// /privacy — privacy policy stub. Lives at #/privacy on the marketing site.
// Required by Apple TestFlight + App Store. Linked from in-app Settings.

function PrivacyPage({ onNav }) {
  return (
    <div className="page">
      <DocBar onNav={onNav} crumb="PRIVACY · v1.0" />
      <Subnav page="/privacy" onNav={onNav} />

      <section className="page-hero">
        <div className="eyebrow">DOC · 07 MAY 2026 · v1.0</div>
        <h1>Privacy.</h1>
        <p className="lede">What we collect, what stays on your device, what leaves it, and what we never touch.</p>
      </section>

      <div className="prose">
        <h3>I · WHAT WE COLLECT</h3>
        <p>When you use the Plassic app or plassic.com:</p>
        <ul>
          <li><strong>Scan inputs.</strong> Barcodes you scan and product names you type are sent to api.plassic.com so we can return a score. Camera frames stay on your device — only the decoded barcode digits or label text leave it.</li>
          <li><strong>Account data (if you sign in).</strong> Email address and any preferences you set. Used to remember your scan history and restore Premium across devices.</li>
          <li><strong>Anonymous usage data.</strong> Pages viewed, scan counts, errors. Used to improve the product.</li>
          <li><strong>Payment data (Premium only).</strong> Handled entirely by Paddle (our merchant of record). We never see your card details.</li>
        </ul>

        <h3>II · WHAT STAYS ON YOUR DEVICE</h3>
        <ul>
          <li>All camera frames — only the decoded result leaves.</li>
          <li>Local scan history (cached for fast lookup).</li>
          <li>Onboarding answers (used to personalise feed locally).</li>
        </ul>

        <h3>III · WHAT WE NEVER COLLECT</h3>
        <ul>
          <li>Health data, biometrics, fitness data, location.</li>
          <li>Photos other than the one frame you scan with (and that frame never leaves the device).</li>
          <li>Contacts, calendar, messages, or any other system data.</li>
          <li>Card numbers (Paddle handles all of that).</li>
        </ul>

        <h3>IV · WHO WE SHARE WITH</h3>
        <p>We share only with the operational vendors strictly required to run the service:</p>
        <ul>
          <li><strong>AWS</strong> — hosts the API and database (data stays in ap-southeast-2 / Sydney).</li>
          <li><strong>Cloudflare</strong> — serves plassic.com.</li>
          <li><strong>Resend</strong> — sends transactional emails.</li>
          <li><strong>Paddle</strong> — processes Premium payments.</li>
          <li><strong>Inngest</strong> — runs background jobs (lifecycle emails, weekly digests).</li>
          <li><strong>Sentry</strong> — captures crash reports for debugging.</li>
          <li><strong>Firebase Cloud Messaging</strong> — delivers push notifications.</li>
        </ul>
        <p>We do not sell, rent, or trade your data to advertisers. Ever.</p>

        <h3>V · YOUR RIGHTS</h3>
        <p>Email <a href="mailto:privacy@plassic.com">privacy@plassic.com</a> to:</p>
        <ul>
          <li>Get a copy of all data we hold about you (delivered within 30 days).</li>
          <li>Delete your account and all associated data.</li>
          <li>Correct anything inaccurate.</li>
          <li>Opt out of analytics or lifecycle emails.</li>
        </ul>

        <h3>VI · CHILDREN</h3>
        <p>Plassic is not directed at children under 13. We don't knowingly collect data from anyone under 13. If you believe we have, email us and we'll delete it.</p>

        <h3>VII · CHANGES</h3>
        <p>We'll update this page when our data practices change. The version number at the top is the date of the most recent edit. Material changes will trigger an in-app notification.</p>

        <h3>VIII · CONTACT</h3>
        <p>Plassic is operated by Sajdak Group Holdings (SGH WLL Bahrain). For privacy questions: <a href="mailto:privacy@plassic.com">privacy@plassic.com</a>. For support: <a href="mailto:hello@plassic.com">hello@plassic.com</a>.</p>
      </div>
    </div>
  );
}