Maxfiylik siyosati (iOS)

Oxirgi yangilanish: 2026-yil 29-aprel

Ilova	PrepDrive (Apple App Store)
iOS bundle identifier	`uz.prepdrive.app`
App Store taqdimotchisi	Jamshid Salayev (individual developer)
Xizmat infratuzilmasi	PrepDrive backend va bog'liq xizmatlar «Next Developers Team» MCHJ (Toshkent, O'zbekiston) tomonidan boshqarilishi mumkin. Ushbu hujjat foydalanuvchi ma'lumotlarini qanday qayta ishlashni tushuntiradi.
Rasmiy sayt	prepdrive.uz
Akkaunt / kirish	account.prepdrive.uz

iOS va to'lovlar. Ushbu PrepDrive iOS ilovasida raqamli kontent, obuna yoki boshqa funksiyalar uchun Apple In-App Purchase orqali to'lov amalga oshirilmaydi. Pullik xizmatlar yoki akkaunt bilan bog'liq amallar (agar mavjud bo'lsa) faqat PrepDrive rasmiy veb-sahifalariorqali alohida ravishda amalga oshirilishi mumkin; ilova ichida bank kartasi ma'lumotlari kiritilmaydi.

1. Umumiy qoidalar

Ushbu Maxfiylik siyosati PrepDriveiOS ilovasi foydalanuvilarining shaxsiy ma'lumotlarini qanday yig'ish, ishlatish va himoya qilish tartibini belgilaydi. Ilovani yuklab olish, ro'yxatdan o'tish yoki undan foydalanish orqali siz ushbu Siyosat bilan tanishganingizni va undagi amaliyatlarga rozilik bildirganingizni tasdiqlaysiz. Rozi bo'lmasangiz, iltimos ilovadan foydalanishni to'xtating.

2. Yig'iladigan ma'lumotlar

Quyidagi toifadagi ma'lumotlar ilova va xizmat bilan bog'liq ravishda qayd etilishi mumkin:

Akkaunt va shaxsni aniqlash. Ro'yxatdan o'tishda: ism, telefon raqami, elektron pochta manzili. Parol siz tomoningizdan yaratiladi va serverda ochiq matn ko'rinishida saqlanmaydi.
Qurilma identifikatorlari. Platforma, model, ishlab chiqaruvchi, OS versiyasi, iOS qurilmalarida identifierForVendor kabi texnik identifikatorlar device_info_plus orqali olinishi va so'rov sarlavhalarida (masalan, X-Device-ID, X-Device-Name) uzatilishi mumkin — sessiya va push tokenni hisobingiz bilan bog'lash uchun.
Foydalanish ma'lumotlari. Darslar, testlar, videolar va natijalar kabi interaksiyalar serverda akkauntingiz bilan bog'liq holda saqlanishi mumkin.
Qo'llab-quvvatlash. Murojaat yuborsangiz, xabar matni va ixtiyoriy qo'shimcha fayllar/rasmlar qayd etiladi.
Referral va akkaunt holati. referral kodlari, obuna holati, balans kabi ma'lumotlar server bilan sinxronlanishi mumkin.

Aniq joylashuv (GPS) ilova tomonidan talab qilinmaydi va GPS koordinatalari serverga yuborilmaydi.Google Firebase Analytics tizimlarida IP va tarmoq ma'lumotlaridan kelib chiqgan tahminiy mintaqa Google infratuzilmasida qayta ishlanishi mumkin — bu PrepDrive serverlariga GPS aniq konvertatsiyasi sifatida kelmaydi.

3. iOS ruxsatlari va imkoniyatlar

Quyidagilar iOSda ilova funksiyalariga mos kelishi mumkin (rivojlanish jarayonida yangilanishi mumkin):

Imkoniyat / kontekst	Maqsad
Tarmoq (Internet)	API va xizmatlar bilan xavfsiz aloqa.
Push-bildirishnomalar	Firebase Cloud Messaging (FCM) orqali bildirishnomalar — iOS sozlamalarida ruxsat berish yoki bekor qilish mumkin.
Galereya / kamera (tizim oynasi)	Faqat qo'llab-quvvatlash murojaatiga rasm/fayl ilova qilishda `image_picker` orqali vaqtincha ruxsat; doimiy kamera ruxsati talab etilmaydi.

Mikrofon, kontaktlar ro'yxati yoki aniq joylashuv uchun maxsus ruxsatlar ilova tomonidan talab qilinmaydi.

4. Ro'yxatdan o'tish va xavfsizlik

Autentifikatsiya JWT access va refresh tokenlari bilan amalga oshiriladi. Tokenlar qurilmada Keychain orqali flutter_secure_storagekutubxonasi yordamida xavfsiz saqlanadi. SMS orqali OTP va CAPTCHA suiiste'mollarga qarshi qo'llanilishi mumkin.

5. Push-bildirishnomalar

FCM token ro'yxatdan o'tish yoki kirishdan keyin serverga uzatiladi (/api/auth/fcm-tokenkabi endpointlar orqali) va faqat sizning qurilmangizga bildirishnoma yo'naltirish uchun ishlatiladi. Mahalliy bildirishnomalar flutter_local_notifications orqali ko'rsatilishi mumkin. Bildirishnomalarni iOS Sozlamalar → Bildirishnomalarbo'limidan boshqarishingiz mumkin.

6. To'lovlar va moliyaviy ma'lumotlar (faqat iOS ilovasi)

Ushbu iOS ilova ichida raqamli mahsulot yoki obuna uchun to'lovni qabul qilish funksiyasi mavjud emas(Apple In-App Purchase ishlatilmaydi). Agar sizga boshqa platformada yoki veb-sahifada to'lov imkoniyatlari taklif etilsa, bank kartasi va boshqa maxfiy to'lov ma'lumotlari to'lov provayderining o'z sahifasidakiritiladi; PrepDrive serverlarida kartaning to'liq rekvizitlari saqlanmaydi. Boshqa platformalardagi (masalan, Android) to'lov provayderlari (Payme, Click, Uzum va hokazo) bo'yicha tafsilotlar o'sha platformalar uchun alohida hujjatlarda yoki rasmiy e'lonlarda keltirilishi mumkin.

7. Firebase Analytics

Ilova Google Firebase Analyticsni umumlashtirilgan, anonimlashtirilgan statistik ma'lumotlar uchun integratsiya qilishi mumkin (ekranlar, voqealar, qurilma turi va OS versiyasi kabi). Bu ma'lumotlar Google infratuzilmasida qayta ishlanadi. Batafsil: Google Privacy Policy.

8. Uchinchi tomon xizmatlari

Normal ishlash doirasida quyidagilar ma'lumot olishi mumkin:

Xizmat	Ma'lumot	Maqsad
Firebase FCM (Google)	FCM token, qurilma identifikatorlari	Push-bildirishnomalar
Firebase Analytics (Google)	Voqealar, qurilma atributlari, Google tizimida taxminiy mintaqa	Umumlashtirilgan tahlil

Shaxsiy ma'lumotlarni marketing maqsadida sotmaymiz va tijoriy tarqatmaymiz.

9. Mahalliy saqlash

Mavzu, til, matn o'lchami kabi ixtiyoriy sozlamalar shared_preferencesorqali qurilmada mahalliy saqlanishi mumkin. Ilovani o'chirib tashlash mahalliy ma'lumotlarni olib tashlaydi.

10. Xavfsizlik

Backend bilan aloqa HTTPS (TLS) orqali amalga oshiriladi (https://cdn.prepdrive.uzva tegishli API). Debug buildlarda so'rovlar loglanishi mumkin; production relizlarida maxfiy ma'lumotlarni ochiq loglash talab qilinmaydi.

Ma'lumotlarni saqlash muddati (qisqa)

Faol akkaunt: akkaunt faol bo'lgan davrda profil va o'qitish faoliyati saqlanadi.
Akkauntni o'chirish: tasdiqlangandan keyin odatda 30 kun davomida tiklash imkoniyati; muddat tugagach production tizimlaridan shaxsiy ma'lumotlar o'chiriladi (qonuniy saqlash talablaridan mustasno).
Qo'llab-quvvatlash: yopilgan murojaatlar odatda cheklangan muddat saqlanishi mumkin.
Texnik loglar: cheklangan muddat (masalan, 90 kungacha).

11. Akkauntni o'chirish

Ilova ichida (masalan, Sozlamalar bo'limida) parol va tasdiqlash so'zi orqali akkauntni o'chirish so'rovi yuborishingiz mumkin. Shuningdek veb orqali: account.prepdrive.uz/auth/delete-account.

12. Sizning huquqlaringiz

Qonunchilik doirasida quyidagilar mumkin: kirish, tuzatish, o'chirish, rozilikni qaytarish, shikoyat qilish. So'rovlar uchun quyidagi aloqa ma'lumotlaridan foydalaning.

13. Bolalar maxfiyligi

PrepDrive 13 yoshdan kichikfoydalanuvchilar uchun mo'ljallanmagan. 13 yoshdan kichik shaxslardan xatosalik bilan ma'lumot olinsa, biz bilan bog'laning — qonunga muvofiq o'chirish choralarini ko'ramiz.

14. Siyosat o'zgarishlari

Siyosat yangilanishi mumkin. Mohim o'zgarishlar ilova ichidagi bildirishnoma yoki boshqa mos usul bilan e'lon qilinishi mumkin. Yangilangan matn prepdrive.uz domenida ham joylashadi.

15. Aloqa

Maxfiylik va shaxsiy ma'lumotlar bo'yicha savollar uchun:

Elektron pochta: support@prepdrive.uz
Rasmiy sayt: prepdrive.uz
iOS App Store taqdimotchisi: Jamshid Salayev (individual developer)
Xizmat operatori (ma'lumotlarni qayta ishlash infratuzilmasi): «Next Developers Team» MCHJ, Toshkent, O'zbekiston (umumiy kontakt orqali)

Privacy Policy (iOS)

Last updated: April 29, 2026

Application	PrepDrive (Apple App Store)
iOS bundle identifier	`uz.prepdrive.app`
App Store provider	Jamshid Salayev (individual developer)
Service infrastructure	PrepDrive backend and related services may be operated by «Next Developers Team» LLC (Tashkent, Uzbekistan). This document explains how we process user information.
Official website	prepdrive.uz
Account / sign-in	account.prepdrive.uz

iOS and payments. This PrepDrive iOS application does not process payments for digital content, subscriptions, or similar features via Apple In-App Purchase. Paid services or account-related actions (if available) may only be completed through PrepDrive official websites, separately from the app; payment card details are not entered inside the app.

1. Overview

This Privacy Policy describes how we collect, use, and protect personal information for users of the PrepDrive iOS application. By downloading, registering for, or using the app, you acknowledge that you have read this Policy and agree to the practices described herein. If you do not agree, please discontinue use of the application.

2. Information we collect

We may collect the following categories of information in connection with your use of the app and services:

Account and identity. When you register: name, phone number, and email address. You create a password; it is not stored in plain text on our servers.
Device identifiers. Technical information such as platform, model, manufacturer, OS version, and on iOS identifiers such as identifierForVendor via device_info_plus, which may be sent in request headers (e.g. X-Device-ID, X-Device-Name) to associate your session and push token with your account.
Usage data. Interactions such as lessons accessed, tests taken, videos viewed, and results may be stored on our servers in connection with your account.
Support. If you submit a support request, we collect your message text and any files or images you attach.
Referral and account status. Referral codes, subscription status, and balance may be synchronized with our servers.

Precise GPS location is not requested by the app and GPS coordinates are not transmitted to our servers.Google Firebase Analytics may process approximate regionderived from IP and network information on Google's infrastructure — this is not precise GPS shared with PrepDrive's backend as location coordinates.

3. iOS capabilities and permissions

The following may apply on iOS depending on features (may evolve with app updates):

Capability / context	Purpose
Network (Internet)	Secure communication with APIs and services.
Push notifications	Notifications via Firebase Cloud Messaging (FCM); you can allow or revoke permission in iOS Settings.
Photo library / camera (system prompt)	Only when attaching an image or file to a support ticket via `image_picker`; persistent camera access is not required.

Microphone, contacts, and precise location permissions are not requested by the app.

4. Registration and security

Authentication uses JWT access and refresh tokens. Tokens are stored securely on the device using the iOS Keychain via flutter_secure_storage. SMS OTP and CAPTCHA may be used to reduce abuse during registration and password recovery.

5. Push notifications

After sign-in or registration, your FCM token may be sent to our servers (e.g. via /api/auth/fcm-token) solely to route notifications to your device. Local notifications may be shown via flutter_local_notifications. You can manage notifications in iOS Settings → Notifications.

6. Payments and financial information (iOS app only)

This iOS application does not include functionality to accept payments for digital goods or subscriptions (Apple In-App Purchase is not used for such purposes). If payment options exist on other platforms or the website, card details are entered only on the payment provider's own page; full card credentials are not stored by PrepDrive servers. Details about payment providers on other platforms (e.g. Android or web, such as Payme, Click, or Uzum) may be described in separate documentation for those platforms.

7. Firebase Analytics

The app may integrate Google Firebase Analyticsfor aggregated analytics (e.g. screens, events, device type, OS version). Data is processed on Google's infrastructure. See Google Privacy Policy.

8. Third-party services

During normal operation, the following may receive data:

Service	Data	Purpose
Firebase FCM (Google)	FCM token, device identifiers	Push notification delivery
Firebase Analytics (Google)	Events, device attributes, approximate region on Google systems	Aggregated analytics

We do not sell personal data for marketing purposes.

9. Local storage

Non-sensitive preferences (e.g. theme, language, text size) may be stored locally via shared_preferences. Uninstalling the app removes local data from your device.

10. Security

Communication with our backend uses HTTPS (TLS), e.g. https://cdn.prepdrive.uz and related APIs. Request logging via developer tools may occur in debug builds; production releases should not log sensitive credentials.

Retention (summary)

Active accounts: profile and learning activity retained while your account remains active.
Account deletion: after confirmation, a 30-day grace period typically applies before personal data is removed from production systems (subject to legal retention).
Support: closed tickets may be retained for a limited period.
Technical logs: limited retention (e.g. up to ~90 days) unless longer retention is required.

11. Account deletion

You may request account deletion inside the app (e.g. Settings), including password and confirmation steps. You may also use the web flow: account.prepdrive.uz/auth/delete-account.

12. Your rights

Depending on applicable law, you may have rights of access, rectification, erasure, withdrawal of consent, and complaint. Contact us using the details below.

13. Children's privacy

PrepDrive is not intended for children under 13. If you believe we have collected information from a child under 13, contact us and we will take steps to delete such information where required by law.

14. Changes to this Policy

We may update this Policy. Material changes may be communicated via in-app notice or other appropriate means. The updated Policy will remain available on prepdrive.uz.

15. Contact

For privacy-related questions:

Email: support@prepdrive.uz
Website: prepdrive.uz
iOS App Store listed developer: Jamshid Salayev (individual developer)
Service infrastructure operator: «Next Developers Team» LLC, Tashkent, Uzbekistan (via general contact)