This Privacy Policy explains how Pinfo ("Pinfo", "we", "us") collects,
uses, and shares information when you use the Pinfo mobile app and related services
(the "Service"). Pinfo is an events and social app: you discover events near you on a
map, save and express interest in them, RSVP to private events, host your own events,
chat with other users, and optionally sync events to your calendar.
Please read this first. Pinfo is not an end-to-end encrypted messenger.
Messages you send (including images and voice notes), your phone number, and the content
you create are stored on our servers and can be accessed by us to operate, secure, and
moderate the Service. Do not share information in Pinfo that you would not want us or the
people you message to be able to see.
1. Who is responsible for your data
The data controller for the Service is Friedrich Bremer,
Spenerstraße, 10577 Berlin, Germany. You can contact us about privacy at
pinfoapp@gmail.com. Pinfo is operated from Germany, part
of the European Union, and our primary data hosting is located in the EU.
2. Information we collect
Account information. Your phone number (used to sign
you in), a username, and optionally an email address and a profile photo. You sign in by
phone only; verification is handled by Google Firebase. Pinfo does not offer sign-in via
Google, Facebook, Instagram, or any other third-party social account.
Your location. A primary location or address you set for your profile,
and your approximate current location (with your permission) so we can show events near you
on the map.
Content you create. Events you host (title, description, date/time,
venue and coordinates, cover image, and for private events a host contact phone number),
your RSVPs and "interested" selections, saved events, event ratings, and feedback or
reports you submit.
Messages. One-to-one messages and private-event group ("Event Space")
messages, including text, images, and voice notes. These are stored on our servers and are
not end-to-end encrypted.
Contacts (only if you choose to invite people). If you use "invite
guests", we access the contacts you select on your device (with your permission) and use
the selected phone numbers to send invitations and to match invited people to their
account if they sign up. We do not upload your entire address book.
Notifications. A push notification token so we can send you alerts
(for example, RSVPs to your events or new messages).
Purchases. Whether you have an active subscription or are otherwise
entitled to paid features. Payments are processed by Apple; we do not receive or store your
payment card details.
Device and diagnostic data. Your device platform, operating system
version, app version, a session identifier, and error/diagnostic logs, which help us find
and fix problems.
Pinfo does not currently sell event tickets or process payments for event admission. If that
changes, we will update this Privacy Policy to describe any additional data collected before the
feature launches.
3. How we use your information
To provide the Service: sign you in, show nearby events, let you host, RSVP, save,
rate, chat, and receive notifications.
To keep the Service safe: moderation, responding to reports, blocking, and preventing
abuse. This can include reviewing message content where necessary.
To process subscriptions and manage paid features.
To communicate with you about the Service and to respond to your feedback or support
requests.
To maintain, debug, and improve the app.
To comply with legal obligations.
4. Legal bases (EEA/UK users)
Where the GDPR applies, we rely on: performance of a contract (to provide
the Service you request); your consent (for access to contacts, precise
location, and push notifications, which you can withdraw at any time in your device settings,
without affecting the lawfulness of processing before withdrawal);
our legitimate interests (to keep the Service secure, prevent abuse, and
improve the product); and legal obligations where applicable.
5. Service providers and sharing
We do not sell your personal data. We share data with the following
providers who process it on our behalf, and with other users as described below:
Supabase - database and file storage hosting (EU region). Stores your
account data, events, messages, and uploaded chat media.
Google Firebase - phone-number authentication and push notifications
(Firebase Cloud Messaging).
Apple - App Store and in-app purchases (subscription billing) and
Apple Maps for map display.
Google Calendar - only if you choose to connect it, so we can add
events you RSVP to into your calendar.
Public event sources - we aggregate publicly listed events from
third-party platforms (such as Resident Advisor, Lu.ma, Eventbrite, and DICE) to populate
the map. We do not share your personal data with these sources.
Other users. Your username, profile photo, and events you host are
visible to other users. Depending on your settings and the event type, your interest or
attendance and the guest list may be visible to other participants. Messages are visible
to the people you send them to. Content you share may be seen, saved, or forwarded by
others.
Legal. We may disclose information if required by law or to protect the
rights, safety, and security of our users, the public, or Pinfo.
Business transfers. If we are involved in a merger, acquisition, or
asset sale, your data may be transferred; we will provide notice before it becomes subject
to a different privacy policy.
6. Security and encryption
Data in transit is protected using industry-standard encryption (HTTPS/TLS). Data at rest
is held by our hosting provider with access controls, including per-user row-level security so
users can only access data they are permitted to. However, messages and phone numbers
are not end-to-end encrypted, and authorised Pinfo operators can access them for the
purposes described in this policy (such as operating and moderating the Service). No method of
transmission or storage is completely secure.
7. Data retention
Account and content data are kept for as long as your account exists.
Diagnostic/error logs are automatically deleted after about 30 days.
Aggregated public event listings are pruned after about 90 days.
Messages are retained until you or the other participant delete them, or until your
account is deleted. Messages you have sent to others may remain visible in their
conversation even after you delete your account.
8. Your rights
Depending on where you live, you may have the right to access, correct, delete, restrict,
or object to the processing of your personal data, to data portability, and to withdraw
consent. You can delete your account in the app (Profile → Delete account),
which removes your profile and associated data from our systems; some information may persist
for a limited time in backups or logs, and content already shared with others may remain
visible to them. To exercise any right, contact
pinfoapp@gmail.com. If you are in the EEA/UK and believe
we have not resolved your concern, you may lodge a complaint with your local data protection
authority, or with the Berlin Commissioner for Data Protection and Freedom of
Information (Berliner Beauftragte für Datenschutz und Informationsfreiheit), the
supervisory authority for our place of establishment.
9. International transfers
Our primary data hosting is in the EU. Some providers (such as Google/Firebase and Apple)
may process data in other countries; where they do, they are required to use appropriate
safeguards for international transfers, such as the European Commission's Standard Contractual
Clauses.
10. Children
Pinfo is not directed to children. You must be at least 18
to use the Service. Some events may have their own age restrictions set by their organisers or
venues.
11. Changes to this policy
We may update this policy from time to time. When we do, we will revise the "Last updated"
date above and, where appropriate, notify you in the app.
12. Contact
Questions about this policy or your data:
pinfoapp@gmail.com, or by post to Friedrich Bremer,
Spenerstraße, 10577 Berlin, Germany.