Privacy Policy

Last updated: February 12, 2026

1. Introduction

Welcome to the privacy policy of Yusol Proyectos SAPI de CV (known as "qtapp.ai"). This document describes how we collect, use, store, and protect the personal information you provide when using our mobile application and related services.

By using our services, you accept this privacy policy. If you do not agree with it, please do not use our services.

2. Information We Collect

2.1 Data Provided by the User

  • Full name
  • Email address
  • Phone number
  • Profile information
  • Content created, shared, or uploaded

2.2 Information Collected Automatically

  • Device information
  • App usage data
  • IP address
  • Location data (if you authorize it)
  • Cookie information

3. Verification Levels and Use of Personal Data (KYC)

At QTApp we implement a tiered verification system that allows us to offer you operating limits according to the information you share with us. This system complies with the provisions of the Mexican Law to Regulate Financial Technology Institutions (Ley para Regular las Instituciones de Tecnología Financiera) and Anti-Money Laundering (PLD) regulations.

Basic Level

When you register with QTApp, we only require:

  • Verified email address
  • State of residence (required to assign your CLABE with the correct location code)

At this level you can receive transfers of up to $25,000 MXN per month.

Note: Outgoing transfers (SPEI OUT) are limited to $10,000 MXN per month at this level. For higher limits, you must upgrade to the Oro level or above.

Oro Level

To access a limit of $94,000 MXN per month with outgoing transfers enabled, we request additional information that allows us to verify your identity:

  • INE (Mexican ID) or Passport (valid identity document)
  • Live photo / Selfie (liveness verification)
  • Verified phone number
  • CURP (automatically extracted from the identity document)

Platinum Level - Individuals

For transfers of up to $500,000 MXN per month, we require complete tax information:

  • Tax regime (RESICO, PFAE, or other)
  • RFC (Mexican Federal Taxpayer Registry)
  • CURP (Unique Population Registry Code)
  • Tax domicile

Platinum Level - Legal Entities

For companies with dynamic limits (SME up to $5M, Medium up to $50M, Large customized), we require business documentation:

  • Articles of incorporation
  • Legal representative's powers of attorney
  • Company RFC
  • Legal representative's INE
  • Proof of tax domicile
  • Identification of ultimate beneficial owners (>25% ownership)
  • Economic activity declaration

How do we use this information?

DataPurpose
Email addressAuthentication, transaction notifications, account recovery
INE / PassportOfficial identity verification, KYC compliance
Live photo / SelfieLiveness verification, fraud prevention
Mobile phoneContact in case of unusual activity, customer support, 2FA
CURPIdentity verification, compliance with PLD regulations
RFCTax compliance, reporting to authorities under applicable regulations
Tax domicileInvoicing, compliance with tax obligations

Storage and Protection

  • All personal data is stored with bank-grade encryption
  • Photographs are stored on secure servers with restricted access
  • We do not share your information with third parties except when required by law
  • You may request deletion of your data at any time, subject to regulatory retention obligations

4. Use of Information

We use your information to:

  • Provide our services
  • Process transactions
  • Personalize your experience
  • Communicate important updates
  • Analyze app usage
  • Detect and resolve technical issues
  • Comply with legal obligations

5. Information Sharing

We do not sell or rent your personal information. We only share it in the following cases:

  • With service providers that help us operate
  • For legal compliance or at the request of authorities
  • In the event of business transfers (mergers, acquisitions)
  • With your explicit consent

6. Use of Artificial Intelligence and Third-Party Services

This section describes how QTApp uses third-party artificial intelligence services to power the assistant integrated into the application.

6.1 Data Shared with the AI Provider

When you use the QTApp artificial intelligence assistant, the following data may be sent to the AI provider to process your queries:

  • Text and voice queries: The messages you send to the assistant, whether typed or dictated by voice
  • Financial activity summaries: Summary information about your transactions so the assistant can respond to queries about your activity
  • Username: Your profile name to personalize the assistant's responses

6.2 Artificial Intelligence Provider

QTApp uses the Claude artificial intelligence model, developed by Anthropic, as the main engine of its assistant. Anthropic acts as a data processor under our instructions to generate responses to your queries.

6.3 Protections and Guarantees

  • No training: Your data is NOT used to train or improve artificial intelligence models
  • Encrypted communication: All communications with the AI provider are performed via HTTPS/TLS
  • No permanent storage: Data sent to the assistant is not stored permanently by the provider

6.4 User Consent

Before using the AI assistant for the first time, your explicit consent is requested within the application. This consent includes acceptance that your data will be processed by the AI provider described above.

You can stop using the AI assistant at any time simply by no longer interacting with it. Use of the assistant is entirely optional and does not affect the other functionalities of the application.

7. Google User Data

This section specifically describes how QTApp handles data obtained through Google APIs.

7.1 Google Data We Access

QTApp requests access only to the following Google permission:

  • Gmail (gmail.send): Permission to send emails on behalf of the user

We do not access any other Google service. We do not read, store, or process the content of your inbox, contacts, calendar, Drive files, or any other data from your Google account.

7.2 How We Use Google Data

The Gmail permission is used exclusively for the following functionality:

  • Send emails when the user explicitly requests it through the QTApp artificial intelligence assistant

Limited Use

The use of Google data is strictly limited to providing and improving the email-sending functionality within the QTApp application. We do not use this data for any other purpose.

7.3 Storage of Google Data

QTApp does not store Google user data:

  • We do not store the content of emails sent
  • We do not store recipient email addresses obtained from Google
  • We do not store Google access tokens permanently beyond the active session
  • Refresh tokens are stored securely and encrypted solely to maintain the authorized connection

7.4 Sharing of Google Data

We Do Not Share Google Data

  • We do not sell Google user data to third parties
  • We do not transfer Google data to third parties
  • We do not share Google data with advertisers
  • We do not use Google data for personalized advertising

The only data transfer that occurs is the sending of the email through Google's Gmail servers, which is the main functionality for which the permission is granted.

7.5 Google Data and Artificial Intelligence

QTApp uses artificial intelligence for its assistant. It is important to clarify:

  • We do not use Google data to train AI models
  • Google data is not used to improve machine learning algorithms
  • The content of emails you request to send is not stored or used for training
  • The AI only processes your request in real time to generate and send the email, without retaining the information

7.6 Protection of Google Data

We implement the following security measures to protect Google data:

  • Encrypted communications via HTTPS/TLS
  • Access tokens stored with AES-256 encryption
  • Restricted access to systems that handle Google data
  • Regular security audits
  • Compliance with Google API security requirements

7.7 Revocation and Deletion of Google Data

You can revoke QTApp's access to your Google account at any time:

Upon revoking access, we will immediately delete any Google tokens stored in our systems. Since we do not store email content or other Google data, there is no additional data to delete.

7.8 Compliance with Google Policies

QTApp's use of Google data complies with the Google API Services User Data Policy, including the Limited Use requirements.

8. General Data Security

We implement technical, administrative, and physical measures to protect your information. However, no method of transmission or storage is 100% secure.

9. Data Retention

We retain your information as long as necessary for the purposes described. Afterwards, we delete or anonymize it securely.

10. Your Rights

As a user, you have the right to:

  • Access your personal information
  • Rectify inaccurate data
  • Request deletion of your information
  • Object to the processing of your data
  • Request data portability
  • Withdraw your consent at any time

To exercise these rights, please contact us through the channels indicated in the contact section.

Request Data Deletion

If you want us to delete your personal information from our systems, you can submit a formal request through our form.

Request Data Deletion

11. Children's Privacy

Our application is not directed to children under 13 years of age. If we detect that we have collected data from minors without parental consent, we will delete it immediately.

12. Changes to this Policy

We may update this policy periodically. We will notify you of significant changes by publishing the new version and updating the last-modified date.

13. Contact

If you have questions about this policy, contact us:

Yusol Proyectos SAPI de CV

Trade name: qtapp.ai

Email: soporte@qtapp.ai

14. Jurisdiction and Applicable Law

This policy is governed by the laws of Mexico. Any dispute will be resolved in the competent courts of Mexico City.