Privacy Policy of the «My ChuvSU» Mobile Application

Effective from 18 May 2026, version 2.0. Cheboksary. Applicable mobile application version: 2.7.18 and above.

This English version is provided for informational purposes only. In case of any discrepancy between the English and the Russian versions, the Russian version prevails.

This document describes the processing of personal data in the «My ChuvSU» mobile application. The terms applicable to the website online.chuvsu.ru and other web services of the University are set out in the Privacy Policy of the website.

General provisions
Terminology
Categories of processed data
Consent management
Disclosure to third parties
Data retention
Rights of the data subject
Security
Age restrictions
Amendments to this Policy

1. General provisions

1.1. The data controller is the Federal State Budgetary Educational Institution of Higher Education «I.N. Ulianov Chuvash State University» (hereinafter – the University, the Controller).

1.2. Registered and operating address: 15 Moskovsky Avenue, Cheboksary, Chuvash Republic, 428015, Russian Federation. Founder: Ministry of Science and Higher Education of the Russian Federation. The University was established on 1 September 1967. Educational activities are carried out under licence No. 2276 of 19 July 2016.

1.3. University contacts:

for matters relating to the processing of personal data and for official correspondence: online@chuvsu.ru;
general reception: office@chuvsu.ru, phone +7 (8352) 58-30-36, fax +7 (8352) 45-02-79.

1.4. Legal grounds for the processing of personal data:

Federal Law No. 152-FZ of 27 July 2006 «On Personal Data»; In plain words: Russia's principal personal data protection law. It sets the rules for who may collect your data, how it must be stored and disclosed, and what rights you have as a data subject (to access, correct, delete, withdraw consent, or file a complaint with Roskomnadzor).
Federal Law No. 242-FZ of 21 July 2014 (localisation of the processing of personal data of Russian citizens within the territory of the Russian Federation); In plain words: requires personal data of Russian citizens to be stored on servers located in Russia. This is why the University databases are hosted within the Russian Federation.
Federal Law No. 273-FZ of 29 December 2012 «On Education in the Russian Federation» – ground for the processing of data of students and employees of the University; In plain words: Russia's core law on education. It requires the University to maintain records of students, their academic progress, documents and other education-related information – that is why your grades, timetable, certificates and other services are available in the application.
Federal Law No. 149-FZ of 27 July 2006 «On Information, Information Technologies and Information Protection»; In plain words: the general rules for handling information in online services – requirements for data protection, availability and storage.
consent of the data subject – for the categories listed in clauses 3.2.3, 3.2.4 and for the features listed in clause 5.4. In plain words: for certain actions (analytics collection, error reporting, permission for push notifications, access to the camera and calendar) we ask for your separate consent – and you may withdraw it at any time through the application settings.

1.5. This version of the Policy applies to the «My ChuvSU» mobile application distributed via Google Play, RuStore and App Store under the package identifier online.chuvsu.ru, starting from version 2.7.18.

1.6. By using the application, the user confirms that they have read this Policy. Consent to the processing of specific categories of data (analytics, error reports) is given through the application settings and may be withdrawn at any time.

2. Terminology

User – a natural person using the mobile application.
Student – a user holding the status of a student, postgraduate, intern, course participant or other form of education at the University.
Employee – a user employed by the University (including teaching staff).
Personal data – any information relating to a directly or indirectly identified or identifiable natural person.
Processing – any operation performed on personal data (collection, recording, storage, use, disclosure, etc.).
Third party – any organisation or service other than the University that receives personal data within the scope of processing.

3. Categories of processed data

3.1. Scope of applicability

The application supports iOS 15.0 and above, Android 5.0 (API 21) and above. The categories below are processed only when the corresponding features are used.

3.2. Composition of data

3.2.1. Account data (via the «ChuvSU Key» SSO system)

When signing in through the corporate authentication system (akey.chuvsu.ru, OpenID Connect / OAuth 2.0 with PKCE), the application receives the following information:

surname, first name, patronymic;
email address and its verification status;
phone number (if specified in the account);
date of birth, sex;
grade book number, student identifier, library card identifier;
educational information: faculty, group, course year, form and level of study, speciality and field of training, payment form, enrolment and graduation years, status (studying / on academic leave / expelled, etc.), indicators of being a group monitor and studying under a target contract;
for employees of the University – department, academic degree and title, identifiers in HR and rating portals;
roles in the information systems of the University.

The composition is determined by the University's SSO system (Keycloak) and is not extended by the application.

3.2.2. Device and installation identifiers

installation identifier (Firebase Installations ID) – a stable identifier of a particular installation of the application on a particular device, used to group notification tokens on the University server;
Firebase Cloud Messaging (FCM) push token;
RuStore push token (for devices without Google services);
Yandex AppMetrica device identifier;
device model and operating system version (via the device_info_plus library).

These identifiers do not allow identification of the user on their own and are used solely for the technical delivery of notifications and the grouping of events.

3.2.3. Application usage data (processed only upon user consent – see clause 4.1)

screen navigation events;
delivery, opening and read-status events of push notifications;
the fact of granting system notification permission (Yes/No);
user profile attributes in the analytics system:
- user identifier (numeric);
- first name (without surname or patronymic);
- sex;
- faculty name, group, form of study, level of study;
- student status, type of tuition payment (state-funded / contract), course year;
- user role.

Material limitation on composition: the surname and patronymic are deliberately not transmitted to the Yandex AppMetrica analytics system. The transmission is limited to the identifier and first name, in line with the data minimisation approach.

3.2.4. Crash and error data (processed only upon user consent – see clause 4.1)

When an unexpected error occurs in the application, the following information may be transferred to the error registration system (bugtracker.chuvsu.online, deployed within the University's infrastructure):

exception details: type, message, stack trace;
device model and operating system version;
user identifier, email address and first name (to enable contacting the user about the problem);
sequence of actions preceding the error (breadcrumbs), without the contents of user input;
technical metadata of HTTP requests during which the error occurred.

Prior to sending, headers that may contain secrets are automatically removed: Authorization, Cookie, Set-Cookie, X-API-Key, X-Auth-Token. In the production build the application does not write tokens, API responses or other sensitive information to the device's system logs.

3.2.5. User-generated content

profile picture (avatar) selected from the device gallery or captured with the camera;
files attached to requests and appeals;
messages in chats with University departments and teachers;
messages sent through the «Report a problem» feature (see clause 3.2.7);
in-app search history (stored only locally on the device).

3.2.6. Academic process data (received from University servers)

class timetable, schedule changes, academic debts and re-examinations;
grades, point-rating system scores, session results, attendance;
chat correspondence with University departments and teachers;
tuition contract information and balance status (the application displays balance and payment history information but does not process payment operations).

3.2.7. Technical context when submitting a data issue report

The application provides a «Report a problem» feature, allowing the user to mark outdated, incorrect or missing information in application blocks (timetable, grades, news, etc.). The following items are transferred to the University server (/api/v4/data-issues) along with the report:

the type of block to which the report relates;
the issue category (outdated / incorrect / missing);
application version, name and version of the operating system, device model, network connection type;
identifier and timestamp of the request that returned the data (for server-side diagnostics);
free-form user comment (optional, limited to 2000 characters).

The user identifier is not directly included in the request payload; the account is determined on the server side from the authorisation token.

3.3. Data the application does NOT collect

geolocation data (GPS coordinates, IP-based location). The application does not request location permissions and is not integrated with location-detection libraries;
biometric data (fingerprints, facial images). Biometric authentication is not implemented;
contents of the address book, call log, SMS, browsing history;
health-related information;
payment card or bank account data; all tuition payment operations are performed in the web cabinet, not in the application;
passport data, military service records, tax information, citizenship – these are handled by University accounting systems and the web cabinet; the mobile application has no access to them.

4.1. Consent to analytics and error reporting

The application provides the «Settings → Analytics collection» section with two independent toggles:

«Usage data» – controls the transmission of events and profile attributes to the analytics systems (Yandex AppMetrica, Firebase Analytics). When switched off, the application stops sending events, and the user profile in Yandex AppMetrica is cleared: all attributes (sex, first name, faculty, group, form of study, status, payment type, level of study, role, course year) are removed, except for the technical identifier required for consistency of anonymous counters.
«Problem data» – controls the transmission of error reports and related information to bugtracker.chuvsu.online.

The toggles are independent. Disabling either does not affect access to the application's main features. The effect of a toggle is immediate and persists until the next explicit change.

4.2. Consent to push notifications

Requested separately by the operating system. May be withdrawn at any time through the device settings; the application remains functional except for notifications themselves.

4.3. Consent to access the camera, photo library, calendar and contacts

Requested separately for each feature at the time of its first use (see clause 5.2). Refusal results in the unavailability of the corresponding feature only.

5. Disclosure to third parties

5.1. List of recipients

Recipient	Purpose	Location	Data transferred	Legal ground
Yandex LLC (AppMetrica service)	Application usage segmentation and measurement, push notification delivery	Russian Federation	Installation identifier, screen navigation and push notification events, profile attributes per clause 3.2.3	User consent (clause 4.1)
Google LLC (Firebase Cloud Messaging, Firebase Installations, Firebase Analytics)	Push notification delivery, analytics	USA, Europe	FCM token, installation identifier, navigation events	User consent + cross-border transfer notification (see clause 5.3)
RuStore LLC (RuStore Push service)	Push notification delivery for devices without Google services	Russian Federation	RuStore push token	User consent (expressed by the fact of using the application capable of running without Google services)
Apple Inc., Google LLC	Application distribution, delivery of updates, receipt of reviews and ratings	USA	User account information in the application store, generated by the stores themselves	Terms of use of the respective store
University IT infrastructure: `online.chuvsu.ru`, `akey.chuvsu.ru`, `bugtracker.chuvsu.online`	Application backend, single sign-on, error registration and analysis	Russian Federation	Information listed in section 3.2	Implementation of educational relations under Federal Law No. 273-FZ + user consent for the features subject to consent

5.2. Operating system permissions and their purpose

Permission	Platform	Purpose
Receipt and display of notifications (`POST_NOTIFICATIONS` / Push Notifications)	Android, iOS	Notifications about the timetable, grades, messages and University announcements
Exact alarm (`SCHEDULE_EXACT_ALARM`), wake lock (`WAKE_LOCK`), start at boot (`RECEIVE_BOOT_COMPLETED`)	Android	Triggering of class start alarms set by the user
Full-screen notification (`FOREGROUND_SERVICE`, `ACCESS_NOTIFICATION_POLICY`)	Android	Correct playback of alarms and priority notifications
Read and write calendar events (`READ_CALENDAR` / `WRITE_CALENDAR`, `NSCalendarsUsageDescription`)	Android, iOS	Adding classes to the system calendar upon explicit user action
Photo library access (`NSPhotoLibraryUsageDescription`, `READ_EXTERNAL_STORAGE` – only for Android 12 and below)	Android, iOS	Selecting an image for the profile avatar; on Android 13 and above the system Photo Picker is used, which does not require access to the whole library
Camera (`NSCameraUsageDescription`)	Android, iOS	Capturing the profile avatar; scanning the library card number by barcode
Contacts access (`NSContactsUsageDescription`)	iOS	Autocomplete of the «location» field when creating a timetable event. The address book contents are not copied to the application or to the University servers

The application does not request permissions for geolocation, microphone, call log, SMS, medical sensors or biometric sensors.

5.3. Cross-border data transfer

Google services (Firebase Cloud Messaging, Firebase Analytics, Firebase Installations) process the technical identifiers and events transmitted to them on servers located outside the Russian Federation. The transfer is performed on the basis of the user's consent to push notifications and analytics and is subject to notification of the authorised body for the protection of the rights of personal data subjects in accordance with Article 12 of Federal Law No. 152-FZ. The data transferred abroad is limited to the installation identifier, the push notification token and screen navigation events; the personal data listed in clause 3.2.1 is not transferred to those services.

5.4. Planned features

At the time of preparation of this Policy, the following features are under development; the data described below is not processed until the corresponding feature is launched. The section will be supplemented or updated by the time each feature is launched:

University announcements. The application will gain the ability to display non-commercial informational messages from University departments (announcements of academic units, the trade union committee, the library, etc.) through a service in the University's infrastructure (ucs.chuvsu.ru). Third-party advertisers are not engaged; user data is not transferred to third parties in connection with this feature. Non-essential announcements may be disabled in the settings.
«ChuvSU Research». A module for student surveys and questionnaires. User responses constitute personal data and may include value judgements about the work of University units and teachers. The responses are processed exclusively by the University and are not transferred to third parties. Participation in surveys is voluntary.

6. Data retention

6.1. Locally on the user's device

The application uses the secure storage mechanisms built into the operating system (Android Keystore, iOS Keychain via platform mechanisms) for the following items:

authorisation token for the University services;
OpenID Connect tokens issued by the «ChuvSU Key» system;
cached user profile (retained for up to 6 hours before re-synchronisation with the server);
cache of timetable, grades, avatar and other educational data (to allow the application to operate without a permanent network connection);
in-app search history (up to the last 50 queries);
user preferences (theme, analytics consent, selected subgroup, time display format, favourites).

When the user signs out, the tokens and the profile cache are deleted. Push notification tokens are revoked from Firebase and RuStore during the standard sign-out procedure.

6.2. On University servers

The information received through the «ChuvSU Key» system and University APIs is stored in the University's accounting systems for the period established by University internal regulations on the retention of administrative and educational documentation, in line with GOST R 7.0.97-2016 and the regulations of the Ministry of Science and Higher Education of the Russian Federation.

Yandex AppMetrica analytics events are retained in accordance with the periods determined by the AppMetrica service (by default – 13 months of active analytics and 24 months of historical data). Error reports in bugtracker.chuvsu.online are retained for no more than 90 days from the time of receipt (unless a different period is set by a University internal regulation).

7. Rights of the data subject

In accordance with Articles 14, 18.1, 20 and 21 of Federal Law No. 152-FZ the user has the right:

7.1. To obtain information about the processing of their personal data, including:

the fact of processing and its purposes;
the legal grounds and methods of processing;
the name and location of the Controller;
information about the persons having access to the data;
the categories of data being processed and their source;
periods of processing and retention;
the procedure for exercising the rights granted by Federal Law No. 152-FZ;
information about cross-border data transfer.

7.2. To request clarification, blocking or destruction of personal data where such data is incomplete, outdated, inaccurate, obtained unlawfully or no longer necessary for the declared purpose of processing.

7.3. To withdraw consent to processing. Withdrawal of consent in relation to personal data whose processing is necessary for the performance of the education contract or for purposes expressly provided for by law may result in the impossibility of performance of the corresponding obligations by the Controller.

7.4. To withdraw consent to the sending of analytical events and error reports at any time through the «Settings → Analytics collection» section of the application; this action does not affect access to the main features.

7.5. To request the deletion of the account and related personal data in accordance with the University's internal regulations. The request is sent to online@chuvsu.ru; the response time is no more than 30 calendar days.

7.6. To appeal against the actions or inaction of the Controller to the authorised body for the protection of the rights of personal data subjects (Roskomnadzor) or through the courts.

8. Security

8.1. Data transfer between the application and University servers is performed over HTTPS. For the domain online.chuvsu.ru an exception is configured in the iOS ATS policy to allow operation with the University's internal domain; this configuration has been agreed with the University's information security service.

8.2. Authorisation tokens are stored in the secure local storage of the operating system. Authentication in the «ChuvSU Key» system is performed via OAuth 2.0 with PKCE; alternatively, Device Authorization Grant (RFC 8628) is supported for devices where the use of an embedded browser is difficult.

8.3. In the production build the application does not write tokens or server response bodies to the operating system's logs. Extended logging may be enabled only in «Developer Mode», activated by tapping the version number seven times in the «About» section, and used solely for technical diagnostics.

8.4. Before sending technical HTTP request metadata to the error registration system (bugtracker.chuvsu.online), the headers Authorization, Cookie, Set-Cookie, X-API-Key, X-Auth-Token are automatically removed.

8.5. The application uses AppMetrica Screenshot Reporting in the disabled state – screen captures containing user data are not transferred to the analytics system.

9. Age restrictions

The application is intended for students, employees and other persons whose relationship with the University is confirmed in the account system. Consent to the processing of personal data of persons under the age of 14 is given by their legal representatives.

10. Amendments to this Policy

10.1. The University reserves the right to amend this Policy. A new version becomes effective upon its publication at online.chuvsu.ru/doc/mobile_app_privacy_policy and (where necessary) notification to users through the application.

10.2. The version history is maintained in the University's documentation repository. Material changes affecting the categories of processed data or the list of third parties are accompanied by a repeated consent request in the application interface.

Version history

Version 1.0 – effective 1 August 2022. First public version based on a template.
Version 2.0 – effective 18 May 2026. Complete revision aligned with the actual categories of processed data and processors (Keycloak SSO, Firebase Cloud Messaging, RuStore Push, Yandex AppMetrica, error registration); consent management within the application interface; explicit cross-border transfer notice. References to disconnected services and irrelevant data categories were removed (Google Universal Analytics, Discord, Odnoklassniki, «Tinkoff», passport data, geolocation).