top of page

Privacy Policy

 

Last updated: March 2026

Important notice for minors: If you are under 16 years of age, please read this policy together with a parent or legal guardian. Use of the app by minors requires the consent of a parent or guardian.

1. Data Controller

Lighthouse Tech SA

Registered office: Switzerland

Email: info@lighthousetech.ch

Lighthouse Tech SA (hereinafter "we", "our" or "Company") is the controller of personal data collected through the TAMI Guide application (hereinafter "App").

2. Data Collected

We collect the following categories of personal data:

2.1 Data provided directly by the user

  • Registration data: first name, last name, email address

  • Access credentials: email and password (encrypted)

  • Google authentication data: if you choose to sign in via Google Sign-In

2.2 Automatically collected data

  • Device data: device identifiers, operating system, app version

  • Bluetooth connection data: MAC addresses of connected TAMI devices

  • Usage data: app interactions, device configuration preferences

  • Notification token: for sending push notifications

2.3 TAMI device data

  • Device configurations and settings

  • Diagnostic and telemetry data 

  • Firmware versions 

  • Battery status 

3. Purpose and Legal Basis of Processing

 

 

 

 

 

 

4. Third-Party Services

The App uses the following third-party services that may collect data:

4.1 Google Firebase

  • Firebase Authentication: user authentication management

  • Cloud Firestore: storage of user data and configurations 

  • Firebase Storage: file and document storage

  • Firebase Cloud Messaging: push notification delivery

 

Google Privacy Policy: https://policies.google.com/privacy

 

4.2 Google Sign-In

If you choose to sign in via Google, we will share the data necessary for authentication with Google LLC.

5. Protection of Minors ​

​Special provisions for users under 16 years of age:

  • Use of the App by minors under 16 requires verifiable consent from a parent or legal guardian

  • We do not knowingly collect personal data from children under 14 without parental consent

  • Parents/guardians may request access to, modification of, or deletion of their child's data by contacting us

  • We limit the collection of minors' data to the minimum necessary for the App to function

 

If you are a parent and believe your child has provided us with personal data without your consent, please contact us immediately at info@lighthousetech.ch

6. Data Retention 

We retain your personal data for as long as necessary to:

  • Account data: until the account is deleted by the user

  • Device configuration data: until the device is disconnected or the account is deleted

  • Diagnostic logs: maximum 90 days

  • Data for legal obligations: as required by applicable law

7. Data Transfers

Your data may be transferred to and stored on servers located outside Switzerland/EEA, in particular in the United States (Google/Firebase servers). Such transfers are carried out on the basis of:

  • Standard contractual clauses approved by the European Commission

  • Provider certification under the EU-US Data Privacy Framework

8. Your Rights

In accordance with the GDPR, the Swiss FADP, and applicable regulations, you have the right to:

  • Access: obtain confirmation of processing and a copy of your data

  • Rectification: correct inaccurate or incomplete data

  • Erasure: request deletion of your data ("right to be forgotten")

  • Restriction: restrict processing in certain circumstances

  • Portability: receive your data in a structured format

  • Objection: object to processing based on legitimate interest

  • Withdrawal of consent: withdraw consent at any time

To exercise your rights, contact us at: info@lighthousetech.ch

9. Data Security

​We adopt appropriate technical and organisational measures to protect your data, including:

  • Encryption of data in transit (TLS/SSL)

  • Password encryption (hashing)

  • Secure storage of credentials on the device

  • System access controls

  • Regular monitoring and audits

9.1 Data Breach Procedure

In the event of a suspected or confirmed personal data breach, we follow the procedure below:

  • Immediate reporting: any suspected or confirmed breach is immediately reported for internal review.

  • Risk assessment: the breach is assessed to determine its scope, the categories and approximate number of individuals affected, and the potential risks to their rights and freedoms.

  • Notification to the supervisory authority: if the breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify the competent supervisory authority, where feasible, within 72 hours of becoming aware of the breach.

  • Notification to affected individuals: we will communicate the breach to the affected individuals without undue delay, including a description of the likely consequences and the measures taken or proposed to address the breach and mitigate its effects.

  • Internal documentation: all breaches, regardless of their severity, will be documented internally, including:

    • The facts surrounding the breach

    • Its effects

    • The remedial action taken

10. App Permissions

​The App requires the following permissions:

  • Bluetooth: required to connect to TAMI devices

  • Location: required by Android for Bluetooth scanning (we do not use your location)

  • Notifications: to receive firmware updates and newsletters

  • Internet: for data synchronisation and updates

  • Storage: to save logs and configurations locally

11. Cookies and Similar Technologies

The App does not use cookies. We use local storage technologies (SharedPreferences, SecureStorage) exclusively to:

  • Maintain the login session

  • Save user preferences

  • Store local configurations

12. Changes to the Privacy Policy

We reserve the right to modify this Privacy Policy. In the event of material changes:

  • We will notify you via an in-app notification

  • We will update the "last updated" date

  • For changes requiring new consent, we will ask you to accept the updated policy

 

13. Supervisory Authorities

​You have the right to lodge a complaint with the competent supervisory authority:

  • Switzerland: Federal Data Protection and Information Commissioner (FDPIC)

  • Italy: Garante per la protezione dei dati personali

  • EU: Data protection authority of your country of residence

Contact 

Lighthouse Tech SA

Email: info@lighthousetech.ch

 

For any questions regarding privacy or to exercise your rights, please do not hesitate to contact us.

Purpose
Legal Basic
Data Used
Account creation and management — to allow the user to access their settings and transfer them to a new device. Only the user has access to their own data.
Performance of contract
Name, email, password
Connection and configuration of TAMI devices
Performance of contract
Bluetooth data, configurations
Firmware updates
Performance of contract
Device data, firmware version
Aggregated analysis of configuration preferences — we collect anonymous data on device settings to understand how users prefer to configure them and improve the product.
Legitimate interest
Anonymous configuration data
Sending marketing material and newsletters — only with your explicit consent.
Consent
Notification token, email
Customer support
Legitimate interest
Account data, diagnostic logs
Service improvement
Legitimate interest
Anonymous usage data
bottom of page