Privacy Policy

Privacy Policy

Last Updated: August 12, 2025

Welcome to Rallyze. Your privacy is important to us. This Privacy Policy explains how we collect, use, and protect your personal data when you use our iOS mobile application („App“) and website („Website“).By using our services, you agree to the collection and use of your information in accordance with this Privacy Policy and applicable privacy laws, including the General Data Protection Regulation (GDPR).

1. Data Controller

The responsible entity for processing your personal data is:RallyzeEmail: support@rallyze.comCountry: AustriaFor any questions about this Privacy Policy or your personal data, please contact us via email.

2. Information We Collect

We collect the following personal information when you use our services:

  • First Name
  • Last Name
  • Email Address
  • Date of Birth

Additionally, we collect data related to your participation in challenges within the App, stored in our database using the following identifiers:

  • UserId – A unique identifier for you as a user
  • ChallengeId – A unique identifier for each challenge
  • UserChallengeId – A unique identifier linking you to specific challenges

This allows us to track which challenges you are participating in and manage your challenge entries.

iOS App Permissions

Our iOS app may request access to:

  • Camera: To take profile pictures
  • Photo Library: To select and save profile pictures

These permissions are optional and can be revoked in your iOS Settings at any time. The app will function normally without these permissions, though profile picture features will be limited.If you voluntarily enable Firebase Analytics, we may also collect anonymized usage data, including:

  • Device information (e.g., operating system, model)
  • Session duration and interactions within the App
  • General usage patterns to help improve our services

We do not collect cookies, tracking data, or any information that is not explicitly provided by you. However, you have the option to enable Firebase Analytics for usage analytics, as described in Section 4.

3. Minimum Age Requirement

You must be at least 16 years old to use our services. We do not knowingly collect data from individuals under 16. If we become aware that we have collected personal information from someone under 16, we will delete it immediately.

4. Legal Basis & How We Use Your Information

We process your personal data based on the following legal bases under GDPR:

  • Art. 6 (1) lit. b GDPR – Contract fulfillment (e.g., account management and challenge participation)
  • Art. 6 (1) lit. f GDPR – Legitimate interest (e.g., service security and fraud prevention)
  • Art. 6 (1) lit. a GDPR – Consent (e.g., Firebase Analytics, if voluntarily enabled)

We use your personal information for the following purposes:

  • Account Management – To create and manage your user account
  • Challenge Participation – To manage your participation in challenges, including storing UserChallengeId, ChallengeId, and UserId for each challenge you join
  • Communication – To send important updates, notifications, and information related to the services
  • Personalization – To tailor the content and features to your preferences
  • Security – To enhance the security of the services and protect against unauthorized access
  • iOS App Functionality – To enable core app features like profile picture management
  • Firebase Analytics and Firebase Crashlytics – If you enable these services, we collect anonymized usage data and crash reports to improve performance and user experience

Please note that Firebase Analytics and Firebase Crashlytics are controlled together: if you choose to enable one, the other will be enabled as well. Likewise, both services can only be disabled together.

5. Data Storage & Security

All personal data is stored on Google Firebase servers, which may be located outside the EU. We implement industry-standard security measures to protect your data, including:

  • End-to-end encryption of Firebase databases
  • Access restrictions to prevent unauthorized access
  • Regular security audits to improve data protection

Despite these measures, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

Data Retention

We store your personal data only as long as necessary to provide our services. After you delete your account:

  • Your personal data will be deleted within 30 days, unless legal obligations require longer retention
  • Challenge-related data (e.g., ChallengeId) may be anonymized for statistical purposes

6. Data Sharing & Disclosure

We do not sell, trade, or transfer your personal data to third parties without your consent, except in the following cases:

Legal Requirements

We may disclose personal data if required by law, court order, or governmental regulations.

Service Providers

We share data with trusted third-party providers who assist in operating the App (e.g., Firebase). These providers are contractually obligated to protect your data.

Firebase Analytics & Firebase Crashlytics

If you activate Firebase Analytics and Firebase Crashlytics, anonymized usage data, session data, crash reports, and performance metrics will be processed by Firebase according to their privacy policies.

More information:

7. Your Rights Under GDPR

If you are located in the EU/EEA, you have the following rights:

  • Right to Access – Request a copy of your personal data
  • Right to Rectification – Correct inaccurate or incomplete data
  • Right to Deletion – Request deletion of your personal data
  • Right to Restrict Processing – Limit how we use your data
  • Right to Data Portability – Obtain your data in a structured format
  • Right to Object – Object to certain types of data processing
  • Right to Withdraw Consent – Revoke consent at any time (e.g., disabling Firebase Analytics or Firebase Crashlytics)

To exercise these rights, contact us at: support@rallyze.com

8. How to Delete Your Data

You can delete your account directly in the App or by sending an email to:support@rallyze.comYour data will be permanently deleted within 30 days, unless legal obligations require longer storage.

9. International Data Transfers

Your data is stored on Google Firebase servers, which may be located outside the EU (e.g., in the USA).We ensure GDPR compliance through:

  • Standard Contractual Clauses (SCCs) as required by the EU
  • Compliance with the EU-U.S. Data Privacy Framework (if applicable)

These measures ensure that your data remains protected under GDPR standards.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. All changes will be posted on this page, and the „Last Updated“ date will be revised accordingly.We encourage you to review this Privacy Policy regularly for updates.

11. Contact Us

For any questions or requests regarding your personal data, please contact us at:support@rallyze.com

© 2026 Rallyze. Created with ❤ using WordPress and Kubio