Privacy Policy

This English version is a translation for convenience only. The legally binding version is the German version. In case of differences or misunderstandings, the German version applies.

1. Controller

The controller responsible for data processing in the app 67 is:

Finn Christensen
Sudetendeutsche Straße 2
90480 Nuremberg
Germany

Email: kontakt@limastudios.de
Legal Notice: https://limastudios.de/projects/67/en/impressum.html

2. General Information on Data Processing

We process personal data only to the extent necessary for operating the app, ensuring security, providing app features, improving the app, or where users have given their consent.

Personal data means any information that can directly or indirectly identify a person, such as an email address, username, profile picture, uploaded content, technical device information or push token.

3. Data We Process

When using 67, the following data may be processed in particular:

• email address and user ID,
• display name, profile picture, country and time zone,
• uploaded images and other app content,
• comments, likes, friendships, follows and reports,
• friend codes and app settings,
• push tokens for notifications,
• technical data such as device information, operating system, app version and error messages,
• IP address and server log data, where technically generated.

4. Purposes of Processing

The data is processed in order to:

• provide user accounts and enable logins,
• display images, profiles, comments, likes and feeds,
• provide friendships, follows and social features,
• send push notifications,
• review reported content and moderate the app,
• detect and prevent misuse, spam and security issues,
• technically provide, maintain and improve the app,
• comply with legal obligations.

5. Legal Bases

Depending on the feature, personal data is processed on the following legal bases:

• Art. 6(1)(b) GDPR – for providing the app and its user features.
• Art. 6(1)(f) GDPR – for security, troubleshooting, misuse prevention and improving the app.
• Art. 6(1)(a) GDPR – where consent is required, for example for certain push notifications or advertising.
• Art. 6(1)(c) GDPR – where legal obligations must be fulfilled.

6. Disclosure of Data to Third Parties and Service Providers

We use technical service providers to provide the app. Personal data may be transferred to and processed by these service providers. Data is only disclosed to the extent necessary for operating the app, individual features, security, storage, notifications or advertising.

Possible recipients of personal data include in particular:

• Supabase – for authentication, database, storage of profiles, images, comments, likes, friendships and other app data.
• Expo – for app infrastructure and push notifications, where push features are used.
• Google Firebase Cloud Messaging – for push notifications on Android devices.
• Apple Push Notification Service – for push notifications on iOS devices, if the app is offered for iOS.
• Google AdMob – for advertising, if advertising is activated in the app.

These service providers may also process data outside the European Union or the European Economic Area. Where this happens, processing is based on appropriate data protection mechanisms, such as standard contractual clauses or comparable safeguards.

7. Supabase

Supabase may be used for authentication, database and content storage. In particular, email addresses, user IDs, profile data, images, comments, likes, friendships, reports and other app content may be processed on Supabase servers.

Supabase is used so that users can log in, upload content, use profiles and access social app features.

8. Push Notifications

If users allow push notifications, a push token may be stored. This token is required to send notifications to the respective device.

Push notifications may be used, for example, for likes, comments, friend requests, reminders, awards or other app events.

Services such as Expo, Firebase Cloud Messaging and Apple Push Notification Service may be used for push notifications. Push notifications can be disabled in the device settings.

9. Advertising and Google AdMob

The app may contain advertising in the future, for example through Google AdMob. Technical information such as device information, advertising ID, IP address, app information and usage data may be processed.

Advertising may be personalized or non-personalized. Certain types of advertising may require consent. If consent is required, it will be requested before the corresponding processing takes place.

If advertising is currently disabled, no active ad delivery takes place through this function. However, the app may contain advertising again in the future.

10. Content, Profiles and Visibility

Content that users publish in the app may be visible to other users depending on the feature. This includes, for example, profile information, images, comments, likes or other interactions.

Users should not publish content that they do not want to make public or visible to other users.

11. Reports and Moderation

If content is reported, we store and process the information required for this, such as the reported content, the reporting user, the affected user, the reason for the report and the processing status.

This data is used to review violations of rules, third-party rights or legal requirements and to take appropriate measures.

12. Storage Period

Personal data is stored only for as long as necessary for providing the app, the respective features, security or legal obligations.

If an account is deleted, personal data will be deleted or anonymized unless legal retention obligations or legitimate reasons for further storage apply.

Content published by users may be removed after account deletion. Technically necessary backups may continue to exist for a limited period of time.

13. Security

We take appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, alteration or disclosure.

Despite all measures, complete security during data transmission or data storage cannot be guaranteed.

14. User Rights

Users have the following rights within the scope of statutory requirements:

• right of access to stored personal data,
• right to rectification of inaccurate data,
• right to erasure of personal data,
• right to restriction of processing,
• right to data portability,
• right to object to certain processing activities,
• right to withdraw consent with effect for the future.

To exercise these rights, users can contact us at the following email address: kontakt@limastudios.de

15. Right to Lodge a Complaint with a Supervisory Authority

Users have the right to lodge a complaint with a data protection supervisory authority if they believe that the processing of personal data violates data protection law.

The competent authority may in particular be the data protection supervisory authority of the user’s place of residence or of the controller’s registered location.

16. Minors

The app is not directed at children. The app may only be used by persons aged 16 or older.

If we determine that a user does not meet the age requirement, we may restrict or delete the account.

17. Changes to this Privacy Policy

We may amend this Privacy Policy if the app, services used, technical processes or legal requirements change.

The current version is available on this page.

18. Contact

If you have questions about data protection or wish to exercise your rights, you can contact us:

Finn Christensen
Email: kontakt@limastudios.de

Last updated: June 17, 2026