PRIVACY POLICY
Last updated: 20 June 2025
1. Controller
Patrick-Etienne BaumannApfelstraße 17, 33613 Bielefeld, Germany
E-mail: privacy@qiuu.eu
2. What Data We Collect & Why
| Data | Examples | Purpose | Legal Basis |
|---|---|---|---|
| Account | name, e-mail, 18+ birthday | register & secure profile | GDPR Art 6 (1)(b) |
| Content | chats, images, calls | social-network functions | (b) |
| Device / usage | IP, device-ID, Remote Config flags | run & improve app | (f) legitimate interest |
| Location (opt-in) | last GPS fix (stored) | proximity search | (b) + (f) |
| Payment | App Store / Play receipt, RevenueCat status | subscriptions | (b) |
| Push token | FCM / APNs | notifications | (a) consent |
| Analytics & ads | GA4, Firebase Analytics, AdMob | stats & ad-frequency capping | (a) consent |
3. Cookies & Tracking
The website stores only essential cookies until you choose “Accept analytics/ads” in the banner. In the app, tracking is disabled until you grant device permissions (ATT on iOS).4. Retention
Content you delete is removed immediately; your account and its data vanish 30 days after you tap “Delete account”. Server logs ≤30 days, statutory financial records ≤10 years.5. Who Gets Data
| Processor | Purpose | Safeguard |
|---|---|---|
| Google Cloud (EMEA) | Firebase backend, GA4, AdMob, Apple/Google sign-in | EU servers + Standard Contractual Clauses |
| RevenueCat | verify in-app purchases | Standard Contractual Clauses |
| ConnectyCube (Estonia) | realtime chat & VoIP | EU Data-Processing Agreement |
| Apple / Google | app store & payments | their privacy terms |
6. Your Rights
You may access, rectify, erase, restrict or export your data, object to processing, withdraw consent at any time, and complain to a supervisory authority.7. Security Snapshot
- TLS for all connections
- Data encrypted at rest (AES-256)
- MFA-protected admin access
- Quarterly penetration tests
- Privacy-by-design reviews before new features launch