UNSEEN Privacy Policy

Last updated: February 20, 2026

Welcome to UNSEEN (the "App" or "we"). We take your privacy seriously. This Privacy Policy explains how we collect, use, store, share, and protect your personal information, and what rights you have. Please read this policy carefully before using the App.

1. Scope and Data Controller

This policy applies to the UNSEEN mobile application and related services. By using the App, you agree to the terms of this policy. If you do not agree, please do not use the App.

Data controller: The controller of your personal information under this policy is the operator of the UNSEEN service (an individual developer). Contact details are set out in Section 13 "Contact Us". When you exercise your rights or lodge a complaint under this policy, the counterparty is that operator.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email, password, username, display name, avatar, cover image, bio, gender, location, and similar data provided during registration
• Third-Party Login Information: When signing in with Apple, Google, or Facebook, we may receive email, name, avatar, and similar data you authorize (Apple Sign In allows hiding your email)
• User-Generated Content: Events, spots, works, collections, comments, direct messages, bookmarks, likes, follow relationships, and similar content you publish
• Event Registration Information: Contact details and registration information you provide when participating in events

2.2 Information We Collect Automatically

• Device Information: Device model, operating system version, app version, for compatibility and troubleshooting
• Location Information: With your permission, for nearby events, map positioning, weather service, and localized recommendations (supports "While Using" or "Always" permission)
• Usage Data: Browsing history, search history (stored locally on device), interaction behavior (likes, comments, bookmarks, etc.)

2.3 Media and Storage

• Camera and Photo Library: With your permission, for capturing, selecting, and uploading event photos and videos
• Uploaded Content: Images and videos are compressed before uploading to our cloud storage

3. How We Use Your Information and Legal Basis

We use the information we collect for the purposes below. We also set out the legal basis (contract, consent, legal obligation, legitimate interest) for each so you know why we process your data:

• Provide, maintain, and improve our services — performance of our contract with you; improvement based on our legitimate interests (or your consent where required)
• Create and manage your account — performance of our contract with you
• Show nearby events, personalized recommendations, and localized content — your consent (e.g. location permission); recommendations may be based on legitimate interests, and you can limit or turn off related features in settings
• Process subscriptions, purchases, and membership benefits — performance of our contract with you
• Send important notices (e.g., account security, service changes) and interaction notifications you opt in to (likes, comments, follows, etc.) — contract performance and your consent for marketing/interaction notifications
• Handle reports and maintain community order — legitimate interests and legal obligation
• Comply with laws and respond to lawful requests from government or judicial authorities — legal obligation

4. Sharing and Disclosure

We do not sell your personal information. We may share or disclose it only in the following circumstances:

• With your explicit consent
• Service providers: Cloud storage, authentication, database, weather API, etc., subject to confidentiality obligations
• Legal requirements: To fulfill legal obligations or respond to lawful requests from government or judicial authorities
• Protecting rights: To protect the legal rights, safety, or property of us, our users, or the public

5. Third-Party Services

The App uses the following third-party services, each subject to its own privacy policy:

• Supabase: Backend database, authentication, cloud storage, real-time communication
• Apple Sign In: Apple account sign-in
• Google Sign In: Google account sign-in
• Facebook: Facebook account sign-in (if enabled)
• Weather API: Weather data (requires location coordinates)
• Apple App Store / StoreKit: In-app purchases and subscriptions

We recommend reviewing the privacy policies of these services to understand their data practices.

6. Location Information

Location information is used for nearby events, maps, weather, and localized recommendations. You can revoke location permission at any time in system settings. Revoking permission may limit features such as nearby recommendations and weather.

7. Data Security and Breach Notification

We implement industry-standard measures to protect your data, including:

• Encryption in transit (HTTPS/TLS)
• Access control and permission management
• Secure storage and backup

While we strive to protect your data, we cannot guarantee absolute security. Please keep your account password secure and do not share it with others.

If a security incident (e.g. data breach) occurs that is likely to affect your rights, we will notify you and/or the relevant supervisory authority as required by applicable law and take reasonable steps to mitigate harm.

8. Data Retention

• While your account is active, we retain data necessary to provide our services.
• After account deletion, we will delete or anonymize your personal data within 30 days in principle, except where retention is required by law (e.g. compliance, dispute resolution).
• Local data such as search history can be cleared in the app or removed when the app is uninstalled.

9. Your Rights

Under applicable law, you have the following rights:

• Access: View your account and profile in the app's Settings
• Correction: Edit your profile and preferences in the app
• Deletion: Request account deletion in the app; we will delete your personal data within the period set out in Section 8
• Export: Contact us to request a copy of your data
• Withdraw consent: Revoke location, camera, photo library permissions, or sign out
• Complaint: Lodge a complaint with your local data protection authority

Response time: We will respond to your rights request within 15 business days in principle; we may extend to 30 days for complex requests and will inform you. EU/UK users: we will respond without undue delay and in any event within one month (GDPR Art. 12).

EU/UK users: You also have rights to object to processing, restrict processing, data portability, and others.

California users: You have rights to know, access, delete, and non-discrimination (CCPA).

10. Children

The App is not intended for users under 14 years of age (or the higher age in your jurisdiction, e.g. 16 in some EU countries). If we discover that we have collected personal information from a child, we will delete it promptly.

11. International Transfers

Your data may be transferred to and stored on servers outside your country or region. We use standard contractual clauses (SCCs), adequacy decisions, or other appropriate safeguards permitted by law to ensure such transfers comply with applicable law (e.g. China's personal information export rules, EU GDPR). You may contact us for a summary or copy of the relevant safeguards where the law allows.

12. Policy Updates

We may update this policy from time to time. Material changes will be communicated at least 30 days in advance via in-app notice or the updated policy page. If a change materially expands our processing purposes or the scope of collection, we will give prominent notice and may ask for your renewed consent; if you do not agree, you may stop using the App and delete your account. Continued use constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions, to exercise your rights, or to lodge a complaint, please contact the data controller via in-app feedback or:

Data controller (operator): Individual developer

Contact address: No fixed place of business; legal notices or rights requests sent to the email below are deemed served.

Email: hellcat506@icloud.com

We will respond within the timeframes set out in Section 9.