Privacy
Policy

1.1 Evolvia Studios LLC ("Company," "we," "us," or "our"), a limited liability company organized under the laws of the State of Wyoming, United States of America, operates the Evolvia – Block. Focus. Evolve mobile application ("Application," "App," "Service"). This Privacy Policy explains how we collect, use, store, protect, and disclose information in connection with your use of the Application.

1.2 Evolvia Studios LLC is the data controller for purposes of the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA/CPRA), and any other applicable privacy legislation that recognizes the concept of a data controller or equivalent.

1.3 This Privacy Policy applies to all users of the Application globally, regardless of the platform through which the Application is accessed (Google Play Store or Apple App Store), and supplements the Company's Terms and Conditions, which are incorporated herein by reference.

1.4 By installing or using the Application, you acknowledge that you have read, understood, and agree to the data practices described in this Privacy Policy. If you do not agree, you must immediately cease using the Application and uninstall it from your device.

1.5 This Policy should be read together with our Terms and Conditions and End User License Agreement, all available at www.evolvia-app.com.

2.1 We believe your personal data belongs to you. Evolvia is engineered on a local-first, privacy-by-design architecture. This means:

2.2 This Section is a plain-language summary. The full details of our practices are set forth in the sections below, which govern in the event of any conflict.

3.1 We collect the following categories of information, depending on your use of the Application:

4.1 For clarity and transparency, the following categories of data are not collected, transmitted, or stored by Evolvia Studios LLC:

• The content of your text messages, emails, or communications
• Your photos, videos, or media files
• Your precise or approximate GPS location
• Your contacts or address book
• Your call logs or phone records
• The specific content of websites you visit (only URLs for blocking purposes, stored locally)
• Your Social Security Number, government ID, or financial account numbers
• Biometric data of any kind
• Any data from the microphone or camera

4.2 We do not use your Accessibility Service permission or Usage Access permission to collect any data beyond what is explicitly described in Section 3 and Section 7 of this Policy.

5.1 For users located in the European Economic Area (EEA) or the United Kingdom, we process personal data only where we have a lawful legal basis to do so. The legal bases we rely upon are:

5.2 Where we rely on legitimate interests, we have conducted a balancing assessment and determined that our legitimate interests are not overridden by your rights and freedoms, given the limited and non-intrusive nature of the data collected.

5.3 Where we rely on consent (e.g., for personalized advertising via Appodeal's TCF partner network), you have the right to withdraw that consent at any time — including for individual partners or specific processing purposes — without affecting the lawfulness of processing prior to withdrawal. Consent can be managed in-app via Privacy / Cookie Settings or by contacting us at privacy@evolvia-app.com. See Section 10 for full details.

6.1 We use the information we collect for the following purposes only:

• (a) To provide and maintain the Application and its features, including account management, subscription management, blocking functionality, and usage reporting — all processed locally on your device.
• (b) To communicate with you, including responding to support inquiries, sending account-related notifications (e.g., subscription renewal reminders, policy updates), and providing technical assistance.
• (c) To improve Application quality and stability, using anonymized crash reports (Firebase Crashlytics) and aggregated analytics (Firebase Analytics) to identify bugs, optimize performance, and prioritize feature development.
• (d) To serve advertisements on the free tier of the Application via Appodeal and Google AdMob, subject to applicable consent requirements.
• (e) To enforce our Terms and Conditions, detect fraud or abuse, and protect the rights, property, and safety of the Company and its users.
• (f) To comply with applicable law, including responding to lawful legal process, regulatory obligations, and court orders.

6.2 We do not use your information for automated decision-making that produces legal or similarly significant effects on you without human review.

7.1 The Application requires certain elevated Android system permissions to deliver its core functionality. This section provides a detailed, transparent account of how each permission is used in relation to your data:

7.2 You may revoke any of the above permissions at any time through your device's system settings (Settings → Accessibility / Usage Access / Device Administrators). Revocation will disable corresponding Application features.

8.1 Local Storage: All user-generated data — including blocking preferences, usage statistics, browsing history (for blocking purposes), and Application settings — is stored exclusively on your local device using the Application's sandboxed storage environment. This data is isolated from other applications and is not accessible by the Company.

8.2 Company Servers: The Company does not operate personal data servers for user behavioral or usage data. The only data that may reach Company-affiliated infrastructure is:

• Crash logs processed by Firebase Crashlytics (Google infrastructure)
• Anonymized analytics processed by Firebase Analytics (Google infrastructure)
• Subscription status information communicated by the Google Play Store or Apple App Store

8.3 Retention Periods:

8.4 Upon your uninstallation of the Application, all locally stored data is deleted from your device. The Company has no ability to recover locally stored data following uninstallation.

9.1 We do not sell your personal information for monetary compensation. However, on the free tier of the Application, we use Appodeal as an advertising mediation platform. Through Appodeal's IAB Transparency & Consent Framework (TCF), your device identifiers, IP address, and related signals may be shared with up to 211 advertising partners for the purposes of serving personalized advertisements, content measurement, and audience research — but only where you have given explicit prior consent via the in-app consent popup. This data sharing constitutes "sharing" under the CCPA/CPRA, and you have the right to opt out. See Section 10 and Section 18 for how to exercise this right.

9.2 We do not share personal information with third parties for their own direct marketing purposes outside of the advertising consent framework described above.

9.3 We may disclose information only in the following limited circumstances:

• (a) Third-Party Service Providers (Processors): We use Google LLC (Firebase Crashlytics, Firebase Analytics, Google AdMob) and Appodeal as data processors under contractual data processing agreements. These processors process data strictly for the purposes described in this Policy and are prohibited from using that data for their own purposes.
• (b) App Store Platforms: Google Play Store and Apple App Store process subscription and payment data under their own privacy policies, as independent data controllers.
• (c) Legal Compliance: We may disclose information to law enforcement, courts, regulators, or other governmental authorities where required by applicable law, valid legal process (such as a subpoena or court order), or to protect the rights, property, or safety of the Company, its users, or the public. We will notify you of any such request to the extent permitted by law.
• (d) Business Transfers: In the event of a merger, acquisition, asset sale, or other business transfer involving the Company, user information may be transferred as part of that transaction. We will provide notice and, where required, obtain consent prior to any transfer that would materially change how your information is used.
• (e) With Your Consent: We may share your information in any other circumstance with your prior, explicit, and informed consent.

10.1 The free tier of the Application displays advertisements served via Appodeal, an advertising mediation platform. Appodeal operates under the IAB Europe Transparency & Consent Framework (TCF 2.2) and may, with your consent, share your data with its network of advertising partners to serve personalized advertisements.

10.2 Partner count & TCF: Appodeal's mediation stack may involve up to approximately 211 advertising partners under the TCF framework. A full, current list of these partners is available within the in-app consent management screen. Some partners may process data on the basis of legitimate interest, which you can object to individually via the consent screen.

10.3 Consent requirement: We obtain your explicit prior consent before any personalized advertising data is shared. This consent popup appears at first launch and can be re-accessed at any time via the app menu under Privacy / Cookie Settings. Without your consent, only non-personalized (contextual) ads will be shown.

10.4 Opt-Out of Personalized Advertising — Device Level:

• On Android: Settings → Google → Ads → Opt out of Ads Personalization.
• On iOS: Settings → Privacy → Tracking → disable "Allow Apps to Request to Track."
• Google Ads Settings: adssettings.google.com to manage Google advertising preferences.
• In-App: Access Privacy / Cookie Settings from the app menu to withdraw consent or object to legitimate interest processing at any time.

10.5 Withdrawing consent or opting out of personalized advertising does not remove ads from the Application on the free tier. It results in non-personalized (contextual) advertising only, and no data is shared with Appodeal's partner network for behavioral profiling purposes.

10.6 Premium subscribers do not receive any advertisements and are not subject to the advertising data practices described in this Section.

10.7 GDPR / UK GDPR: For users in the EEA or UK, personalized ads will only be served where you have provided valid, freely-given consent via our in-app TCF consent management platform (CMP), in accordance with Google's EU User Consent Policy and Appodeal's GDPR obligations. Consent is granular — you may accept or reject specific purposes and individual partners.

10.8 Precise geolocation: Neither we nor our advertising partners collect precise GPS location. Appodeal partners may infer approximate location (country/city level) from your IP address for regional ad targeting and fraud prevention purposes only.

11.1 The Application is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13.

11.2 Users between 13 and 17 may use the Application only with verifiable parental or guardian consent. Parents or guardians of minor users assume responsibility for reviewing this Privacy Policy and consenting to the data practices herein on behalf of the minor.

11.3 If you are a parent or guardian and believe that your child under the age of 13 has provided personal information to us without your consent, please contact us immediately at privacy@evolvia-app.com. We will promptly investigate and, where confirmed, delete such information from our records.

11.4 We comply with the Children's Online Privacy Protection Act (COPPA) and, for European minor users, the GDPR's enhanced protections for children's personal data, including the requirement for parental consent for users under the applicable national age threshold (which may be higher than 13 in some EU member states).

12.1 We implement commercially reasonable administrative, technical, and physical security measures designed to protect the information we process against unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption of account passwords (hashing with salt; plaintext passwords are never stored)
• Encrypted local storage for Application data on supported devices
• Secure HTTPS connections for all communications between the Application and third-party service APIs
• Contractual data security requirements imposed on third-party service providers (Google LLC, Appodeal)
• Regular review of our data handling practices and security architecture

12.2 Limitation: Given that all primary user data (usage statistics, blocking history, browsing data) is stored locally on your device, the security of that data is primarily dependent on your device's own security settings, including screen lock, device encryption, and physical access controls. We strongly encourage you to use your device's built-in security features.

12.3 No method of data transmission or storage is 100% secure. While we strive to protect your information using industry-standard practices, we cannot guarantee absolute security. In the event of a data breach affecting your rights and freedoms, we will notify you and applicable regulators as required by law.

13.1 The Company is based in the United States. If you are accessing the Application from outside the United States, your information (to the limited extent it leaves your device) may be transferred to, processed in, and stored in the United States or other countries where Google LLC (Firebase, AdMob) and Appodeal maintain infrastructure.

13.2 For transfers of personal data from the EEA or UK to the United States, we rely on the following transfer mechanisms where applicable:

• Standard Contractual Clauses (SCCs) as adopted by the European Commission, incorporated into our agreements with Google LLC and Appodeal;
• UK International Data Transfer Agreements (IDTAs) for UK data transfers.

13.3 For California residents, transfers of personal data are subject to the CCPA and are not considered a "sale" of personal information.

13.4 We take steps to ensure that any international transfer of your data is handled securely and in accordance with applicable data protection law.

14.1 Depending on your jurisdiction, you may have the following rights regarding your personal data:

14.2 To exercise any of the above rights, submit a request to privacy@evolvia-app.com with the subject line "Privacy Rights Request" and include your full name, email address associated with your account, and a description of your request. We will respond within 30 days (or 45 days with notice if additional time is required).

14.3 We may need to verify your identity before processing a rights request. We will not fulfill requests if we cannot reasonably verify the requestor's identity.

15.1 The Application itself (as a native mobile app) does not use browser cookies. However, the Application may use the following analogous tracking technologies:

• Mobile advertising identifiers (Google Advertising ID / GAID on Android; IDFA on iOS) — used by Appodeal and Google AdMob for advertising purposes as described in Section 10.
• Firebase SDK instance identifiers — anonymized identifiers used by Firebase Analytics and Firebase Crashlytics to associate crash reports and analytics events with a single installation instance (not a real person).
• IP Address: Collected by our advertising partners (Appodeal/AdMob) to determine approximate location (country/city level) for regional ad compliance and to prevent fraudulent ad activity.

15.2 You may reset your mobile advertising identifier at any time through your device settings:

• Android: Settings → Google → Ads → Reset advertising ID
• iOS: Settings → Privacy → Tracking

15.3 If the Company operates a website at evolvia-app.com, that website may use cookies and similar technologies separately governed by a website-specific cookie policy, which will be made available on the website.

16.1 In the event of a security breach that results in the unauthorized access to, disclosure of, or destruction of your personal information, the Company will:

• (a) Investigate the breach promptly upon discovery;
• (b) Notify affected users without undue delay, and in any event within 72 hours of becoming aware of the breach, to the extent required by applicable law (including GDPR Article 33 and 34);
• (c) Notify applicable regulatory authorities (including EU/UK supervisory authorities) as required by law;
• (d) Take remediation steps to contain and address the breach and to prevent recurrence.

16.2 Notifications will be delivered via email to the address associated with your account and/or via in-app notice. We will describe the nature of the breach, the categories of data affected, likely consequences, and the measures taken or proposed to address the breach.

16.3 Given that primary user data is stored locally on your device, the most significant breach risk relates to Firebase, Appodeal, and account credential infrastructure. Device-level breaches (e.g., device theft or unauthorized device access) are beyond the Company's control and responsibility.

17.1 Our Application integrates with third-party services whose data practices are governed by their own privacy policies. We encourage you to review these policies:

• Appodeal Privacy Policy: https://appodeal.com/privacy-policy/ — applies to ad mediation and advertising data collection
• Google Privacy Policy: https://policies.google.com/privacy — applies to Firebase Analytics, Firebase Crashlytics, and Google AdMob
• Google Play Store: https://play.google.com/about/play-terms
• Apple App Store: https://www.apple.com/legal/privacy

17.2 The Company is not responsible for the privacy practices of any third-party service provider. We encourage you to review the applicable third-party policies, particularly with respect to Appodeal's and AdMob's data use for advertising purposes.

17.3 Third-party links or services accessible through the Application are not covered by this Privacy Policy. Navigating to third-party sites or services from the Application is at your own discretion.

18.1 This Section supplements the general rights described in Section 14 and provides disclosures required specifically under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), for California residents.

18.2 Categories of Personal Information Collected in the Past 12 Months:

18.3 Sale / Sharing of Personal Information: We do not sell personal information for monetary compensation. However, the sharing of device identifiers, IP address, and advertising signals with Appodeal's advertising partner network (free tier, consent-based) may constitute "sharing" of personal information for cross-context behavioral advertising under the CCPA/CPRA. California residents have the right to opt out of such sharing at any time by:

• Accessing Privacy / Cookie Settings from the in-app menu and withdrawing consent;
• Submitting an opt-out request to privacy@evolvia-app.com with the subject line "CCPA Opt-Out Request"; or
• Using device-level opt-out settings described in Section 10.4.

We will not discriminate against you for exercising this right.

18.4 Shine the Light (California Civil Code § 1798.83): We do not disclose personal information to third parties for their own direct marketing purposes outside of the consent-based advertising framework described in Section 10. California residents may request details about any such disclosures at privacy@evolvia-app.com.

18.5 To submit a verifiable consumer request under the CCPA, contact us at privacy@evolvia-app.com. We will respond within 45 days, with a possible 45-day extension upon notice.

19.1 We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will:

• (a) Post the revised Privacy Policy at www.evolvia-app.com/privacy with an updated "Effective Date";
• (b) Notify active users via email and/or in-app notification at least 14 days before the revised Policy takes effect for material changes;
• (c) Where required by applicable law (e.g., GDPR for consent-based processing), obtain renewed consent before implementing changes that affect how we use your data.

19.2 Your continued use of the Application after the effective date of any revised Privacy Policy constitutes your acknowledgment of and agreement to the updated terms.

19.3 We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

20.1 For all privacy-related inquiries, requests, or complaints, contact us at:

20.2 EU/UK Representative and DPO: At this stage of the Company's operations, Evolvia Studios LLC has not appointed a formal EU/UK Data Protection Officer (DPO). As the Application grows its EEA and UK user base to a threshold requiring a DPO appointment under GDPR Article 37, the Company will designate a DPO and publish their contact details at www.evolvia-app.com/privacy. EEA and UK users may direct privacy concerns to privacy@evolvia-app.com in the interim.

20.3 If you believe we have not adequately addressed your privacy concern, you have the right to lodge a complaint with:

• Your national Data Protection Authority (for EEA users)
• The UK Information Commissioner's Office (ICO) at ico.org.uk (for UK users)
• The California Attorney General (for California residents)

20.4 This Privacy Policy was last updated on March 4, 2026.