Privacy Policy

This Privacy Policy explains how we collect, use, store, and protect your personal data when you use The Big Line. We comply with the General Data Protection Regulation (GDPR), the UK GDPR, and applicable international privacy laws.

Contact

If you have questions about privacy, contact: support@thebigline.com

1. Data We Collect

We only collect the data necessary to operate the service.

• User account informations: email, password hash, account timestamps, login history.
• Memories & timeline content: title, description, date/time, cover image/media, visibility (private/public), color customizations.
• Payment & credits: Stripe transaction IDs, amounts, currency, payment status, credits purchased/used. We never store raw card numbers.
• Technical data: IP address, browser type, device info, cookies, action logs.
• Optional marketing data: UTM parameters, analytics cookies (actually disabled).

2. How We Use Your Data

• Provide core services (accounts, timeline, memories).
• Process purchases and manage credits.
• Ensure security, detect abuse, and prevent fraud.
• Optional anonymized analytics to improve the product (only when consented but actually disabled).

3. Legal Basis for Processing

We process data based on contractual necessity (service delivery), legitimate interests (security, fraud prevention) and legal obligations (accounting).

4. Data Retention

We retain personal data for the minimum period required:

• Account and memories: until you delete them.
• Payment records: 5–10 years for accounting/legal compliance.
• Logs: typically 12–24 months.

5. Your Rights

Under GDPR and similar laws you have the right to:

• Access your personal data
• Request correction
• Request deletion
• Request data export (portability)
• Object to processing or withdraw consent (where applicable)

To exercise any right contact: support@thebigline.com. We aim to respond within 30 days.

6. Cookies

We currently use only essential cookies required for login, security, and basic functionality. Optional cookies (analytics, advertising) are disabled by default and activated only with explicit consent.

7. Sharing of Data

We do not sell personal data. Data may be shared with:

• Service providers: Stripe (payments), IONOS (hosting), CDN providers (if used).
• Legal authorities when required by law.

8. International Transfers

Data may be processed outside of your country subject to appropriate safeguards (Standard Contractual Clauses, etc.) to ensure GDPR compliance.

9. Security

We implement reasonable technical and organizational measures to protect personal data (encryption for passwords, secure hosting, rate limits, monitoring).

10. Contact & Complaints

For privacy requests or complaints contact: support@thebigline.com. You may also contact your local Data Protection Authority.