Privacy Policy of Foundermatcha

Privacy Commitment (TL;DR)

At Foundermatcha, we care deeply about your privacy. Any personal details you provide, such as your email address, phone number, CV, or LinkedIn profile, will be used solely for validation and matchmaking purposes. We never sell or share this information with third parties. Your data is handled securely, stored only as long as necessary, and used exclusively to improve your experience on the platform. In short: your personal information stays private, safe, and under your control.

Owner and Data Controller

If you have questions or concerns about this Privacy Policy, please contact us at:

Types of Data collected

Among the types of Personal Data that this Application collects, either directly or through third parties, there are: Usage Data; first name; last name; email address; username; city; device information; session statistics; browser information; and payment information.

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanation texts displayed prior to the Data collection. Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application. Unless specified otherwise, all Data requested by this Application is mandatory, and failure to provide this Data may make it impossible for this Application to provide its services. In cases where this Application specifically states that some Data is not mandatory, Users are free not to communicate this Data without consequences to the availability or the functioning of the Service. Users who are uncertain about which Personal Data is mandatory are welcome to contact the Owner. Any use of Cookies — or of other tracking tools — by this Application or by the owners of third-party services used by this Application serves the purpose of providing the Service required by the User, in addition to any other purposes described in the present document and in the Cookie Policy. Users are responsible for any third-party Personal Data obtained, published or shared through this Application.

Mode and place of processing the Data

Methods of processing

The Owner takes appropriate security measures to prevent unauthorised access, disclosure, modification, or unauthorised destruction of the Data. Data processing is carried out using computers and/or IT-enabled tools, following organisational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Owner at any time.

Place

The Data is processed at the Owner's operating offices and in any other places where the parties involved in the processing are located.

Retention time

Personal Data shall be processed and stored for as long as required by the purpose for which they have been collected.

The purposes of processing

The Data concerning the User is collected to allow the Owner to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its Users or third parties), detect any malicious or fraudulent activity, as well as the following: Analytics, Hosting and backend infrastructure, Registration and authentication, and Handling payments.

Detailed information on the processing of Personal Data

Analytics

The services contained in this section enable the Owner to monitor and analyse web traffic and can be used to keep track of User behaviour.

Google Analytics (Universal Analytics) (Google LLC)
Google Analytics is a web analysis service provided by Google LLC. Google utilises the Data collected to track and examine usage, to prepare reports on its activities, and share them with other Google services. Google may use the Data collected to contextualise and personalise the ads of its own advertising network.
Personal Data processed: Tracker; Usage Data.

Handling payments

Payments for subscriptions or in-app purchases are handled through RevenueCat. This payment service integrates with the app stores (Apple App Store and Google Play Store) to securely process transactions. Foundermatcha itself does not store or process raw credit card or banking information; all such information is handled directly by the app stores and RevenueCat.

Hosting and backend infrastructure

Firebase Cloud Firestore (Google LLC) — Personal Data processed: Usage Data; various types of Data as specified in the privacy policy of the service. Place of processing: United States.

Firebase Cloud Functions (Google LLC) — Personal Data processed: Usage Data; various types of Data as specified in the privacy policy of the service. Place of processing: United States.

Firebase Hosting (Google LLC) — Personal Data processed: various types of Data as specified in the privacy policy of the service. Place of processing: United States.

Registration and authentication

Firebase Authentication (Google LLC) — Personal Data processed: email address; first name; last name; username. Place of processing: United Kingdom.

Cookie Policy

This Website does not use Trackers. For future reference, this policy includes it.

Further Information for Users in the European Union

This section applies to all Users in the European Union, in accordance with the General Data Protection Regulation (the “GDPR”), and supersedes any other potentially divergent or conflicting information contained in the privacy policy for such users.

Legal basis of processing

The Owner may process Personal Data relating to Users if one of the following applies: Users have given their consent for one or more specific purposes; provision of Data is necessary for the performance of an agreement with the User; processing is necessary for compliance with a legal obligation; processing is related to a task carried out in the public interest; or processing is necessary for legitimate interests pursued by the Owner or a third party.

Further information about retention time

Personal Data collected for purposes related to the performance of a contract shall be retained until such contract has been entirely performed. Personal Data collected for the Owner's legitimate interests shall be retained as long as needed to fulfil such purposes. The Owner may be allowed to retain Personal Data for an extended period whenever the User has given consent, as long as such consent is not withdrawn. Once the retention period expires, Personal Data shall be deleted.

The rights of Users based on the GDPR

Users may exercise certain rights regarding their Data processed by the Owner, including the right to: withdraw consent at any time; object to the processing of their Data; access their Data; verify and seek rectification; restrict processing; have their Personal Data deleted; receive their Data in a portable format; and lodge a complaint with a data protection authority.

How to exercise these rights

Any requests to exercise User rights can be directed to the Owner through the contact details provided in this document. Such requests are free of charge and will be answered as early as possible and always within one month.

Additional information

The User's Personal Data may be used for legal purposes by the Owner in Court or in the stages leading to possible legal action. The Owner reserves the right to modify this Privacy Policy at any time by notifying its Users on this page. It is strongly recommended to check this page often.

Definitions and legal references

• Personal Data (or Data) — Any information that directly, indirectly, or in connection with other information allows for the identification of a natural person.
• Usage Data — Information collected automatically through this Application, which can include IP addresses, URI addresses, time of request, browser features, and other parameters about the device.
• User — The individual using this Application, who, unless otherwise specified, coincides with the Data Subject.
• Data Controller (or Owner) — The natural or legal person which determines the purposes and means of the processing of Personal Data.
• Data Processor — The natural or legal person which processes Personal Data on behalf of the Controller.
• This Application — The means by which the Personal Data of the User is collected and processed.
• Service — The service provided by this Application as described in the relevant terms.
• European Union (or EU) — All current member states of the European Union and the European Economic Area.