Privacy Policy

Last updated: March 6, 2026

SNIF ("we", "us", "our") operates the SNIF mobile application and website (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

1.1 Personal Information

  • Account data: name, email address, password (hashed), profile picture
  • Pet profiles: pet name, breed, species, age, gender, photos, medical history, personality traits
  • Location data: approximate location for finding nearby pet matches
  • Communication data: messages sent through the chat feature
  • Match & swipe data: your match preferences and swipe history

1.2 Automatically Collected Information

  • Device information (type, OS, browser)
  • Usage analytics (pages viewed, features used, session duration)
  • IP address
  • Crash reports and performance data

2. How We Use Your Information

  • Pet matching: to connect you with compatible pet owners nearby
  • Communication: to enable messaging between matched users
  • Account management: to create and maintain your account
  • Analytics: to improve our Service through aggregated usage data
  • Safety: to detect and prevent fraud, abuse, and violations of our Terms
  • Payments: to process subscription payments through Stripe

3. Legal Basis for Processing (GDPR Article 6)

  • Consent: you provide explicit consent when creating an account and using optional features
  • Contract: processing necessary to provide the Service as agreed in our Terms
  • Legitimate interest: analytics, security, and Service improvement
  • Legal obligation: compliance with applicable laws and regulations

4. Data Retention

We retain your personal data for as long as your account is active. When you delete your account:

  • Personal data (name, email, profile picture) is immediately anonymized
  • Anonymized match and interaction records are retained for other users' continuity
  • Payment records are retained as required by tax law (typically 7 years)
  • You may request a full data export before deleting your account

5. Third-Party Services

We share data with the following third-party processors:

  • Stripe — payment processing (PCI DSS compliant)
  • Firebase — authentication and push notifications
  • Microsoft Azure — cloud hosting and storage (EU data centers)
  • Google — OAuth sign-in (when you choose Google login)

We do not sell your personal data to any third party. We do not use your data for marketing purposes beyond our own Service.

6. Your Rights (GDPR)

Under the General Data Protection Regulation, you have the right to:

  • Access: request a copy of all data we hold about you (Settings → Export Data)
  • Rectification: correct inaccurate personal data via your profile settings
  • Erasure: delete your account and personal data (Settings → Delete Account)
  • Portability: receive your data in a structured, machine-readable format (JSON export)
  • Restriction: request restriction of processing in certain circumstances
  • Objection: object to processing based on legitimate interest
  • Withdraw consent: withdraw consent at any time without affecting prior lawful processing

To exercise these rights, use the in-app settings or contact us at privacy@snif.hu.

7. Cookie Policy

We use the following types of cookies:

  • Essential cookies: authentication token and session management (required for the Service to function)
  • Analytics cookies: Application Insights for performance monitoring (optional, controlled via cookie consent)

We do not use marketing or advertising cookies. You can manage your cookie preferences at any time through the cookie consent banner.

8. Children's Privacy

The Service is not intended for children under 18. We do not knowingly collect personal data from anyone under 18. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so we can delete it.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, including:

  • EU-approved Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Data Processing Agreements with all third-party processors

10. Data Security

We implement industry-standard security measures including encryption in transit (TLS 1.3), encryption at rest, secure password hashing, rate limiting, and regular security audits.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through in-app notifications or email. Continued use of the Service constitutes acceptance of the updated policy.

12. Contact Us

For privacy-related inquiries or to exercise your rights: