1. Who we are and how to contact us

Mobile Application Testers ("we", "us", "our") is a mobile application testing and quality assurance services company headquartered in Fort Worth, Texas, United States. Our website is https://www.mobileapplicationtesters.com.

Mobile Application Testers acts as the data controller for personal data collected through this website. For all privacy enquiries, rights requests, and complaints, contact us via:

Contact form: https://www.mobileapplicationtesters.com/contact, select "Privacy enquiry"
Phone: 857-567-2674 · Mon–Fri 9am–6pm CT
Postal address: Mobile Application Testers · Fort Worth, TX · United States

2. Personal data we collect and why

We collect personal data through the following channels and for the following purposes:

2a. Contact and enquiry forms (CompanyHub)

When you submit a contact form, request a quote, or submit an enquiry, we collect: name, email address, company name, phone number (optional), and the content of your message. This data is processed via our CRM platform (CompanyHub) under a data processing agreement.

Purpose: To respond to your enquiry and, where you have expressed interest, to follow up about our services.
Legal basis (GDPR): Legitimate interests (responding to business enquiries) and, where applicable, performance of a pre-contractual step at your request.
Retention: CRM records are retained for up to 3 years after the last interaction. You may request deletion at any time.

2b. Analytics (Google Analytics 4)

We use Google Analytics 4 to collect anonymised usage data: pages visited, session duration, approximate geographic location (country/region, not precise location), device and browser type, and traffic source. IP addresses are anonymised before storage. This data is aggregated and does not identify individual users.

Purpose: To understand how the Site is used and to improve content and user experience.
Legal basis (GDPR): Consent (collected via cookie banner on first visit for users in consent-required jurisdictions) or legitimate interests where consent is not legally required.
Retention: Analytics data is retained for 14 months before automatic deletion in Google Analytics.

2c. Server and access logs

Our hosting infrastructure automatically logs access requests including IP address, requested URL, HTTP status code, referrer URL, user-agent string, and timestamp. These logs are used for security, uptime monitoring, and debugging.

Purpose: Security, fraud prevention, and infrastructure stability.
Legal basis (GDPR): Legitimate interests.
Retention: Server logs are retained for 30 days.

2d. Client engagement data (commercial services)

If you engage us for testing services, additional data is collected and processed under the terms of the executed Master Services Agreement and Data Processing Addendum (DPA) between us and your organisation. That DPA governs the processing of any personal data within your application under test. This Privacy Policy governs website-level data collection only.

We do not sell, rent, or trade your personal data to third parties. We may share data with:

CompanyHub (CRM): Processes contact form submissions under a data processing agreement. Data is stored in the United States.
Google (Analytics): Receives anonymised analytics data from users who have consented to analytics cookies. Google acts as a data processor under Google's standard data processing terms.
Vercel (hosting): Our website is hosted on Vercel's infrastructure. Vercel processes request data (including IP addresses) as a data processor.
Legal obligations: We may disclose data where required by law, court order, or regulatory authority. Where legally permissible, we will notify you before complying with such a request.
Business transfer: In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the acquiring entity, subject to the same protections as described in this Policy.

4. International data transfers

Mobile Application Testers is based in the United States. If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, please be aware that your personal data is transferred to the United States, which may not provide the same level of data protection as your home jurisdiction.

For transfers of personal data from the EEA to the United States via our third-party processors, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, or other appropriate transfer mechanisms under Chapter V of the GDPR.

For UK data subjects, we rely on the UK International Data Transfer Agreement (IDTA) or UK Addendum to EU SCCs where applicable.

5. Security

We implement technical and organisational security measures appropriate to the risk of the personal data processing activities described in this Policy. These include:

HTTPS encryption for all data in transit (enforced via HSTS with a 2-year max-age)
Content Security Policy (CSP) headers to mitigate cross-site scripting and data injection attacks
Access controls limiting employee access to personal data to those with a legitimate business need
Regular security assessments of third-party processors

No transmission of data over the internet is completely secure. While we use commercially reasonable measures, we cannot guarantee the security of data transmitted to our Site.

6. Data retention

We retain personal data for as long as necessary for the purpose for which it was collected, or as required by law. Specific retention periods are noted in Section 2 above. You may request deletion of your personal data at any time (see Section 8).

7. Children's privacy

This Site is directed at business professionals and is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

If you are located in the EEA, United Kingdom, or Switzerland, you have the following rights under GDPR and applicable national implementations:

Right of access (Article 15): Request a copy of the personal data we hold about you
Right to rectification (Article 16): Request correction of inaccurate or incomplete personal data
Right to erasure (Article 17): Request deletion of your personal data, subject to legal retention requirements
Right to restrict processing (Article 18): Request that we limit the processing of your data in certain circumstances
Right to data portability (Article 20): Receive your personal data in a structured, machine-readable format
Right to object (Article 21): Object to processing based on legitimate interests or for direct marketing purposes
Rights related to automated decision-making (Article 22): We do not use automated decision-making or profiling that produces legal or similarly significant effects
Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing

To exercise any of these rights, contact us via the contact form or call 857-567-2674. We will respond within 30 days (or within 72 hours for urgent erasure requests). If you are not satisfied with our response, you have the right to lodge a complaint with your national supervisory authority, in the UK, the Information Commissioner's Office (ICO) at ico.org.uk.

9. Rights of California residents (CCPA / CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

Right to know: Request disclosure of the categories and specific pieces of personal information we have collected about you in the preceding 12 months
Right to delete: Request deletion of personal information we have collected, subject to certain exceptions
Right to correct: Request correction of inaccurate personal information
Right to opt out of sale or sharing: We do not sell or share personal information for cross-context behavioural advertising
Right to limit use of sensitive personal information: We do not collect sensitive personal information as defined by CPRA
Right to non-discrimination: We will not discriminate against you for exercising your CCPA rights

Categories of personal information collected: Identifiers (name, email, company name, IP address); commercial information (services of interest); internet activity (pages visited, analytics data). We do not sell personal information.

To submit a CCPA request, contact us via the contact form or call 857-567-2674. We will respond within 45 days, with one 45-day extension available when reasonably necessary.

10. Cookies and tracking technologies

This Site uses the following categories of cookies:

Strictly necessary cookies: Required for the Site to function (session management, security). These cannot be disabled. No personal data is stored beyond what is necessary for operation.
Analytics cookies (Google Analytics 4): Collect anonymised usage data as described in Section 2b. These are set only with your consent in jurisdictions where consent is required (EEA, UK). You may opt out at any time.

Cookie consent: On first visit, users in consent-required jurisdictions are presented with a cookie consent banner. Continuing to browse without interacting does not imply consent to analytics cookies.

Managing cookies: You can manage or delete cookies at any time via your browser settings. Note that deleting cookies may affect your experience of some Site features. To opt out of Google Analytics across all sites, use the Google Analytics Opt-out Browser Add-on.

11. Third-party links

This Site contains links to third-party websites and resources. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies before providing personal data to them.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be indicated by an updated "Last updated" date. For significant changes that affect how we process your personal data, we will take reasonable steps to notify users (e.g., via a prominent notice on the Site or direct communication where we have your contact details and the change directly affects you).

Your continued use of the Site after a Privacy Policy update constitutes acceptance of the revised Policy for prospective data processing only.

Privacy Policy