Privacy Policy

1. Introduction

Sessionz ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our mobile application and services.

This policy applies to all users of Sessionz and covers our mobile application available on iOS and Android platforms.

2. Information We Collect

2.1 Personal Information

• Account Information: Email address, username, display name, and profile photo
• Authentication Data: Password (encrypted) and authentication tokens
• Profile Data: Any additional information you choose to add to your profile

2.2 Session and Activity Data

• Session Information: Sessions you create or join, session codes, and participation data
• Drink Logs: Information about drinks you log, including type, volume, and timestamps
• Photos: Images you share within sessions
• Reactions and Interactions: Emoji reactions and social interactions within the app
• Achievements: Progress toward and completion of app achievements

2.3 Technical Data

• Device Information: Device type, operating system, app version
• Usage Analytics: App usage patterns, feature usage, and performance data
• Push Notification Tokens: For sending notifications about session activity
• Log Data: Error logs and diagnostic information for app improvement

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision

• Create and manage your account
• Enable session creation and participation
• Facilitate photo sharing and social interactions
• Provide leaderboards and achievement tracking
• Send relevant push notifications

3.2 Communication

• Send important service updates and announcements
• Respond to your support requests and inquiries
• Notify you about session activity and friend requests

3.3 Legal and Safety

• Comply with legal obligations and law enforcement requests
• Protect against fraud, abuse, and security threats
• Enforce our Terms of Service and community guidelines

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information in the following circumstances:

4.1 Within Sessions

Information shared within sessions (photos, drink logs, reactions) is visible to all session participants.

4.2 Service Providers

We work with trusted third-party service providers who assist in operating our app:

• Supabase: Database hosting, authentication, and file storage
• Expo/React Native: Mobile app development and push notifications
• Vercel: Web hosting and API services

4.3 Legal Requirements

We may disclose information when required by law or to protect our rights, safety, or the safety of others.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

• Encryption: Data is encrypted in transit and at rest
• Access Controls: Strict access controls and authentication requirements
• Regular Audits: Regular security assessments and vulnerability testing
• Secure Infrastructure: Industry-standard cloud security practices

While we strive to protect your data, no method of transmission over the internet or electronic storage is 100% secure.

6. Your Rights and Choices

You have the following rights regarding your personal information:

6.1 Access and Portability

You can access and download your personal data through the app or by contacting us.

6.2 Correction and Updates

You can update your profile information and preferences within the app settings.

6.3 Account Deletion

You can delete your account through the app settings. This will permanently remove your personal data within 30 days, though some information may be retained for legal or security purposes as permitted by law.

6.4 Communication Preferences

You can manage notification preferences and opt out of non-essential communications in app settings.

7. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy:

• Account Data: Retained while your account is active
• Session Data: Retained for historical purposes and app functionality
• Photos: Retained until manually deleted or account deletion
• Analytics Data: Aggregated and anonymized after 2 years

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in accordance with applicable privacy laws.

9. Children's Privacy

Sessionz is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes through the app or via email. Your continued use of Sessionz after such notification constitutes acceptance of the updated policy.

11. Governing Law and Jurisdiction

This Privacy Policy is governed by and construed in accordance with the laws of England and Wales. We are a UK-based company and comply with UK GDPR and applicable data protection regulations.

For users in the European Union, this policy also complies with EU GDPR requirements. Any disputes relating to this Privacy Policy will be subject to the exclusive jurisdiction of the courts of England and Wales.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: