Privacy Policy
How Friendify Handles Data
A clearer overview of what data Friendify processes, why it is needed, which providers support the service, and how users can exercise their rights.
Last updated
May 24, 2026
Controller
Contact this party for privacy questions, access requests, correction, deletion, or objection requests.
Responsible party
Mailo Kastorf / Next Aether Cloud
Street 123
123 Ort
Germany
Privacy contact
Email: info@friendify.site
Legal notice: Imprint
Data We Process
Friendify processes data that is necessary for accounts, messaging, safety, and app functionality.
Account data
Email address, display name, username, profile photo, profile banner, birthday if provided, status, preferences, and account security settings.
Communication data
Messages, group membership, attachments, reactions, reports, moderation metadata, and timestamps needed to deliver chat features.
Device and app data
Session identifiers, notification tokens, trusted external sites, install/update state, theme preferences, and local storage needed to keep the app signed in and personalized.
Safety and support data
Reports, appeals, blocks, strikes, feedback, diagnostic metadata, crash reports, and server log data such as browser type, operating system, referrer, host, IP-related connection data, and request time.
Usage and experiment data
If optional analytics consent is accepted, Friendify may process page views, sign-in/sign-up events, landing-page CTA clicks, and A/B experiment assignments to understand product usage.
Purposes and Legal Basis
Providing Friendify
Data is processed to create accounts, authenticate users, deliver messages, sync devices, send notifications, and provide core social features.
Security and abuse prevention
Data is processed to protect users, detect abuse, enforce rules, handle reports and appeals, and keep the service reliable.
User-controlled preferences
Theme, density, notification, digest, AI beta, privacy, and profile settings are processed because users choose and save them.
Compliance and communication
Some data may be processed to answer requests, document actions, comply with legal duties, and communicate important service changes.
Analytics and experiments
Optional Firebase Analytics events and Remote Config experiment assignments are used only after analytics consent to improve product decisions and compare feature variants.
Service Providers
Railway
Railway provides hosting infrastructure for the web application. Connection and server log data may be processed to serve the app and maintain security.
Google Firebase
Firebase Authentication, Cloud Firestore, Firebase Storage, Firebase Crashlytics, Firebase Analytics, Firebase Remote Config, and related Firebase services are used for sign-in, account data, messages, media uploads, app state, diagnostics, optional analytics, and experiments.
Google Genkit / AI integrations
Beta AI features may send user-selected message content or prompts to AI providers when the user initiates an AI action.
Stripe
Stripe may process payment and billing data for premium features where paid plans are used.
Storage, Transfers, and Retention
Friendify stores data for as long as it is needed to provide the service, maintain user-selected settings, keep accounts secure, handle moderation or support requests, and meet legal obligations. Users can request deletion from Settings where supported.
Firebase data is generally configured for European regions where used, but providers may process data in other countries, including the USA, depending on their infrastructure and applicable transfer mechanisms.
Your Rights under GDPR Article 13
Access and portability
You can request information about personal data processed by Friendify and request a copy where applicable.
Correction and deletion
You can request correction of inaccurate data or deletion of data where the legal requirements are met.
Restriction and objection
You can request restricted processing or object to processing where the applicable legal conditions apply.
Complaint
You may contact a data protection supervisory authority if you believe personal data is processed unlawfully.
Transparency Note
This page improves structure and readability, but it is not a substitute for review by a qualified legal professional.
The policy is organized around GDPR Article 13 disclosure topics and the service behavior visible in this repository.