PRIVACY POLICY
Laws of Power: Power Master 48
The Box App Software SRL
Last Updated: March 23, 2026
This Privacy Policy explains how The Box App Software SRL (“Company,” “we,” “us,” or “our”) collects, uses, discloses, stores, transfers, and otherwise processes information in connection with your access to and use of Laws of Power: Power Master 48 (the “App”), including related features, services, content, subscriptions, support channels, and functionality made available through the App or in connection with it.
This document also includes:
a GDPR / EEA / UK / Switzerland Privacy Addendum; and
a U.S. State Privacy Addendum.
By downloading, accessing, registering for, purchasing, subscribing to, or using the App, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this Privacy Policy, you should not use the App.
1. WHO WE ARE
The App is provided by:
The Box App Software SRL
Email: info@the-box.app
For purposes of applicable data protection law, The Box App Software SRL is the data controller of personal data processed in connection with the App, except where another entity is expressly identified at the point of collection or where third parties act as independent controllers under their own privacy notices.
2. SCOPE OF THIS PRIVACY POLICY
This Privacy Policy applies only to Laws of Power: Power Master 48 and related services, unless a separate privacy notice expressly applies to a specific product, feature, service, or integration.
This Privacy Policy applies to information we collect:
directly from you;
automatically from your device and your interaction with the App;
from app stores, payment processors, subscription platforms, authentication providers, analytics tools, support providers, and other service providers;
from third parties where necessary to provide the App, support transactions, protect security, enforce rights, or comply with law.
This Privacy Policy does not govern the practices of third parties that we do not control, including Apple, Google, Stripe, RevenueCat, analytics providers, hosting vendors, or any third-party websites, apps, or services linked from or integrated with the App, except as expressly described here.
3. INFORMATION WE MAY COLLECT
Depending on how you use the App, we may collect the following categories of information.
3.1 Information You Provide Directly
We may collect information you provide to us directly, including:
your name, username, display name, or profile identifier;
email address and account credentials;
sign-in information when using authentication features;
account preferences and profile settings;
quiz answers, progress data, favorites, bookmarks, saved content, notes, or other in-app entries;
survey responses, reviews, feedback, support messages, legal inquiries, complaints, or communications with us;
information you provide when you participate in promotions, beta tests, waitlists, or other optional features;
any other information you choose to submit through the App or in communications with us.
3.2 Account and Authentication Information
If the App allows account creation or sign-in, we may process account-related information, such as:
login credentials or authentication tokens;
password hashes or secure authentication data handled through authorized providers;
account creation date;
account status;
subscription entitlement status;
identifiers associated with your account across devices or platforms.
3.3 App Usage and Activity Information
We may collect information regarding how you interact with the App, including:
lessons viewed;
features used;
screens visited;
time spent in the App;
session activity;
progress through content or learning paths;
tap, click, or navigation events;
subscription screen interactions;
engagement with reminders, prompts, or premium features;
performance and behavioral analytics relating to feature usage.
3.4 Device, Technical, and Log Information
We may collect certain technical information automatically from your device or app environment, including:
device model and device type;
operating system and version;
app version and build number;
language, locale, time zone, and country or region setting;
IP address or IP-derived region where necessary;
mobile network information;
unique device identifiers, app instance identifiers, or similar technical identifiers;
crash data, error logs, diagnostics, debugging information, and performance data;
approximate technical metadata needed for fraud prevention, infrastructure stability, security monitoring, and analytics.
3.5 Purchase, Subscription, and Billing Information
If you purchase subscriptions, premium access, or other paid features, we may process billing-related and subscription-related information, including:
purchase channel, such as Apple App Store, Google Play, or web checkout;
product identifier, offer identifier, and subscription plan;
subscription status and entitlement information;
renewal and expiration dates;
trial status;
billing status;
receipt, transaction, invoice, token, or purchase reference information required to validate access;
limited payment-related metadata.
If you purchase through our web checkout, payments may be processed by third-party payment processors, including Stripe. We may also use third-party subscription management providers, including RevenueCat, to manage subscription validation, entitlement status, renewal logic, and related service functionality.
We do not store full payment card numbers or full financial account details unless explicitly stated at the point of collection and legally permissible. Payment details are generally processed by the relevant payment provider or platform under that provider’s own terms and privacy notice.
3.6 Customer Support and Communications Information
If you contact us or communicate with us, we may collect:
your name and contact details;
the content of your message;
attachments, screenshots, or supporting documents you send;
issue descriptions;
communication history;
support outcomes and resolution notes.
3.7 User Content
If the App allows you to create, save, upload, or submit notes, entries, comments, profile elements, preferences, reflections, or similar materials, we may process such materials to provide App functionality and personalization.
3.8 Information from Third Parties
We may receive information from third parties, including:
Apple App Store and Google Play, including transaction status and subscription metadata;
payment processors such as Stripe;
subscription platforms such as RevenueCat;
analytics, crash reporting, and diagnostics tools;
authentication providers, including sign-in services;
customer support or communication vendors;
fraud prevention, infrastructure, security, or hosting providers.
3.9 Information We Infer
We may derive or infer information from the data we collect, such as:
preferred content categories;
general engagement patterns;
feature interests;
estimated subscription eligibility;
technical or behavioral signals relevant to fraud prevention, personalization, product design, or support.
4. HOW WE USE INFORMATION
We may use the information we collect for the following purposes:
4.1 To Provide and Operate the App
Including to:
create and manage accounts;
provide access to lessons, quizzes, progress tools, and premium features;
authenticate users;
synchronize or restore account-based functionality where available;
maintain service continuity and support your use of the App.
4.2 To Personalize the Experience
Including to:
remember your settings and preferences;
tailor content, progress displays, and learning flow;
offer reminders, recommendations, or saved state functionality;
enable premium access and entitlement-based personalization.
4.3 To Process Purchases and Manage Subscriptions
Including to:
validate purchases;
process or support subscription activation and renewal;
verify entitlement status;
manage billing-related functionality;
detect billing failures, abuse, fraud, or chargebacks;
administer promotional offers and trial eligibility.
4.4 To Improve, Monitor, and Develop the App
Including to:
understand usage trends;
diagnose bugs and crashes;
test and improve user experience;
evaluate product performance;
develop new features, offerings, and content;
analyze effectiveness of onboarding, engagement, and monetization features.
4.5 To Maintain Security and Prevent Abuse
Including to:
detect and investigate fraud, abuse, unauthorized access, suspicious activity, and violations of our legal terms;
protect the App, users, systems, and infrastructure;
prevent payment fraud and misuse of premium features;
secure accounts and support incident response.
4.6 To Communicate with You
Including to:
respond to inquiries, feedback, and support requests;
send important service or account notices;
communicate about billing, subscription status, product updates, and security matters;
provide transactional or legally required communications.
4.7 To Comply with Legal Obligations and Enforce Rights
Including to:
comply with applicable laws, regulations, court orders, lawful requests, tax obligations, accounting obligations, and regulatory requirements;
enforce our Terms of Service, EULA, or other legal rights;
protect our rights, property, personnel, users, and the public.
4.8 For Internal Administrative and Business Purposes
Including to:
conduct audits;
maintain records;
support financing, accounting, tax, legal, and operational processes;
prepare for mergers, acquisitions, restructurings, financing transactions, or asset transfers.
5. LEGAL BASES FOR PROCESSING
Where required by applicable law, including in the European Economic Area, the United Kingdom, and Switzerland, we rely on one or more of the following legal bases:
5.1 Performance of a Contract
We process personal data where necessary to:
create and maintain your account;
provide the App and its features;
enable paid features and subscription access;
fulfill transactions you request;
provide requested support or account services.
5.2 Legitimate Interests
We may process personal data where reasonably necessary for our legitimate interests, including:
operating and improving the App;
maintaining platform stability and security;
analytics and diagnostics;
fraud prevention and abuse detection;
personalization;
business administration;
enforcing legal terms and protecting legal rights.
Where we rely on legitimate interests, we consider and balance those interests against your rights and freedoms.
5.3 Consent
We may rely on consent where required by law, including for certain optional communications or non-essential technologies. Where processing is based on consent, you may withdraw consent at any time, without affecting prior lawful processing.
5.4 Legal Obligation
We may process personal data where necessary to comply with legal and regulatory obligations.
6. HOW WE SHARE INFORMATION
We do not sell your personal data for money.
We may disclose or share information in the following circumstances.
6.1 Service Providers and Processors
We may share information with vendors, contractors, and service providers that perform services on our behalf, including providers of:
cloud hosting and infrastructure;
authentication and account services;
analytics;
diagnostics and crash reporting;
payment processing;
subscription management and entitlement verification;
customer support tools;
communications services;
security, logging, and fraud prevention;
software development, testing, and operational support.
These providers may include Stripe, RevenueCat, Apple, Google, and other vendors we use from time to time.
6.2 App Stores, Payment Providers, and Billing Infrastructure
If you make a purchase, information relevant to that purchase may be exchanged with:
Apple App Store;
Google Play;
Stripe;
RevenueCat;
other billing, payment, invoicing, fraud, or entitlement providers involved in your transaction.
6.3 Affiliates and Corporate Transactions
We may share information with affiliates, parent entities, subsidiaries, advisors, investors, acquirers, or successor entities in connection with:
a merger;
acquisition;
financing transaction;
reorganization;
bankruptcy;
sale of assets;
corporate restructuring;
due diligence or transaction planning.
6.4 Legal Compliance and Protection
We may disclose information where we believe disclosure is necessary or appropriate to:
comply with applicable law, regulation, legal process, or lawful government request;
enforce our rights, agreements, or policies;
investigate fraud, abuse, payment disputes, or security incidents;
protect the rights, safety, property, or integrity of the Company, users, partners, or the public.
6.5 With Your Direction or Consent
We may share information where you direct us to do so or where you otherwise consent.
6.6 Aggregated or De-Identified Information
We may use and disclose aggregated, anonymized, or de-identified information for analytics, research, product development, business intelligence, and other lawful purposes, provided such information does not reasonably identify you.
7. PAYMENT PROCESSORS, SUBSCRIPTION PROVIDERS, AND THIRD-PARTY PLATFORMS
If you use paid features, your transaction may involve third-party services that process personal data under their own legal terms and privacy notices.
These may include:
Apple App Store for iOS app billing and subscription management;
Google Play for Android billing and subscription management;
Stripe for web checkout and web-based payment processing;
RevenueCat for subscription verification, entitlement management, and related subscription infrastructure.
These third parties may act as independent controllers for some data they receive, or as processors/service providers depending on context. We encourage you to review their privacy notices and terms separately.
8. COOKIES, SDKS, LOCAL STORAGE, AND SIMILAR TECHNOLOGIES
The App may use cookies, SDKs, local storage, pixels, tags, or similar technologies, directly or through vendors, to:
enable essential functionality;
keep users signed in;
remember preferences and settings;
support subscription and entitlement logic;
measure performance and reliability;
understand engagement and usage patterns;
maintain security and detect abuse;
analyze feature effectiveness.
Where required by law, we will obtain consent before using non-essential technologies.
9. DATA RETENTION
We retain personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to:
provide the App and its features;
maintain user accounts;
manage subscriptions and billing records;
comply with legal, tax, accounting, regulatory, and recordkeeping obligations;
resolve disputes;
enforce agreements;
protect against fraud, abuse, and security threats.
Retention periods may vary depending on:
the type of data;
the purpose for which it was collected;
whether the data is needed for ongoing service provision;
legal requirements;
operational and security needs.
Where appropriate, we may delete, anonymize, aggregate, or de-identify data when it is no longer reasonably necessary.
10. INTERNATIONAL DATA TRANSFERS
Your information may be processed and stored in countries other than the country in which you reside. Those countries may have data protection laws that differ from those in your jurisdiction.
Where required by applicable law, we implement appropriate safeguards for international transfers, including contractual protections or other valid transfer mechanisms.
11. DATA SECURITY
We implement reasonable administrative, technical, and organizational safeguards designed to protect personal data against unauthorized access, loss, misuse, destruction, alteration, or disclosure.
However:
no method of transmission over the internet or mobile networks is completely secure;
no system can guarantee absolute security;
you are responsible for maintaining the confidentiality of your credentials and using secure devices and networks.
If we become aware of a security incident affecting your personal data, we will respond in accordance with applicable law.
12. CHILDREN’S PRIVACY
The App is not directed to children under 13 years of age, and we do not knowingly collect personal data from children under 13 without appropriate authorization where required by law.
If you believe a child under 13 has provided personal data through the App, please contact us at info@the-box.app. If we become aware that we have collected personal data from a child in violation of applicable law, we will take appropriate steps to delete or restrict that information as required.
13. YOUR RIGHTS AND CHOICES
Depending on your jurisdiction, you may have legal rights regarding your personal data. These may include the right to:
access personal data we hold about you;
request correction of inaccurate or incomplete data;
request deletion of personal data;
request restriction of processing;
object to certain processing;
request portability of certain data;
withdraw consent where processing is based on consent;
opt out of certain disclosures or profiling where legally applicable;
lodge a complaint with a competent regulator.
You may also have choices regarding:
subscription management through your billing channel;
account settings;
device permissions;
use of certain optional technologies, where applicable.
To exercise applicable rights, contact us at info@the-box.app. We may need to verify your identity before fulfilling your request. Some rights are subject to exceptions and limitations under applicable law.
14. ACCOUNT DELETION
If the App provides account deletion functionality, you may use that functionality to request deletion of your account. You may also contact us at info@the-box.app to request deletion, where applicable.
Please note:
some information may be retained as required by law;
some information may be retained for fraud prevention, dispute resolution, billing, accounting, security, or enforcement purposes;
backups may persist for a limited period;
anonymized or aggregated information may be retained.
15. THIRD-PARTY SITES, SERVICES, AND CONTENT
The App may contain links to or integrations with third-party websites, services, tools, or content. We are not responsible for the privacy, security, or data practices of third parties we do not control. Your interactions with those third parties are governed by their own terms and privacy notices.
16. DO NOT TRACK
Some browsers or platforms may provide “Do Not Track” signals or similar mechanisms. Because there is not yet a universally accepted standard for responding to such signals across app environments, the App may not respond to them unless required by applicable law.
17. CHANGES TO THIS PRIVACY POLICY
We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date above and may provide additional notice where required by applicable law.
Your continued use of the App after the effective date of the updated Privacy Policy constitutes your acknowledgment of the revised Privacy Policy, to the extent permitted by law.
18. CONTACT US
If you have questions, privacy requests, or concerns regarding this Privacy Policy or our data practices, you may contact us at:
The Box App Software SRL
Email: info@the-box.app
GDPR / EEA / UK / SWITZERLAND PRIVACY ADDENDUM
Applies to users in the European Economic Area, the United Kingdom, and Switzerland
This Addendum supplements the Privacy Policy for individuals located in the European Economic Area (“EEA”), the United Kingdom (“UK”), and Switzerland. If there is a conflict between this Addendum and the main Privacy Policy, this Addendum controls to the extent required by applicable law.
1. DATA CONTROLLER
The data controller is:
The Box App Software SRL
Email: info@the-box.app
2. CATEGORIES OF PERSONAL DATA
We may process the following categories of personal data:
identity and profile data;
account and authentication data;
contact data;
device and technical data;
usage and analytics data;
purchase and subscription metadata;
support communications;
user-generated content;
security and fraud prevention data;
inferred preference and engagement data.
3. PURPOSES AND LEGAL BASES
We process personal data for the purposes described in the Privacy Policy. Our principal legal bases include:
3.1 Contract
Processing necessary to:
create and administer your account;
provide the App and its features;
deliver purchased subscriptions or premium access;
authenticate you;
manage support and service communications related to the App.
3.2 Legitimate Interests
Processing necessary for our legitimate interests, such as:
product improvement and analytics;
debugging, diagnostics, and crash monitoring;
service security and fraud prevention;
personalization and feature optimization;
subscription verification and business administration;
enforcing legal terms and protecting rights;
internal reporting and operational continuity.
Where we rely on legitimate interests, we balance those interests against your rights and freedoms.
3.3 Consent
Processing based on your consent where required, including for certain optional communications or non-essential technologies. You may withdraw consent at any time.
3.4 Legal Obligation
Processing necessary to comply with legal and regulatory obligations.
4. RECIPIENTS OF PERSONAL DATA
We may disclose personal data to:
hosting and infrastructure providers;
analytics and diagnostics providers;
payment processors such as Stripe;
subscription infrastructure providers such as RevenueCat;
Apple App Store and Google Play where relevant;
customer support, authentication, and security vendors;
legal, regulatory, and governmental authorities where required;
advisors, auditors, acquirers, and successor entities in business transactions.
5. INTERNATIONAL TRANSFERS
Where personal data is transferred outside the EEA, UK, or Switzerland, we rely on lawful transfer mechanisms where required, which may include:
adequacy decisions;
Standard Contractual Clauses;
the UK International Data Transfer Addendum or equivalent measures;
other legally recognized safeguards.
6. RETENTION CRITERIA
We determine retention based on factors such as:
the nature and sensitivity of the data;
the purposes for which the data was collected;
the need to provide ongoing services;
legal, accounting, tax, and regulatory requirements;
fraud prevention, security, dispute resolution, and enforcement needs.
7. YOUR RIGHTS
Subject to applicable law, you may have the right to:
obtain confirmation of whether we process your personal data;
access your personal data;
request rectification of inaccurate or incomplete data;
request erasure of personal data;
request restriction of processing;
object to processing based on legitimate interests;
request portability of certain personal data;
withdraw consent where processing is based on consent;
lodge a complaint with a competent supervisory authority.
8. EXERCISING YOUR RIGHTS
To exercise your rights, contact info@the-box.app. We may request additional information to verify your identity before acting on your request.
9. COMPLAINTS
You may lodge a complaint with the supervisory authority in your place of residence, work, or the place of the alleged infringement, as permitted by applicable law.
10. SPECIAL CATEGORY DATA
The App is not intended to collect special categories of personal data unless you voluntarily provide such information. You should avoid submitting sensitive personal data unless clearly necessary and appropriate.
U.S. STATE PRIVACY ADDENDUM
Applies where required by applicable U.S. state privacy law
This Addendum supplements the Privacy Policy for residents of U.S. states that grant consumer privacy rights, including where applicable California, Colorado, Connecticut, Virginia, Utah, Texas, Oregon, Montana, and others.
1. CATEGORIES OF PERSONAL INFORMATION
Depending on how you use the App, we may collect the following categories of personal information:
identifiers, such as email address, username, account identifiers, device identifiers, and IP-related information;
customer records information, such as account or subscription details;
commercial information, such as purchase history, subscription status, product identifiers, trial status, and billing metadata;
internet or other electronic network activity information, such as app usage, interactions, engagement patterns, and technical logs;
geolocation information at a coarse level, such as region inferred from IP or device settings;
audio, electronic, visual, or similar information, if you provide screenshots, support attachments, or other materials;
professional or employment-related information, if you voluntarily include it in support messages or other communications;
inferences drawn from usage patterns and interactions;
sensitive personal information only where permitted by law and only as reasonably necessary for lawful business purposes.
2. SOURCES OF PERSONAL INFORMATION
We collect personal information from:
you directly;
your device and app usage;
app stores and payment channels;
payment processors such as Stripe;
subscription infrastructure providers such as RevenueCat;
analytics, diagnostics, support, authentication, hosting, and fraud-prevention vendors;
other third parties as legally permitted.
3. PURPOSES FOR COLLECTION, USE, AND DISCLOSURE
We collect, use, and disclose personal information for the business and commercial purposes described in the main Privacy Policy, including:
operating and providing the App;
account and subscription administration;
processing and validating purchases;
personalization;
analytics, product improvement, debugging, and diagnostics;
fraud prevention, abuse detection, and security;
legal compliance and enforcement;
customer support;
business operations and transaction management.
4. DISCLOSURE OF PERSONAL INFORMATION
We may disclose personal information to service providers, contractors, processors, vendors, affiliates, advisors, and transaction counterparties for the purposes described above.
5. SALES AND SHARING
We do not sell personal information for monetary consideration.
We do not knowingly sell or share the personal information of minors where prohibited by applicable law.
Some U.S. state laws define “sharing” or similar terms broadly enough to include certain analytics, cross-context behavioral advertising, or related disclosures. To the extent such laws apply and our practices fall within those definitions, you may have the right to opt out.
If applicable law grants you such rights, you may contact us at info@the-box.app.
6. SENSITIVE PERSONAL INFORMATION
We do not use or disclose sensitive personal information for purposes requiring a special right to limit use, except as permitted by applicable law or where reasonably necessary to provide requested services, maintain security, detect fraud, or comply with law.
7. RETENTION
We retain personal information for the period reasonably necessary to achieve the disclosed purposes, taking into account legal, operational, contractual, security, and business requirements.
8. YOUR PRIVACY RIGHTS
Depending on your state of residence and subject to applicable exceptions, you may have the right to:
know or access personal information we collected about you;
correct inaccurate personal information;
delete personal information;
obtain a portable copy of certain information;
opt out of sale, sharing, targeted advertising, or certain profiling activities, where applicable;
appeal our decision regarding a privacy request, where required by law;
be free from discrimination or retaliation for exercising privacy rights.
9. SUBMITTING REQUESTS
You may submit privacy requests by contacting us at info@the-box.app.
We may take reasonable steps to verify your identity before processing your request. Authorized agents may submit requests where permitted by law, subject to verification requirements.
10. APPEALS
If you are denied a privacy request and applicable law grants an appeal right, you may submit an appeal by replying to the denial communication or by contacting info@the-box.app with the subject line indicating that your message is a privacy appeal.
11. CALIFORNIA-SPECIFIC RIGHTS
Where applicable under California law, California residents may have additional rights, including rights relating to:
access to categories and specific pieces of personal information;
deletion;
correction;
opt-out rights where applicable;
non-discrimination;
use of authorized agents.
California residents may also request certain information about disclosures for direct marketing purposes where applicable.
12. MINORS’ CONTENT RIGHTS
If applicable law provides eligible minors the right to request removal of content they posted, such requests may be submitted to info@the-box.app, subject to legal and technical limitations.