Our Commitment to GDPR
LifeDates is committed to protecting the privacy and security of our users' personal data. We comply with the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA), United Kingdom, and Switzerland.
Data Controller
LifeDates acts as the Data Controller for personal data collected through our application. We determine the purposes and means of processing your personal data.
Contact: xerxiastudios@gmail.com
Legal Basis for Processing
We process your personal data under the following legal bases:
Contract Performance
Processing necessary to provide our services as agreed when you created your account.
Consent
Where you have given explicit consent for specific processing activities, such as importing contacts or enabling location features.
Legitimate Interests
Processing necessary for our legitimate business interests, such as improving our services and preventing fraud.
Legal Obligation
Processing necessary to comply with legal requirements.
Your Rights Under GDPR
As a data subject in the EEA, you have the following rights:
Right of Access
You can request a copy of all personal data we hold about you.
Right to Rectification
You can request correction of inaccurate or incomplete data.
Right to Erasure
You can request deletion of your personal data ("right to be forgotten").
Right to Restriction
You can request we limit how we use your data.
Right to Data Portability
You can request your data in a machine-readable format.
Right to Object
You can object to processing based on legitimate interests.
Right to Withdraw Consent
You can withdraw consent at any time where processing is based on consent.
Right to Lodge a Complaint
You can file a complaint with your local supervisory authority.
How to Exercise Your Rights
To exercise any of your GDPR rights, you can:
- In-App: Use the "Privacy Settings" section to access, export, or delete your data
- Email: Send a request to xerxiastudios@gmail.com
We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.
Data Transfers
When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Transfers to countries with adequate data protection laws
- Binding Corporate Rules where applicable
Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, typically:
- Active account data: Retained while your account is active
- Deleted account data: Removed within 30 days of account deletion
- Legal/compliance records: Retained as required by law
Security Measures
We implement appropriate technical and organizational measures to protect your data, including:
- Encryption of data in transit and at rest
- Regular security assessments and audits
- Access controls and authentication measures
- Employee training on data protection
- Incident response procedures
Data Breach Notification
In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours. If the breach poses a high risk to you, we will also notify you directly.
Data Protection Officer
For any questions regarding our data protection practices or to exercise your rights, please contact our Data Protection team:
Email: xerxiastudios@gmail.com
Response Time: Within 30 days
Supervisory Authority
If you are not satisfied with our response to your request, you have the right to lodge a complaint with your local data protection supervisory authority. A list of EEA supervisory authorities can be found on the European Data Protection Board website.