Integritetspolicy
1. Data controller
Freja Vinge is the data controller for the processing of your personal data within the Loy app. Contact: support@loynightlife.com
2. Data we collect
Account data: name, email address, hashed password, gender, who you are interested in, date of birth (for age verification).
Profile content: photos, biography, activity status, age and gender preferences.
Location data: GPS coordinates while the app is open (to find venues and verify check-in within 50 m). Exact coordinates never leave the app to other users.
Usage data: swipes, matches, messages, reports, blocks, check-ins, and check-outs.
Technical data: device type, operating system, app version, IP address, crash logs.
3. Purposes and legal basis
Providing the service (contract – GDPR art. 6.1.b): account, matching, chat, check-in.
Safety and moderation (legitimate interest – art. 6.1.f): reports, bans, age verification.
Improving the app (legitimate interest): anonymized analysis of flows and troubleshooting.
Push notifications and email (contract/consent): new matches, messages, password reset.
4. How long we keep the data
Active accounts: as long as your account is active. Deleted account: all personal data, photos, messages, swipes, and matches are permanently deleted within 30 days. Security logs (IP, login history): up to 90 days. Reports of violations: up to 12 months to prevent recidivism.
5. Who we share data with
Other users: your name, age (not date of birth), photos, biography, activity status, and venue name (only when both are checked in) – never exact coordinates.
Sub-processors (data processors):
Google Places API – to list venues and display map data
SendGrid (Twilio) – email delivery (password reset)
Google AdMob – sponsored advertising (anonymized data)
MongoDB Atlas – database storage within the EU
We never sell your personal data to third parties.
6. Where data is stored
Your personal data is primarily stored on servers within the EU/EEA. Certain sub-processors (such as Google) may transfer data to countries outside the EU/EEA using the EU Commission's standard contractual clauses.
7. Your rights under GDPR
As a data subject, you have the right to:
Access your data (register extract)
Request correction of inaccurate data
Request erasure ("right to be forgotten")
Restrict or object to processing
Request data portability (extract in a machine-readable format)
Withdraw consent at any time
Requests are sent to support@loynightlife.com. You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (IMY, imy.se).
8. Security
We use industry-standard security: HTTPS/TLS encryption for all data transfer, hashed passwords (bcrypt), access control, encrypted database storage, and regular security reviews. No system is 100% secure – contact us immediately if you suspect a breach of your account.
9. Cookies and tracking
Loy is a mobile app and does not use traditional web cookies. However, we use local token storage (SecureStore/AsyncStorage) to keep you signed in. Push notifications require your device's unique token, which is stored only as long as you are signed in.
10. Children
Loy is not intended for individuals under 18. We do not knowingly collect data about minors. If we discover that a user is under 18, the account will be deleted immediately.
11. Changes to this policy
We may update this policy. Material changes will be communicated through the app or via email at least 14 days before they take effect.
12. Contact
Freja Vinge Email for data protection matters: support@loynightlife.com Supervisory authority: Swedish Authority for Privacy Protection (IMY) Website: imy.se