Privacy Policy
Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.
1. Data Controller Information
Controller responsible for data processing:
The Uni-Chat GmbH
28203, Bremen
Germany
Email: [email protected]
2. Introduction
This privacy policy explains how UniChat ("we," "us," or "our") collects, uses, and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and German data protection laws. This policy applies to all users of our mobile application.
3. Legal Basis for Processing
We process your personal data based on:
- Your consent (Art. 6(1)(a) GDPR)
- Performance of contract (Art. 6(1)(b) GDPR)
- Compliance with legal obligations (Art. 6(1)(c) GDPR)
- Legitimate interests (Art. 6(1)(f) GDPR)
4. Information We Collect and Process
4.1 Account Information
- University email address
- Profile information (optional)
- University affiliation
- Account creation date
- Last login information
4.2 Technical Data
- Device information (platform, type)
- Push notification tokens
- IP address
- App version
- Operating system version
- Device identifiers
4.3 Usage Data
- Chat participation and messages
- Event participation
- Ticket purchases and usage
- Login times and activity timestamps
- User preferences and settings
4.4 User-Generated Content
- Chat messages
- Event-related content
- Profile information
- Uploaded images (for events and profiles)
5. How We Use Your Information
5.1 Essential Services
- User authentication and account management
- Providing chat functionality
- Event management and ticketing
- Push notifications for important updates
- Technical support
5.2 Service Improvement
- Analytics and performance monitoring
- Bug fixing and app optimization
- Service personalization
- Feature development
5.3 Security
- Fraud prevention
- Account security
- Platform integrity maintenance
- Legal compliance
6. Data Sharing and Recipients
6.1 Service Providers
We share data with:
- Firebase (hosting and database services)
- Push notification services
- Analytics providers
All service providers are bound by data processing agreements compliant with Art. 28 GDPR.
6.2 Other Users
- Basic profile information visible to other university users
- Chat messages visible to chat participants
- Event participation visible to event organizers
6.3 Legal Requirements
We may share data if required by:
- Court orders
- Legal obligations
- Government requests
- Protection of legal rights
7. Data Storage and Security
7.1 Storage Duration
- Account data: Maintained while account is active
- Chat messages: Stored until account deletion
- Technical logs: 90 days
- Legal compliance data: As required by law
7.2 Security Measures
- Your conversations remain private
- Secure data transmission (SSL/TLS)
- Regular security audits
- Access controls and authentication
- Regular backup procedures
8. Your Rights Under GDPR
You have the right to:
- Access your personal data
- Rectify inaccurate data
- Request data erasure
- Restrict processing
- Data portability
- Object to processing
- Withdraw consent
- Lodge a complaint with a supervisory authority
To exercise these rights, contact us at: [email protected]
Questions About Privacy?
If you have any questions about this privacy policy or our data practices, please contact our Data Protection Officer.
[email protected]