Legal
Privacy Policy
Mobile Developer (MoDev) — modev.app
A Product of Royal Legends Tech Solutions, Inc. (RLTS, Inc.) · Effective Date: May 3, 2026 · Last Updated: May 3, 2026
1. Overview
Mobile Developer ("MoDev") is a product of Royal Legends Tech Solutions, Inc. (RLTS, Inc.), a Delaware corporation. This Privacy Policy explains what personal information we collect when you use MoDev, how we use it, how we protect it, what we never do with it, and the rights you have over your data. By creating an account or using MoDev, you acknowledge that you have read and agree to the practices described in this Privacy Policy.
2. Who We Are
Product: Mobile Developer (MoDev) Operated by: Royal Legends Tech Solutions, Inc. (RLTS, Inc.) State of Incorporation: Delaware, United States Website: modev.app Privacy & Legal Contact: modev@rlt.solutions Support Contact: support@rlt.solutions
3. Information We Collect
We collect only what is necessary to operate the platform. Nothing more. 3.1 Information You Provide Directly — Full name — Email address — Workspace name — Workspace ID — used for account management, support, and billing purposes 3.2 Information Collected Automatically Token usage counts per workspace — tracked for billing quota enforcement only. This data contains no message content, code, prompts, or user-generated material of any kind. 3.3 What We Do Not Collect or Store — Credit card numbers or any payment card data (handled entirely by Stripe) — The content of your chats, prompts, AI completions, or notes — The content of your code, repositories, or deployments — Files, emails, calendar events, or any content from connected third-party services — Any data generated inside your workspace by you or your connected AI models
4. How We Use Your Information
The information we collect is used exclusively to: — Create and manage your MoDev account — Communicate with you regarding your subscription, billing status, and platform updates — Provide customer support and respond to inquiries — Enforce subscription usage quotas and billing tier limits We do not use your information for advertising, behavioral profiling, resale, or any purpose beyond what is necessary to operate and improve MoDev.
5. Third-Party Integrations, Connected Services & Your Credentials
MoDev is a connector platform. It allows you to link your own third-party tools and services using credentials that you provide and fully control. These integrations include, but are not limited to: — AI Models: Anthropic (Claude), OpenAI (ChatGPT), Google (Gemini), and any additional AI providers made available on the platform — Developer & Cloud Platforms: GitHub, Vercel, Supabase, and any additional developer tools made available on the platform — Productivity & Workspace Tools: Gmail, Google Calendar, Google Drive, and any additional productivity services made available on the platform — Additional Integrations: Any other tools, APIs, or services you connect through MoDev now or in the future RLTS acts solely as a technical connector. We do not read, access, store, process, or transmit the content of your activity within any connected service. Your API keys are stored encrypted at rest. Your OAuth tokens (including those issued by Google) are stored encrypted at rest. We have no visibility into your work product, messages, code, repositories, emails, calendar events, or any files you access through connected tools. Your use of each third-party service remains governed by that service's own terms and privacy policies. RLTS is not a party to those agreements.
6. Google API Services — Specific Disclosure
MoDev enables users to optionally connect Google services — including Gmail, Google Calendar, and Google Drive — via Google OAuth 2.0. This section describes exactly how MoDev handles Google user data, as required by the Google API Services User Data Policy. What we access: When you connect a Google service, MoDev requests only the specific OAuth scopes required to enable the feature you have chosen to use. We do not request broad access beyond what is needed for the feature you activate. What we do not do with your Google data: — We do not read, store, or process the content of your Gmail messages — We do not store the content of your Google Calendar events or Google Drive files on our servers — We do not aggregate or analyze your Google user data for any purpose beyond connecting the service on your behalf, at your direction — We do not sell, share, transfer, or disclose your Google user data to any third party — We do not use your Google user data to train AI models How it is stored: Your Google OAuth tokens are stored encrypted at rest in Supabase (AWS us-east-1, United States). These tokens are used exclusively to authenticate API requests made on your behalf at your direction within MoDev. Data retention: OAuth tokens are retained for the duration of your active connection. They are deleted within 30 days of disconnection or account deletion. How to revoke access: You may disconnect any Google service at any time from within MoDev. You may also revoke MoDev's access directly from your Google Account at myaccount.google.com/permissions. Upon revocation, your OAuth token is deleted from our systems within 30 days. MoDev's use of Google user data is limited to the practices explicitly disclosed in this Privacy Policy and complies with the Google API Services User Data Policy, including its Limited Use requirements.
7. Data Storage & Security
— Hosting: All MoDev platform data is hosted on Supabase (AWS us-east-1, United States) — API Keys: All user-provided third-party API keys are stored encrypted at rest — OAuth Tokens: All OAuth tokens (including Google) are stored encrypted at rest — Data in transit: All data transmitted between your device and MoDev is encrypted using TLS (Transport Layer Security) — Payment Data: Processed and stored exclusively by Stripe — RLTS never stores, sees, or has access to your payment card information or financial data — Admin Access: Our administrative panel provides visibility only into user count, plan tiers, and broadcast or notification management. No workspace content, message content, code, file content, or credential data is ever accessible to RLTS staff We implement industry-standard security practices to protect your data. If you believe your account has been compromised, contact support@rlt.solutions immediately.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy, or as required by applicable law. — Name, email, workspace name, workspace ID: Retained for the duration of your active account, plus 30 days following confirmed deletion, after which they are permanently deleted — Token usage counts: Retained for the duration of your active account, plus 30 days following confirmed deletion — Encrypted API keys and OAuth tokens: Retained for the duration of your active connection; deleted within 30 days of disconnection or account deletion — Support communications: Retained for up to 2 years from the date of last interaction When a retention period expires or upon a verified data deletion request, we permanently delete or irreversibly anonymize the relevant data.
9. Data Breach Notification
In the event of a confirmed security incident that affects your personal information, we will: — Notify you by email to the address associated with your account within 72 hours of confirming the breach, where feasible — Describe the nature of the breach, the categories of data affected, and the steps being taken to address it — Notify applicable state authorities as required by Delaware law and other applicable state data breach notification statutes
10. Data Sharing
We do not sell, rent, trade, license, or share your personal information with any third party for any purpose. Ever. The only limited exceptions are: — Stripe: We share the minimum data necessary (such as email address and plan tier) to facilitate subscription payment processing. Stripe's Privacy Policy governs their use of that data. — Supabase: As our infrastructure and database provider, Supabase processes data on our behalf as a data processor under their own security and privacy commitments. — Legal compliance: If required by a valid court order, subpoena, or applicable federal or state law, we may disclose information as legally required. Where permitted by law, we will notify you before any such disclosure. We do not disclose, transfer, or share your Google user data to any third parties, except where legally compelled.
11. Your Privacy Rights
Depending on where you reside, you may have the following rights regarding your personal data: — Right to access: Request a copy of the personal data we hold about you — Right to correct: Request correction of inaccurate or incomplete data — Right to delete: Request deletion of your account and all associated personal data — Right to data portability: Request a copy of your data in a portable format — Right to know third-party categories: Request the categories of third parties with whom we have shared your data (note: we do not share data beyond what is described in Section 10) — Right to opt out of data sale: We do not sell personal data — this right is satisfied by default To exercise any of these rights, contact modev@rlt.solutions. We will respond within 30 days. Upon confirmed account deletion, all personal data associated with your account will be permanently removed from our active systems within 30 days.
12. Delaware Residents — DPDPA
If you are a Delaware resident, you have rights under the Delaware Personal Data Privacy Act (DPDPA), effective January 1, 2025. These rights — including access, correction, deletion, portability, and opt-out of data sale — are described in Section 11 above. MoDev does not sell personal data, engage in targeted advertising, or engage in profiling that produces significant legal effects. To submit a rights request or a complaint, contact modev@rlt.solutions. You also have the right to contact the Delaware Department of Justice if you believe your DPDPA rights have been violated.
13. California Residents — CCPA/CPRA
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including the right to know, delete, correct, and opt out of the sale or sharing of your personal information. MoDev does not sell or share personal information as defined under the CCPA/CPRA. To exercise your California rights, contact modev@rlt.solutions.
14. Global Privacy Control (GPC) & Universal Opt-Out
MoDev recognizes and respects Global Privacy Control (GPC) signals and other universal opt-out mechanisms, as required under the Delaware Personal Data Privacy Act (effective January 1, 2026) and other applicable state laws. Because MoDev does not sell personal data, engage in targeted advertising, or conduct data profiling, honoring these signals does not change our data practices — your data is protected by default.
15. Cookies & Tracking
MoDev uses only essential session cookies required to authenticate and operate the platform. We do not use advertising cookies, third-party tracking pixels, retargeting scripts, or analytics tools that collect or transmit personal data to third parties.
16. Children's Privacy
MoDev is intended exclusively for users 18 years of age and older. We do not knowingly collect personal information from anyone under 18. If we become aware that a user is under 18, their account will be terminated and their data deleted promptly. If you believe a minor has created an account, contact modev@rlt.solutions immediately.
17. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, platform features, or legal requirements. For material changes — including changes to what data we collect, how we use it, or who we share it with — we will provide at least 30 days' advance written notice via email or in-app notification before the changes take effect. For non-material changes such as clarifications, formatting corrections, or contact information updates, we may update the policy without advance notice. Continued use of MoDev after the effective date of any updated Privacy Policy constitutes your acceptance of the revised terms. If you do not agree to the updated terms, you must stop using MoDev and may request account deletion.
18. Contact
For all privacy inquiries, data subject requests, or concerns related to this policy: Email: modev@rlt.solutions For general platform support: Email: support@rlt.solutions Royal Legends Tech Solutions, Inc. (RLTS, Inc.) — Delaware Corporation MoDev is one of many products operated under the RLTS ecosystem.