Privacy Policy

This Privacy Policy explains how DATALAB360 (“we”, “us”, “the Company”) collects, uses, shares, and protects your personal information when you use MyGlob — the mobile app (Android and iOS), the web platform at www.myglob.app, and any related services (together, “the Platform”).

MyGlob is a community for users to find each other, join hubs, attend meetups, take part in challenges, and discover local privileges. To make those features work, we need to handle some personal information — and we want to be transparent about exactly what, why, and how.

By using MyGlob, you confirm you’ve read and understood this Policy. If you don’t agree with how we handle your data, please don’t use the Platform.

DATALAB360 · 5 rue Louis Pergaud, 78500 Sartrouville, France · contact@myglob.app

We only collect what we genuinely need to run MyGlob.

• Name, email address, and password (or Google account info if you sign in with Google)
• Profile details: photo, bio, nationality, languages, current city, interests, profession
• Content you post: messages, photos, event RSVPs, challenge submissions, ratings, reviews
• Communications with us (support requests, feedback)

• Location data — approximate or precise location, only when you grant permission
• Device information — device model, OS version, app version, language, time zone, FCM token
• Camera and photos — only when you actively take or upload a picture; never in the background
• Microphone — only during in-app voice or video calls you start
• Usage data — pages visited, features used, crash reports, performance metrics

We use the data we collect for these purposes, and these only:

• Create and manage your account and log you in
• Match you with hubs, events, members, and challenges relevant to your location and interests
• Deliver messages, notifications, and call invitations between members
• Moderate the community — detect spam, abuse, scams, and enforce our Terms
• Send service-related emails (password resets, security alerts, important changes)
• Send optional product updates and event recommendations (unsubscribe any time)
• Improve the Platform — analyse usage, fix bugs, design new features
• Comply with legal obligations and respond to lawful requests

We do not sell your personal data to anyone. Ever.

If you’re in the EEA, UK, or Switzerland, our legal bases for processing your data are:

• Contract — to deliver the Platform you signed up for
• Consent — for location, camera, microphone, push notifications, and marketing (withdraw any time)
• Legitimate interests — to keep the community safe, prevent fraud, and improve our services
• Legal obligation — to comply with tax, accounting, and law-enforcement requirements

Your data is shared in these limited ways:

Your profile (name, photo, city, bio, interests) is visible to other members. Posts, comments, and RSVPs are visible inside the relevant hub or event.

• Google Firebase — authentication, database, storage, push, crash reporting
• Agora.io — in-app voice/video calls (streamed peer-to-peer, not stored unless you record)
• Hosting & infrastructure (Vercel, OVH, AWS or equivalents)
• Email delivery and analytics tools

All providers are bound by data-processing agreements. For legal reasons we may share specific data on valid legal request. In a merger or acquisition, your data may transfer to the new entity, bound to honour this Policy.

Some providers (e.g., Google Firebase) store data outside the EEA, including in the United States. When data is transferred outside the EEA, we rely on safeguards such as the European Commission’s Standard Contractual Clauses to ensure an equivalent level of protection.

• Account data: while active, and up to 30 days after deletion
• Content you posted: until you delete it or close your account; backups up to 90 days
• Server and security logs: typically 12 months
• Accounting records: up to 10 years (legal requirement in France)

You have the following rights over your personal data:

• Access — request a copy of the data we hold
• Correction — fix inaccurate information
• Deletion — “right to be forgotten”
• Portability — receive your data in a machine-readable format
• Restriction or objection — limit or object to processing
• Withdraw consent — for consent-based processing
• Lodge a complaint — with the CNIL or your local authority

To exercise any of these rights, email contact@myglob.app. We’ll respond within 30 days. You can also delete your account from Settings → Account → Delete account.

MyGlob is not intended for users under 18. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, contact contact@myglob.app and we will remove it promptly.

We use industry-standard measures including encryption in transit (HTTPS/TLS), encrypted database storage, access controls, and regular security reviews. No system is ever 100% secure — if a breach affecting your data happens, we’ll notify you and the authorities as required (within 72 hours under GDPR).

On the web we use a small number of strictly necessary cookies to keep you logged in and remember preferences, plus privacy-respecting (anonymised) analytics. The mobile app uses Firebase Crashlytics and Performance Monitoring on an anonymised basis. You can disable analytics in settings.

We may update this Policy — e.g., when we add features or laws change. For material changes we’ll notify you in the app or by email at least 14 days before they take effect. The “Last updated” date always shows the current version.

Questions, requests, or complaints about your privacy?

DATALAB360 · 5 rue Louis Pergaud, 78500 Sartrouville, France · contact@myglob.app · www.myglob.app

EU data protection authority: www.cnil.fr