This Privacy Policy describes Our policies and procedures on the collection, use, and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal Data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

1. Interpretation and Definitions

Interpretation

The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

Account means a unique account created for You to access our Service or parts of our Service.
Affiliate means an entity that controls, is controlled by, or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest, or other securities entitled to vote for election of directors or other managing authority.
Application refers to Sociafly, the software program provided by the Company.
Company (referred to as either “the Company”, “We”, “Us” or “Our” in this Agreement) refers to Sociafly, 9511 Longden Ave, Temple City CA, 91780.
Country refers to: California, United States.
Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
Personal Data is any information that relates to an identified or identifiable individual.
Service refers to the Application.
Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company (such as Google Firebase) to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service, or to assist the Company in analyzing how the Service is used.
Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.
You means the individual accessing or using the Service.

2. Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information includes, but is not limited to:

Identity Data: Email address, first name, last name, and account password hashes.
Profile Information: User bio, status messages, music genre affinities, and group memberships.
Visual Assets: Profile photographs, group banners, and media shared in chats.
Social Graph & Moderation Data: Your friends list, pending friend requests, users you have blocked, and abuse reports you have submitted.

Usage Data

Usage Data is collected automatically when using the Service. When You access the Service through a mobile device, We may collect information automatically, including the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, and unique device identifiers.

Location Information (Sensitive Personal Information)

In order to provide core functionality, such as discovering nearby electronic dance music (EDM) events and matching you with local groups, our Application may request access to your device's precise geolocation data.

Use: We use this data via the EDMTrain API and Google Places to calculate proximity to events and facilitate location searches.
Control: You can enable or disable location services at any time through your device's operating system settings. If you disable location services, core proximity features of the Application will become unavailable.

User-Generated Content and Communications

When you use our Application to send Direct Messages (DMs), submit message requests, join groups, or post in community pages, we collect and store this information on our secure servers hosted by Google Firebase.

Privacy: DMs are private between participants, but metadata (timestamps, participant IDs, read receipts) and message content are stored on our servers.
Public Content: Any information you share in public or semi-public community pages and group chats can be read by other users in that group. We retain chat logs to maintain the safety of our community and to investigate violations of our Terms of Service.

3. Use of Your Personal Data

The Company may use Personal Data for the following purposes:

To provide and maintain our Service: Including monitoring usage and enforcing your social graph (e.g., preventing blocked users from contacting you).
To manage Your Account: To manage Your registration as a user of the Service.
For the performance of a contract: Specifically for processing payments for “Sociafly Pro” subscriptions or digital goods.
To contact You: By email or push notifications (via Firebase Cloud Messaging) regarding updates, friend requests, messages, or informative communications related to functionalities.
For Advertising and Marketing: We use Google Ads (AdMob) to serve targeted advertisements based on Your interests and location to help support the Service.
For Analytics and Tracking: We use tools like Google Analytics to track user behavior, optimize App performance, and improve the user experience.
For safety and community moderation: To enforce Terms of Service, investigate user reports, and prevent automated bot activity via Google reCAPTCHA.

4. Retention and Deletion of Your Personal Data

Retention of Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. Personal Data and Chat History are retained for the life of the account, plus up to 90 days for safety auditing and legal compliance.

Account Deletion and Right to be Forgotten

You have the right to delete or request that We assist in deleting the Personal Data that We have collected about You. You can execute this directly within the Application by navigating to the “Account” or “Settings” screen and selecting “Delete Account,” or by emailing us at APIdentity000@gmail.com.

Upon permanent deletion, your profile, location data, and identifiable chat history are purged from our active databases within 30 days. Note: Messages you have sent to other users may remain visible in their chat histories.

5. Transfer of Your Personal Data

Your information is processed at the Company's operating offices and on Google Firebase servers. It means that this information may be transferred to computers located outside of Your state or country. We use Standard Contractual Clauses (SCCs) to ensure that any data transferred from the EEA/UK to the United States is afforded an equivalent level of protection.

6. Advertising, Analytics, and Payments

Third-Party Tracking

Google Ads (AdMob): Google uses cookies and device identifiers to serve ads based on Your visit to Our Service. You may opt-out of personalized advertising by visiting the Google Ads Settings page or adjusting your device privacy settings.
Google Analytics: Tracks and reports app traffic. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

Payments

We use third-party services for payment processing (e.g., Apple Store In-App Payments, Google Play In-App Payments, Stripe). We do not store or collect Your payment card details.

7. Privacy Rights (CCPA/CPRA & GDPR)

California Privacy Rights (CCPA / CPRA)

If you are a resident of California, you are granted specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the 2026 regulatory updates:

The Right to Know & Access: You may request the specific pieces of personal data we have collected about you.
The Right to Delete: You may request the deletion of your personal data.
The Right to Limit Use of Sensitive Personal Information: You have the right to limit how we use your precise geolocation data.
Opt-Out Preference Signals (OOPS) / Global Privacy Control (GPC): We recognize and honor standard opt-out preference signals sent by your browser or device as a valid request to opt-out of the sharing of personal information for cross-context behavioral advertising.
Automated Decision-Making Technology (ADMT): You have the right to request information regarding how we use automated profiling to suggest events or groups to you, and to opt-out of such profiling where applicable.

GDPR Privacy (EEA/UK Residents)

We process Personal Data under: Consent (Art. 6(1)(a)), Performance of a contract (Art. 6(1)(b)), Legal obligations (Art. 6(1)(c)), and Legitimate interests (Art. 6(1)(f)). You have the Right of Access, Rectification, Erasure, Restriction, Data Portability, and Object.

To exercise any of these rights, please contact us at APIdentity000@gmail.com.

8. Security of Your Personal Data

The security of Your Personal Data is important to Us. Our architecture utilizes Google Firebase's robust security infrastructure, including in-transit encryption (SSL/TLS), at-rest encryption, and strict Identity and Access Management (IAM) rules to ensure users can only modify their own authorized data.

9. Age Restrictions (18+)

Due to the nature of the events (nightlife, raves, and EDM festivals) featured on our Application, our Service is strictly limited to individuals who are eighteen (18) years of age or older.

We do not knowingly collect personally identifiable information from anyone under the age of 18. If We become aware that We have collected Personal Data from a minor, We will take immediate steps to terminate the account and remove that information from Our servers.

10. Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date at the top of this document.

11. Contact Us

If you have any questions about this Privacy Policy, You can contact us by email:

APIdentity000@gmail.com