© 2025 Uplift | Made with love by women for women
Your privacy matters
Our commitment is to protect your data. We follow European data privacy standards. We collect, use, store, and share data transparently. You have control over your personal information. Learn about our practices and how we keep your data secure. We are dedicated to your privacy.
  • Last updated: [14.10.2025]
  • Controller & contact
    • Controller: Uplift, Lange Zeile 88a, Erlangen, Germany
    • Contact email: upliftappwomen@gmail.com
  • What data we collect
    A. Waitlist (landing page)
    • Identification & contact: name, email, city.
    • Metadata: time of signup, referral information.
    • Optional: host/volunteer flag.
    B. App (once you join)
    • Account data: name, city/region, languages, profile bio, interests/activities, comfort preferences (e.g., daytime meets), availability.
    • Event/circle data: RSVPs, attendance, small-group memberships, meet-up details (place name, date/time).
    • Communications: message requests and chats (text only at MVP; links/photos disabled until approved).
    • Safety: reports/blocks you submit or receive, abuse indicators.
    • Technical: device/browser, IP (security logs), coarse location or city (not precise GPS, unless you grant it later).
    • Analytics (minimal, privacy-respecting; details in Cookies/Analytics below).
  • Purposes & legal bases
    We process your data only when a lawful basis under GDPR Art. 6(1) applies. GDPR+1

    Purpose

    Examples

    Legal basis

    Waitlist & launch notifications

    Confirm your signup; email when your city opens

    Consent (Art. 6(1)(a))

    Create & run your account

    Profile, settings, language

    Contract (Art. 6(1)(b))

    Events & circles

    Show nearby micro-events; RSVP; capacity checks

    Contract (Art. 6(1)(b))

    Safety & moderation

    Message requests; report/block; abuse prevention

    Legitimate interests with balancing test (Art. 6(1)(f))

    Product analytics (strictly necessary / aggregated)

    Count RSVPs, improve UX, debug

    Legitimate interests (Art. 6(1)(f))

    Marketing emails beyond waitlist

    Tips, city news (optional)

    Consent (Art. 6(1)(a))

    Legal & compliance

    Security logs, fraud, regulatory requests

    Legal obligation (Art. 6(1)(c)) and/or legitimate interests (f)

    Vital interests (rare)

    Serious safety incidents

    Vital interests (Art. 6(1)(d))

    You can withdraw consent at any time without affecting prior processing. (Art. 13(2)(c)). GDPR
  • Where we get data from
    • Directly from you: forms, profile, RSVPs, messages.
    • Automatically: limited device/usage data for security and reliability.
    • From others: reports/blocks submitted by other users (safety).
    (Controllers must explain sources under Arts. 13–14 GDPR.) GDPR.
  • Recipients (who we share data with)
    We use vetted processors under GDPR Art. 28 with data processing agreements:
    • Hosting & database (e.g., cloud IaaS/PaaS or BaaS such as Supabase).
    • Email delivery (transactional/marketing), form tools (for waitlist).
    • Analytics & error monitoring (privacy-preserving, no third-party ads).
    Trust & safety tools (only if/when implemented).
    We do not sell personal data.
  • International transfers
    If data leaves the EEA/UK (e.g., to a provider in the US), we use EU Standard Contractual Clauses (SCCs) and assess risk with supplementary measures, or choose EEA hosting where possible.
  • Retention (how long we keep data)
    • Waitlist: until launch decision in your city or 24 months after signup (whichever comes first), unless you unsubscribe earlier.
    • Account & profile: while your account is active.
    • Events/RSVPs: typically 24 months for product analytics and abuse prevention.
    • Reports/blocks & security logs: up to 36 months to detect repeat abuse.
    • Marketing consent: until withdrawn.
    • We may keep minimal records if legally necessary (e.g., to evidence consent or handle disputes).
    (You must state periods or criteria—Art. 13(2)(a)). GDPR
  • Your rights
    Under GDPR Chapter III you have the right to: access, rectification, erasure, restriction, portability, and objection; plus the right to withdraw consent where processing is based on consent. (Arts. 15–21). GDPR+1
    How to exercise: email (upliftappwomen@gmail.com). We’ll respond within one month (extendable in complex cases). You also have the right to lodge a complaint with your local supervisory authority (e.g., in Germany: the state authority responsible for your residence). (Art. 13(2)(d)). GDPR
  • Automated decision-making
    We do not use automated decision-making or profiling with legal or similarly significant effects (Art. 22). If this changes, we will inform you with meaningful information about the logic and consequences. (Art. 13(2)(f)). GDPR
  • Cookies & analytics
    • Essential cookies/storage: to keep you logged in, prevent fraud, and deliver core features.
    • Non-essential analytics/marketing: used only with consent (banner). We aim to use privacy-preserving analytics (IP truncation, aggregated reports, short retention).
    • You can change your preferences anytime via [Cookie settings].
  • Security
    We use industry measures such as encryption in transit, access controls, least-privilege, regular patching, and incident response. No method is 100% secure, but we work to protect your data and will notify authorities and you where required.
  • Children
    Uplift is 18+. We don’t knowingly process children’s data.
  • Social features & safety
    • Message requests by default; images/links are gated until approved.
    • Public-place default for meet-ups; report/block tools for safety.
    • We may restrict or remove accounts for repeated policy violations (legitimate interests, safety).
  • Third-party links & communities
    Our pages may link to third-party sites (e.g., cafés, map listings). Their privacy practices are their own—please review their policies.
  • Changes to this policy
    We’ll post updates here and adjust the “Last updated” date. If changes are material, we’ll notify you via email or in-app.
  • How to contact us
    For privacy questions or to exercise your rights, email upliftappwomen@gmail.com.
We are fully committed to ensuring your privacy and protecting the security of your data in every possible way.
Berlin, Central Office, Example Street 10
Phone: +49 30 1234567
Email: privacy@example.com
For any data privacy inquiries, please contact us.
Made on
Tilda