party, at your discretion.
Right to restrict processing.
You have a right to request the restriction of the processing of Personal Data relating to you in the following scenarios:
if you contest the accuracy of the data
if you think our processing is unlawful and instead of erasure wish for a restriction
if we no longer need the Personal Data but you require said data for the establishment, exercise or defence of legal claim
in case you have objected to the processing and it's being verified whether we have legitimate ground that overrides yours
Right to object to processing.
You have a right to object, at any time and on the ground relating to your particular situation (whatever that may be – we hope it's good though), to processing Personal Data concerning you. We then have to demonstrate compelling legitimate grounds for the processing. If we don't, we have to stop said processing.
Right to lodge a complaint with a supervisory authority.
You don't have to take our word for it. If you as a data subject think that processing of your Personal Data infringes your rights, you can lodge a complaint with a supervisory authority agency. The supervisory authority in Finland is the Office of the Data Protection Ombudsman – you can reach them via their website at www.tietosuoja.fi.
Cookie Policy
Then to cookies. These are unfortunately not the kind you can eat but rather the kind made of letters and numbers and placed on your computer when you visit websites.
Cookies per se are not Personal Data, but they often contain Personal Data in the form of a unique ID for each user and may be linked directly or indirectly to a Data Subject when combined with other information. That's why we thought it would be the clearest approach to include our Cookie Policy to our Privacy Policy.
We use cookies deposited on your computer when you visit our Website or access our Service. The cookies can be divided to marketing and analytics cookies, and to so-called essential cookies, without which the functionality of our Website and Service would be significantly lessened. The purposes for our cookie collection are to enable, develop and improve our Website, the Service, as well as for marketing and analytics purposes. The data collected by cookies will be processed according to this Privacy Policy, so no nothing new in that regard.
The cookies will identify your browser and operating system, as well as track your browser between active sessions and when accessing different parts of our Website and Service. Some parts of our Website and Service require the use of cookies to operate properly, such as logging in to our platform.
We also use cookies in order to obtain non-personal analytics data about the use of our Website, such as information of the website wherefrom you landed to our Website, the number of page views, your movements around on our Website and duration of time spent on our Website.
It's an important reminder that you are in control, meaning you can block, delete or turn off cookies deposited on your computer any time you wish. This can be done by accessing the Settings section of the web browser of your choice. Please just keep in mind that our Website or Service will not work properly without some cookies.
You can also delete cookies any time by accessing the settings of your browser.
Please note that by using our Service, and/or by continuing to use our Website in a way that your web browser is set to accept cookies, you consent to Joy Care's use of cookies. As nothing in life, this isn't permanent and you can withdraw your consent anytime by tweaking the settings on your browser so that cookies are not accepted.
For more information about cookies, see for example allaboutcookies.org.
You can Opt Out
Upon taking our Service into use, you agree to receive two different kinds of communications from Joy Care: marketing messages concerning things we think might be interesting to you, such as new features of our Service, and administrative messages relating to the Service.
You may change your mind, and accordingly, you can change your choices regarding the types of communication you receive from us through your Account. You may, for example, opt out of our marketing emails by following the instructions provided in each email (we'll be sorry to see you go!).
In case you access our Service by using certain desktop browsers or mobile applications, you may, with permission, receive push notifications. We have no control over these preferences, but they can be modified in the settings menu for the mobile application or the applicable browser.
Please note that we reserve the right to send you certain communications relating to your Account or use of our Service (for example, if you wish to invite new Users to use the Service or if there is a billing matter to be taken care of) via email and other means as made available by you. We're not marketing here, we just wish to keep you updated on what's going on. These messages may be unaffected if you opt out from receiving marketing messages.
Questions or Concerns? Please Reach Out to Us
Should you have concerns or questions regarding this Privacy Policy, we're more than happy to discuss it. Please feel free to contact us at: help@respondly.dev.