Privacy Policy
Effective Date: 7 May 2025. Last Updated: 7 May 2025.
Welcome to JoinOurDay – Wedding Planner & Gallery ("App", "we", "us", "our") operated by JOINOURDAY SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, a company registered in Poland. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.
Our contact details are:
JOINOURDAY SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ
Architektów 3/22
35-082 Rzeszów, Polska
KRS: 0001190359
NIP: 8133938778
REGON: 542528081
Email: privacy@joinourday.app
1. INFORMATION WE COLLECT
We collect information that you provide directly to us when you use our App, and some information automatically.
A. PERSONAL DATA YOU PROVIDE
- Account Information: When you create an account, we collect your authentication details (such as email address, phone number, or social media login information, depending on the sign-up method chosen via Firebase Authentication) and profile information you provide (e.g., name, profile picture).
- User Content: We collect photos, videos, audio messages, and chat messages you create or upload to the App ("User-Generated Media"). This is stored using Firebase Storage. Chat messages are stored in Cloud Firestore.
- Communications: If you contact us directly (e.g., for support or to report content), we may receive additional information about you such as your name, email address, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.
B. INFORMATION COLLECTED AUTOMATICALLY
We do not use any third-party Software Development Kits (SDKs) or analytics services for tracking or advertising purposes beyond the core Firebase services necessary for app functionality. Firebase may collect some usage data and device information as part of its standard operation, which helps us maintain and improve the service.
2. HOW WE USE YOUR INFORMATION
We use the information we collect in the following ways:
- To provide, operate, and maintain our App.
- To create and manage your account (Legal basis: Performance of a contract; CCPA: Service provision).
- To enable you and other event attendees to share and view User-Generated Media within a specific event album (Legal basis: Performance of a contract, Consent for specific media sharing; CCPA: Service provision).
- To allow event organisers to download, share, and use uploaded media for personal purposes, as licensed by you (Legal basis: Performance of a contract, based on your agreement to the Terms & Conditions; CCPA: Service provision).
- To process your requests, such as media removal requests (Legal basis: Legal obligation, Legitimate interest; CCPA: Fulfilling user requests).
- To communicate with you, including responding to your comments, questions, and requests, and providing customer service and support (Legal basis: Performance of a contract, Legitimate interest; CCPA: Service provision).
- To enforce our Terms & Conditions and other usage policies (Legal basis: Legitimate interest, Legal obligation; CCPA: Maintaining service integrity).
- To comply with legal obligations and protect our rights and the rights of others (Legal basis: Legal obligation, Legitimate interest; CCPA: Legal compliance).
3. SHARING YOUR INFORMATION
We do not sell your personal information. We may share your information in the following limited circumstances:
- With Other Users: When you upload User-Generated Media to an event album, you agree that this media will be visible to all other attendees of that specific event. The event organiser will also have a license to use this media as described in our Terms & Conditions.
- Service Providers: We use Firebase (a Google company) for authentication (Firebase Authentication), data storage (Cloud Firestore for profile data and chat messages), and media storage (Firebase Storage). Google acts as a data processor for this information.
- Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect and defend our rights or property, prevent or investigate possible wrongdoing in connection with the App, protect the personal safety of users of the App or the public, or protect against legal liability.
4. INTERNATIONAL DATA TRANSFERS
Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.
If you are located in the European Economic Area (EEA) or the UK, your data will be transferred to the United States where Google's servers are located. We rely on Google's Standard Contractual Clauses (SCCs) as the lawful transfer mechanism for such transfers from the EEA/UK to the US, ensuring an adequate level of data protection.
5. DATA SECURITY
We implement robust security measures designed to protect your information. These include:
- Encryption of data in transit using TLS 1.3.
- Encryption of data at rest using AES-256.
- Role-based access controls to limit access to personal data.
- Regular audit logs.
- Annual penetration testing to identify and address potential vulnerabilities.
However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
6. YOUR DATA PROTECTION RIGHTS
Depending on your location and applicable law, you may have the following rights regarding your personal data:
- Right to Access: You have the right to request copies of your personal data.
- Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
- Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
- Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
- Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
- Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
- Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal data infringes applicable data protection law.
To exercise any of these rights, please contact us at privacy@joinourday.app. We will respond to your request within the timeframes required by applicable law.
7. ACCOUNT DELETION AND DATA RETENTION
You can request the deletion of your account through the App or by contacting us. Upon account deletion, we will initiate a process to erase your associated Cloud Firestore documents (profile data, chat messages) and Firebase Storage objects (User-Generated Media).
A minimal, encrypted log of the deletion event (e.g., user ID, deletion timestamp) may be retained for 30 days for security and audit purposes before being permanently deleted.
We retain other personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.
8. SUMMARY OF DATA PROCESSING ACTIVITIES
| Data Category | Purpose of Processing | Legal Basis (GDPR) | Retention Period |
|---|---|---|---|
| Authentication Data (e.g., email, UID from Firebase Auth) | Account creation, login, app security | Performance of a contract | Duration of account + 30 days deletion log |
| Profile Data (e.g., name, profile picture) | User identification within the app, personalization | Performance of a contract | Duration of account + 30 days deletion log |
| Chat Messages | Communication between event attendees | Performance of a contract | Duration of account + 30 days deletion log |
| User-Generated Media (photos, videos, audio) | Sharing memories within event, organiser use as per T&Cs | Consent, Performance of a contract (based on T&Cs) | Duration of account (or earlier if deleted by user) + 30 days deletion log |
| Support Communications | Addressing user queries, improving service | Legitimate interest, Performance of a contract | As long as needed to resolve query + archive period for legal/audit purposes |
9. MINIMUM AGE
Our App is not intended for individuals under the age of 16 in the European Union/United Kingdom, or under the age of 13 in the United States. We do not knowingly collect personal information from children under these respective ages. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.
10. CHANGES TO THIS PRIVACY POLICY
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide you with notice either by prominently posting a notice of such changes prior to implementing the change or by directly sending you a notification, with at least a 15-day notice period before the changes become effective. You are advised to review this Privacy Policy periodically for any changes.
11. CONTACT US
If you have any questions about this Privacy Policy, please contact us:
JOINOURDAY SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ
Architektów 3/22
35-082 Rzeszów, Polska
Email: privacy@joinourday.app