Privacy Policy
Effective date: 7 July 2026
This Privacy Policy explains how Magic Moments ("we", "us", "our") collects, uses, stores, and shares personal information when you use the Magic Moments mobile application and related services (the "Service"). Magic Moments is a location-aware social app for meeting people nearby. The Service is for adults only (18+).
1. Data We Collect
- Account & identity: email address, password (stored only as a hash), name, and date of birth (used to verify you are 18+ and for age-based matching), plus your app language.
- Profile & preferences: bio; gender identity; who you are interested in; dating intention; relationship style; lifestyle details (smoking, drinking, activity level, pets); interests; languages; and your preferred age range. You control whether some of these are shown on your profile.
- Photos, video & audio: profile photos, short profile videos, and voice recordings you send as Whispers or in chat, plus a verification selfie if you choose to get verified.
- Location data: your device location, used to show you people and events nearby. See section 8.
- Social & interaction data: your likes/passes, matches, conversations (text, image, video and voice messages), Whisper threads, profiles you viewed and who viewed you, and event participation and check-ins.
- Purchases: records of in-app purchases of "hearts", your heart transaction history, and your subscription/boost status. Payments are handled by Apple or Google — we receive purchase receipts, not your payment-card details.
- Device & technical data: push-notification token, device platform, and app diagnostics / error reports.
- Safety & moderation data: reports you file or that concern you (including any evidence images), blocks, and moderation decisions.
- Logs & security: authentication tokens and security logs; for administrative actions on our systems we log an IP address and user-agent.
2. Special-Category Data
Some information you may add to your profile — in particular who you are interested in (which can reveal your sexual orientation), and lifestyle details — is treated as special-category data. We process it only where you have chosen to provide it, to operate the matching features you request. You can edit or remove this information at any time, and you can hide gender identity, dating intention, and lifestyle from your profile using the visibility toggles in the app.
3. Why We Use Data
- Provide the core features — nearby discovery, Whisper, matching, chat, events, and notifications.
- Authenticate you and keep accounts secure.
- Deliver location-aware experiences and compatibility-based matching.
- Process purchases of hearts and manage subscriptions and boosts.
- Keep the community safe — verification, moderation, and preventing abuse, fraud and harassment.
- Send you service and, where you allow it, marketing or re-engagement notifications.
- Comply with legal obligations and enforce our Terms.
4. Legal Bases (EEA/UK)
- Contract: to provide the Service you sign up for.
- Consent: for precise location, push notifications, marketing messages, and special-category profile data.
- Legitimate interests: security, moderation, fraud prevention and product integrity.
- Legal obligation: regulatory compliance and lawful requests.
5. Sharing of Data & Service Providers
We do not sell your personal data. We share it only as needed to run the Service:
- Hosting & storage: our own server infrastructure, including self-hosted object storage for your media (photos, videos, audio, verification selfies), kept private and served through short-lived links.
- Push notifications: Expo, and/or Apple (APNs) and Google (Firebase Cloud Messaging).
- Email delivery: our email/SMTP provider, for verification and account emails.
- In-app purchases: Apple App Store and Google Play, which process payments and provide purchase receipts.
- Error monitoring: a self-hostable error-tracking service (GlitchTip) to diagnose crashes.
- Other users: only the information appropriate to a feature — for example your profile to people nearby, or your messages within a match.
- Authorities: where required by law or to protect users.
Location and matching run on our own servers using PostGIS — we do not send your location to a third-party mapping service.
6. International Transfers
Your data may be processed in countries outside your own. Where required, we use appropriate safeguards (such as standard contractual clauses) for cross-border transfers.
7. Location Data
- Collection: we collect your device location to find people and events near you and to calculate distances.
- What others see: your exact position is never shown to other users. On the map your location is deliberately blurred by a random offset, and elsewhere only an approximate distance is shown.
- Background use: if you enable it, background location is used only to auto check-in when you arrive at an event. You can turn location off at any time in your device settings; some features will then be unavailable.
8. Data Retention
We keep your personal data while your account is active and as needed to provide the Service. When you delete your account, we delete your account, profile, media, matches, chats, whispers and related personal data. We may retain limited records where the law or legitimate interests require it — for example security, financial (purchase), or moderation records — for the necessary period.
9. Your Rights
Depending on your jurisdiction, you may have rights to:
- Access, correct, delete, or export your data (the app offers a data export).
- Restrict or object to certain processing.
- Withdraw consent where processing relies on consent.
- File a complaint with a supervisory authority.
10. How to Delete Your Data
You can delete your account and data at any time in the app (Profile → Delete account), through our web deletion form, or by emailing privacy@magic-moments.app from your account email address.
11. Children
The Service is intended only for adults (18+). We do not knowingly allow anyone under 18 to create an account, and age is checked at sign-up.
12. Security
We apply technical and organizational safeguards, including encryption in transit, hashed passwords, private media storage accessed only through time-limited links, access controls, and abuse-prevention and moderation systems. No system is 100% secure.
13. App Permissions (Mobile)
- Location (foreground, and optional background): nearby discovery and event auto check-in.
- Camera & photos: profile photos/videos and verification selfies.
- Microphone: voice Whispers and voice messages.
- Notifications: matches, messages, whispers, nearby moments, events and safety updates.
14. Contact
Privacy inquiries: privacy@magic-moments.app
Controller: rockNdevel GmbH, Webgasse 29/24, 1060 Vienna, Austria. See our Legal Notice for full company details.
15. Changes to This Policy
We may update this policy. We will revise the effective date and provide in-app or website notice where required.