Policy Privacy - XR2ino

Privacy Policy for XR2ino on Meta Quest

Introduction This Privacy Policy outlines how Metagate collects, uses, and protects user data specific to the XR2ino app on the Meta Quest platform. It is intended to complement Metagate’s general Privacy Policy and provides further details relevant to XR2ino users.

1. Data Collection XR2ino accesses only the data necessary to provide a seamless mixed reality experience by displaying real-time sensor data from Arduino devices via Bluetooth. Specifically, the following data are accessed but not saved by Metagate:

  • UserID: A unique alphanumeric identifier associated with the user’s Meta Quest profile.

  • User Profile: Access to the Oculus username and profile photo to personalize the experience.

  • Microphone: Used for voice interactions within the app.

  • Bluetooth: Required to establish a connection with external Arduino devices.

  • Location Data: Used for spatial mapping to position UI elements accurately.

  • Hand Tracking and Spatial Data: Used for interaction within the mixed reality environment.

Important Note: These data types are processed locally during usage and are not saved or stored by Metagate.

2. Data Saved in Unity Cloud Save (UCS) To enhance user experience and enable the retrieval of app preferences upon reaccessing XR2ino, the following user settings are saved:

  • Number of Data Points Collected: To visualize the historical count of received sensor data.

  • Panel Positions: The location of active panels within the user interface.

  • Theme Index: The theme settings applied to each active panel.

  • Audio and Sound Settings: Personalized music and sound preferences.

  • Panel Activation Status: A boolean indicating whether each panel is active or inactive.

3. Consent User consent is obtained via a clear, mandatory checkbox upon first login to XR2ino. By checking this box, users confirm that they have read, understood, and agreed to this Privacy Policy.

4. Access and Modification Users have the right to access and modify their saved data. Tools are provided within the app settings to:

  • View saved configurations.

  • Update preferences.

For additional assistance, users can contact Metagate’s Data Protection Officer (DPO) at dpo@themetagate.it.

5. Data Deletion Users may request the deletion of their saved data by:

  • Sending an email request to dpo@themetagate.it. Upon verification, the user’s saved data will be permanently removed within 30 days.

6. Data Security Metagate implements robust security measures, including:

  • Limited access to databases.

  • Offline backups.

  • Data encryption during storage and transfer.

All data collection processes occur within the secure Meta Quest environment. No browser-based access is utilized, reducing potential attack vectors.

7. Communications Policy updates and changes will be communicated to users:

  • Via the official Metagate website.

  • Through in-app notifications upon new updates.

8. Data Retention Saved user data (preferences and configurations) is retained for a maximum of 2 years from the last access to the app. This retention period ensures operational continuity while adhering to the principles of data minimization.

9. Minors XR2ino is not intended for users under the age of 18. Metagate does not knowingly collect personal information from minors. If a parent or guardian believes their child has provided personal information, they can request its deletion by contacting dpo@themetagate.it.

10. Cookies and Tracking XR2ino does not collect cookies or tracking data, except during closed Alpha Testing phases, where minimal usage data may be gathered for debugging purposes.

11. Data Protection Officer (DPO) The appointed DPO for Metagate is Marco Pizzini, responsible for ensuring compliance with data protection regulations. For any privacy concerns or inquiries, please contact: Email: dpo@themetagate.it

12. Legal Basis for Data Processing In compliance with the GDPR, XR2ino processes personal information based on:

  • User Consent: As provided during the onboarding process.

  • Contractual Necessity: To fulfill the service provided by XR2ino.

  • Legal Obligations: To comply with applicable laws and regulations.

  • Legitimate Interests: When necessary to improve service quality and security, without overriding user rights.

13. Selling Personal Information Metagate does not sell personal information, as defined under the California Consumer Privacy Act (CCPA).

14. User Rights GDPR: If you are a resident of the EEA, you have the right to:

  • Access your personal data.

  • Request correction, updates, or deletion of your data.

  • Port your data to another service.

CCPA: If you are a California resident, you have the right to:

  • Access personal information held by Metagate.

  • Request deletion or correction of your data.

  • Transfer data to another provider.

15. Policy Updates This Privacy Policy may be updated to reflect changes in legal requirements or service improvements. The latest update will always be available in the XR2ino app and on the Metagate website.

Effective Date: 16/12/2024.

Contact Information: For questions or concerns, please contact the DPO at dpo@themetagate.it.

By using XR2ino, users acknowledge that they have read and understood this Privacy Policy and agree to its terms.