MEGO PRIVACY POLICY

Introduction

Welcome to Mego ("App," "Platform," "we," "us," or "our"), a live streaming and creator community application operated by Mego Inc. This Privacy Policy explains how we collect, use, disclose, store, and protect your personal information when you access or use the Mego platform, including through our mobile application, website, and any related services (collectively, the "Services").

By registering for or using the Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with any part of this Policy, you must immediately discontinue your use of the Services and delete your account.

Mego is intended exclusively for individuals who are 18 years of age or older. We do not knowingly collect personal information from anyone under the age of 18.

1. Information We Collect

We collect information in several ways: information you provide directly, information collected automatically, and information obtained from third parties. The categories of information we collect are described in detail below.

1.1 Account and Registration Information

• Full name or display name, username, and profile photograph or avatar
• Email address and/or phone number used for account creation and verification
• Date of birth (used solely to verify that you are 18 years of age or older)
• Account password (stored in encrypted, hashed form and never stored in plain text)
• Optional biography, social links, and interests provided during profile setup
• Subscription tier, creator status, and monetization preferences

1.2 Content You Upload or Broadcast (User-Generated Content)

• Live video streams, pre-recorded videos, audio broadcasts, and all associated metadata
• Photos, illustrations, graphics, and other visual content submitted to the platform
• Text posts, comments, captions, direct messages, and chat content
• Reactions, tips, gifts, and interactive engagement data transmitted during live sessions
• Creator channel settings, stream titles, thumbnails, and category selections

1.3 Device and Technical Information

• Device identifiers including IDFA (iOS), GAID (Android), and vendor-assigned IDs
• Operating system version, device model, screen resolution, and hardware specifications
• IP address, browser type (if accessed via web), and network connection type
• App version, build number, and platform SDK version
• Crash logs, error reports, and diagnostic performance data

1.4 Usage and Behavioral Data

• Content you watch, creators you follow, and search queries you submit
• Session duration, tap interactions, scroll depth, and in-app navigation patterns
• Live stream participation, comment frequency, and gifting behavior
• Notification engagement, feature usage rates, and preference settings

1.5 Location Information

• Country and region inferred from IP address for content localization and compliance
• Precise GPS location, if you explicitly grant location permission for location-tagged content or creator discovery features
• You may withdraw location permission at any time through your device settings

1.6 Payment and Transaction Data

• Transaction records for in-app purchases, coin acquisitions, and subscription payments
• Payment processor tokens (we do not store full card numbers or bank details directly)
• Creator earnings records, payout requests, and tax documentation where legally required

1.7 Communications and Support Data

• Messages and inquiries you send to our customer support team
• Records of dispute resolution, moderation appeals, and account reinstatement requests
• Feedback, survey responses, and voluntary product research participation

1.8 Third-Party and Social Login Data

• If you authenticate via Apple Sign-In, Google, or other OAuth providers, we receive your public profile information as authorized by you
• Connections, referrals, or co-streaming data from linked social media accounts

2. How We Use Your Information

We use the personal information we collect for the following purposes, all of which are necessary to operate, improve, and protect the Mego platform:

2.1 Service Provision and Account Management

• Creating and maintaining your Mego account and verifying your identity
• Enabling you to broadcast live streams, upload content, and interact with other users
• Processing transactions, distributing creator earnings, and managing billing records
• Sending transactional communications such as account verification, password resets, and payment receipts

2.2 Personalization and Discovery

• Curating your home feed based on your watch history, followed creators, and stated interests
• Recommending live streams, creators, and content categories you may find relevant
• Adjusting content language, currency, and regional formatting based on your location

2.3 Platform Safety and Content Moderation

• Detecting and removing content that violates our Community Guidelines or applicable law
• Identifying spam, fraudulent accounts, coordinated inauthentic behavior, and bot activity
• Enforcing bans, restrictions, and other account actions resulting from policy violations
• Protecting the safety of minors and all users through automated and human review systems

2.4 Analytics and Product Improvement

• Measuring feature adoption, identifying usability issues, and prioritizing product improvements
• Conducting A/B tests and controlled experiments to evaluate new features
• Generating aggregated, de-identified analytics reports for internal business purposes

2.5 Legal and Compliance Obligations

• Complying with applicable laws, regulations, court orders, and government requests
• Maintaining records required for tax, financial reporting, and data protection purposes
• Defending against legal claims and protecting the rights and property of Mego and its users

2.6 Marketing and Platform Communications

• Sending promotional emails or push notifications about new features, events, and offers, where you have opted in
• You may unsubscribe from marketing communications at any time via the unsubscribe link or app notification settings

3. User-Generated Content (UGC) Policy

Mego is a creator-first platform, and the management of user-generated content is fundamental to our operations. This section explains how your content is handled.

3.1 Content Collection and Storage

• All live streams you broadcast are transmitted through our servers and, where enabled, may be stored as replays for a period determined by your account settings and subscription tier.
• Uploaded videos, images, and text content are stored on third-party cloud infrastructure (as described in Section 5).
• Metadata associated with your content, including timestamps, viewer counts, and engagement metrics, is retained for platform analytics.

3.2 Content License

• By submitting content to Mego, you grant Mego a non-exclusive, royalty-free, worldwide, sublicensable, and transferable license to host, store, reproduce, distribute, modify (for formatting purposes only), and display your content solely for the purpose of operating the Services.
• You retain full ownership and copyright of all original content you create and upload.
• This license terminates when you delete your content or close your account, except where content has been shared by others or is required for legal compliance.

3.3 Content Moderation and Enforcement

• Mego employs automated content scanning tools and a dedicated Trust and Safety team to review reported content.
• Content that violates our Community Guidelines may be removed, restricted, or subjected to reduced distribution without prior notice.
• Mego is committed to reviewing all reports of objectionable content within 24 hours of receipt. Content confirmed to violate our policies will be removed and the offending user will be ejected from the platform within this timeframe.
• Severe or repeat violations may result in account suspension or permanent termination.
• You may appeal moderation decisions by contacting service@mego.pet within 30 days of the action.

3.4 Reporting Objectionable Content

• Users may report any content or user they believe to be objectionable using the in-app report button, available on all content and user profiles throughout the platform.
• There is zero tolerance for objectionable content or abusive users on the Mego platform. All users agree, as a condition of using the Services, that they will not post, broadcast, or otherwise make available any objectionable content.
• We encourage all users to report violations promptly. Your reports directly contribute to maintaining a safe and respectful community.

3.5 Blocking Abusive Users

• You may block any user on the platform at any time. To block a user, visit their profile and tap the block option. Blocking prevents the blocked user from contacting you, viewing your content, or appearing in your recommendations.
• Blocked users will not be notified of the block. Block decisions are respected immediately across the platform.

3.6 Prohibited Content

• Content depicting or promoting violence, self-harm, terrorism, or illegal activities is strictly prohibited.
• Any content that sexualizes minors, facilitates grooming, or promotes child exploitation is absolutely prohibited and will be reported to the National Center for Missing and Exploited Children (NCMEC) and relevant law enforcement authorities.
• Deepfakes, non-consensual intimate imagery, and impersonation content are prohibited.

4. Information Sharing and Disclosure

We do not sell your personal information to third parties. We may share your information in the following limited circumstances:

4.1 With Other Users (Public Content)

• Your display name, profile photo, bio, and public content are visible to all Mego users and, if your profile is set to public, to non-registered visitors.
• Your comments, reactions, and gifts sent during live streams are visible to all stream participants.
• Direct messages are shared only with the intended recipients.

4.2 With Service Providers

• We engage trusted third-party vendors to provide essential services including cloud hosting, content delivery networks (CDNs), payment processing, identity verification, push notification delivery, and analytics.
• All service providers are bound by data processing agreements requiring them to process your data only for the purposes we specify and to maintain appropriate security standards.

4.3 For Legal Compliance and Safety

• We may disclose information in response to valid legal process, including subpoenas, court orders, and government requests, to the extent permitted by law.
• We may disclose information where we reasonably believe disclosure is necessary to prevent imminent harm, fraud, or illegal activity.
• We will report content involving child sexual abuse material (CSAM) to NCMEC and cooperate fully with law enforcement investigations.

4.4 Business Transfers

• In the event of a merger, acquisition, corporate restructuring, or sale of assets, your information may be transferred to the successor entity, subject to the protections of this Privacy Policy.

4.5 With Your Consent

• We may share your information with third parties in other circumstances where you have given explicit, informed consent.

5. Data Storage and International Transfers

5.1 Data Storage Location

• Your data is primarily stored on servers located in the United States and, depending on your region, may also be stored on servers in the European Union, Singapore, or other jurisdictions.
• We use industry-leading cloud providers including but not limited to Amazon Web Services (AWS) and Google Cloud Platform.

5.2 International Data Transfers

• If you access Mego from outside the United States, your personal information may be transferred to and processed in a country with different data protection laws than your home jurisdiction.
• For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to legitimize such transfers.

5.3 Data Retention

• Account information is retained for as long as your account remains active and for a period of up to 90 days after account deletion to allow for account recovery.
• Transaction records are retained for up to 7 years for financial compliance purposes.
• Content moderation records involving safety violations may be retained indefinitely where required by law or for the protection of our platform.
• You may request the deletion of your personal data at any time as described in Section 8.

6. Cookies and Tracking Technologies

6.1 Types of Tracking Technologies

• Session cookies: temporary cookies that expire when you close the app, used for authentication and session management.
• Persistent cookies: retained on your device between sessions to remember your preferences and login state.
• Analytics SDKs: integrated third-party analytics tools that collect usage data to help us understand app performance.
• Advertising identifiers: device-level identifiers used to measure ad campaign effectiveness and, where applicable, deliver interest-based advertising.

6.2 Your Choices

• You may reset your advertising identifier or opt out of interest-based advertising through your iOS or Android device privacy settings.
• Disabling certain tracking technologies may limit the functionality of personalization and recommendation features.

7. Children's Privacy and Protection of Minors

7.1 Age Restriction

• Mego is strictly intended for users who are 18 years of age or older. We require users to confirm their age at registration and may use age verification mechanisms to enforce this restriction.
• If we discover that a user is under 18, we will immediately suspend their account, delete their data, and, where applicable, notify a parent or guardian.

7.2 Parental and Guardian Rights

• If you believe your child has registered an account on Mego, please contact us immediately at service@mego.pet with the subject line "Minor Account Report."
• We will investigate all such reports promptly and take appropriate action including account deletion and data erasure.

7.3 Child Sexual Abuse and Exploitation (CSAE)

• Mego has a zero-tolerance policy for child sexual abuse material (CSAM), child sexual exploitation (CSE), and any content that endangers minors.
• All content uploaded to Mego is subject to automated scanning for CSAM using industry-standard PhotoDNA and equivalent hash-matching technologies.
• Any detected CSAM will be immediately removed and reported to the National Center for Missing and Exploited Children (NCMEC) CyberTipline as required by 18 U.S.C. § 2258A, as well as to applicable international authorities.
• Users who upload, distribute, or attempt to share CSAM will be permanently banned, and all relevant data will be preserved and shared with law enforcement.
• We actively participate in industry coalitions and work with child safety organizations including NCMEC, the Internet Watch Foundation (IWF), and the Technology Coalition to continually improve our detection and prevention capabilities.

7.4 Grooming and Exploitation Prevention

• We prohibit all content and conduct that facilitates the grooming, solicitation, or exploitation of minors, including attempts to extract contact information or move communications off-platform.
• Our Trust and Safety team is trained to identify grooming patterns, and automated systems monitor for suspicious behavioral indicators.

8. Your Privacy Rights and Choices

Depending on your location, you may have the following rights regarding your personal information. We will respond to all verified requests within the timeframes required by applicable law.

8.1 Right to Access

• You may request a copy of the personal information we hold about you by navigating to Settings > Privacy > Download My Data within the app, or by emailing service@mego.pet.

8.2 Right to Rectification

• You may update or correct inaccurate personal information directly through your account settings at any time.

8.3 Right to Deletion ("Right to Be Forgotten")

• You may request the deletion of your account and associated personal data through Settings > Account > Delete Account.
• We will process deletion requests within 30 days, subject to legal retention obligations described in Section 5.3.

8.4 Right to Data Portability

• Where technically feasible, you may request your data in a structured, machine-readable format (JSON or CSV).

8.5 Right to Withdraw Consent

• Where processing is based on your consent (e.g., location data, marketing emails), you may withdraw consent at any time without affecting the lawfulness of prior processing.

8.6 Right to Opt Out of Sale or Sharing (California Residents)

• Mego does not sell personal information as defined under the California Consumer Privacy Act (CCPA). California residents may still submit a "Do Not Sell or Share" request by contacting service@mego.pet.

8.7 Rights Under GDPR (EEA Users)

• In addition to the rights above, EEA users have the right to lodge a complaint with their local supervisory authority if they believe their data protection rights have been violated.

9. Data Security

9.1 Security Measures

• We use industry-standard encryption (TLS 1.2 or higher) for all data in transit between your device and our servers.
• Data at rest is encrypted using AES-256 encryption across our cloud storage systems.
• Access to personal data is restricted to authorized personnel on a need-to-know basis, enforced through role-based access controls (RBAC) and multi-factor authentication (MFA).
• We conduct regular third-party security audits, penetration testing, and vulnerability assessments.

9.2 Incident Response

• In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected users and relevant regulatory authorities within the timeframes required by applicable law (72 hours under GDPR, promptly under applicable US state laws).
• If you discover a security vulnerability, please report it responsibly to service@mego.pet with the subject line "Security Vulnerability Report."

10. Third-Party Services and Links

10.1 Third-Party Integrations

• Mego may integrate with third-party services such as music licensing platforms, payment processors, and social media platforms for enhanced functionality.
• These third parties have their own privacy policies, and we encourage you to review them before connecting your accounts.

10.2 External Links

• Content shared on Mego may contain links to external websites or applications. We are not responsible for the privacy practices or content of those external sites.

10.3 Third-Party Analytics and Advertising

• We may use third-party analytics providers such as Firebase Analytics, Amplitude, or similar tools to analyze app performance and user behavior.

11. Creator Monetization and Financial Data

11.1 Creator Earnings

• If you are a monetized creator on Mego, we collect and process your financial information including payout method details, earned balances, and transaction history.
• You may be required to provide government-issued identification and tax documentation (e.g., W-9 for US creators, W-8BEN for international creators) to receive payouts.

11.2 In-App Purchases

• All in-app purchases are processed by Apple (App Store) or Google (Play Store) and are subject to their respective privacy policies.
• We receive transaction records from these platforms but do not process payment card information directly.

12. Live Streaming Specific Provisions

12.1 Real-Time Data Processing

• During live broadcasts, your video, audio, comments, and interaction data are processed in real time to facilitate the stream and moderation.
• Viewers' interactions (comments, gifts, reactions) are associated with their accounts and visible to other viewers and the broadcaster.

12.2 Stream Recording and Replay

• Live streams may be automatically saved as replays depending on your account settings. You can disable stream recording in your Creator Dashboard.
• Replays are accessible to your authorized followers or the public depending on your privacy settings.

12.3 Screen Capture Awareness

• Mego cannot prevent viewers from taking screenshots or screen recordings of your live streams. We encourage creators to be mindful of the content they broadcast and to use content restriction tools where available.

13. Regional Privacy Provisions

13.1 European Economic Area (EEA) and United Kingdom

• For users in the EEA or UK, Mego Inc. acts as the data controller. Our representative for GDPR purposes can be reached at service@mego.pet.
• We process your data on the following legal bases: contract performance, legitimate interests, legal obligation, and consent where applicable.

13.2 California Residents (CCPA/CPRA)

• California residents have rights to know, delete, correct, and opt out of the sale or sharing of personal information under the CCPA/CPRA.
• We do not sell personal information. To exercise your rights, contact service@mego.pet or use the in-app Privacy Request tool.

13.3 Brazil (LGPD)

• Users in Brazil have rights under the Lei Geral de Proteção de Dados (LGPD) including access, correction, deletion, portability, and the right to information about sharing.

13.4 Australia (Privacy Act)

• Users in Australia have rights under the Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs). Complaints may be submitted to the Office of the Australian Information Commissioner (OAIC).

14. Account Deletion and Data Erasure

• You may delete your Mego account at any time by navigating to Settings > Account > Delete Account, or by submitting a request to service@mego.pet.
• Upon account deletion, your profile, content, and personal information will be removed from public view within 24 hours.
• Complete deletion from our systems, including backups, will occur within 90 days of your request, except where retention is required by law.

15. Automated Decision-Making and Profiling

• Mego uses automated systems to personalize content recommendations, detect policy violations, and assess account risk levels.
• We do not make decisions that produce significant legal effects on users solely through automated means without the possibility of human review.
• Where automated moderation actions are taken (such as content removal), users may request human review by contacting service@mego.pet.
• EEA users have the right to object to profiling under Article 21 of the GDPR.

16. Changes to This Privacy Policy

16.1 How We Notify You of Changes

• We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.
• When we make material changes, we will notify you via push notification, in-app banner, or email at least 14 days before the changes take effect.

16.2 Your Continued Use

• Your continued use of Mego after the effective date of any revised Privacy Policy constitutes your acceptance of the updated terms.
• If you do not agree to the revised Policy, you must stop using the Services and request account deletion.

17. Contact Us and Data Protection Officer

If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us through any of the following channels:

General Privacy Inquiries: service@mego.pet | Subject Line: Privacy Policy Inquiry

Data Deletion and Rights Requests: service@mego.pet | Subject Line: Data Rights Request

Child Safety Reports: service@mego.pet | Subject Line: Minor Account Report / Child Safety Concern

Security Vulnerability Reports: service@mego.pet | Subject Line: Security Vulnerability Report

We are committed to resolving all privacy-related inquiries promptly and transparently.