End User Privacy Policy

Date of Last Revision: March 31, 2025

Candle allows users to link an application they use (the “Primary App”) to another application for which they have an account (the “Connected App”). By linking applications through Candle, users can access data from the Connected App and execute “automations” such as taking actions within the Connected App – all through their use of the Primary App.

This End User Privacy Policy describes how your personal information is managed when you link applications using Candle.

This End User Privacy Policy does not apply to information subject to our Website Privacy Policy, such as information we collect on our website and from developers who integrate Candle into their applications.

Personal Information We Collect

When you use Candle, we may collect and/or transiently process the following information:

  • Data you access from the Connected App. The type of data will depend on the type of application you link using Candle and could include any data from the Connected App that you access in your Primary App. For example, if you link a payment application using Candle, we may process information about your balances and transactions in order to display them in your Primary App. Or, if you link a ride application, we may display past ride information from your Connected App.

  • Account information and metadata about your Connected App. We may also collect your account credentials, metadata about your account, and other technical information in order to link your Connected App. For example, we may process the dates/times that you link your Connected App and your username or other credentials to allow you to access your account with the Connected App.

  • Actions you instruct the Connected App to take. We also collect any “automations” or other instructions you send to the Connected App from your Primary App. For example, if you link to a brokerage account and automate trading strategies, we process the instructions you send to the Connected App to execute your trades.

We and our service providers may automatically log information about you, your mobile device, your network, and your interactions over time with us, such as your mobile device’s operating system, manufacturer and model, browser type, IP address, unique identifiers, language settings, mobile device carrier, and general location information such as city, state or geographic area; and

How We Use Personal Information

We use personal information for the following purposes:

  • To allow you to link applications through Candle. This includes any use of data necessary to operate, provide, process, service, and maintain the products and services you use.

  • Analytics, development, and improving our products. We may use personal information to analyze and improve our products, identify trends, and operate and expand our business activities. We may also create aggregated, anonymized, or other de-identified statistics, which we may use for lawful business purposes, including for analytics, forecasting, and strategic planning.

  • For compliance and protection, including to enforce any applicable terms and conditions, comply with legal obligations, defend against legal claims or disputes, protect security and integrity, and identify and investigate fraudulent, harmful, unauthorized, unethical or illegal activity.

How We Share Personal Information

Sharing between connected applications. When you link accounts using Candle, your information may be shared between the Connected App and the Primary App.

We may also share personal information to operate and support Candle, including with the following categories of partners:

  • Service providers. We share personal information with companies and individuals that provide services on our behalf or help us operate our business. These service providers include hosting services, communications, fraud detection, investigation and prevention services, web and mobile analytics, email and communication distribution and monitoring services, and customer relations management systems. We also share information with third-party AI service providers, such as companies that operate large language models (“LLMs”).

  • Professional advisors. We share personal information with professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.

  • Authorities and others. We may share personal information with law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate.

  • Business transferees. We may share personal information with acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, Candle (including, in connection with a bankruptcy or similar proceedings).

Data Retention and Privacy Choices

Data from your Connected App that you access through Candle usually is processed only transiently to facilitate the connection and display your data within the Primary App. In some cases, we may maintain this data for longer where we believe it’s needed for legal, regulatory, security, or other compliance purposes. We may also maintain other data categories, such as device and network information, metadata, and automations you execute through Candle for legal, regulatory, security, and compliance purposes, and for other internal business purposes as described in the Privacy Policy.

De-linking accounts. You can de-link a Connected App from the Primary App at any time by going to the settings of the Primary App and, if available, locating the “remembered devices” section to remove the Connected App. Otherwise, you can contact the Primary App to request that they de-link your account. If the Primary App fails to comply with your request, you can contact us directly.

Data Security

We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, no security measures are failsafe and we cannot guarantee the security of your personal information.

Children

Candle is not intended for use by children. If we learn that we have collected personal information from a child without the consent of the child’s parent or guardian as required by law, we will endeavor to delete it.

Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy. We may also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via e-mail (if you have an account where we have your contact information) or another manner.

Contact Us

You can reach us by email at contact@trycandle.com or the following mailing address:

📫 1309 Coffeen Ave. Suite 1200 Sheridan WY, 82801