Privacy Policy

Last updated: March 22, 2026

Anyday ("we", "us", "our") operates the Anyday mobile application (the "App"). This Privacy Policy explains how we collect, use, and protect your information.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address (via Apple Sign-In, Google Sign-In, or email registration)
  • Name (from your sign-in provider or as entered by you)
  • Username (chosen by you)
  • Profile photo (optional, uploaded by you)

Content You Create

  • Events you create, including event details, images, and metadata
  • Bookmarks, follows, and other interactions

Extraction Data

When you use the extraction feature to create events from flyers, images, or URLs:

  • Source materials are processed temporarily to extract structured event data (names, dates, venues, links)
  • Source materials are not retained after extraction is complete
  • Only the resulting structured event metadata is stored

Automatically Collected Information

  • Coarse location (only when you search for venues, with your permission)
  • Crash reports and diagnostics (via Sentry, linked to your user ID for debugging)
  • App performance data (session replay samples for quality improvement)
  • Recent searches (stored locally on your device, not transmitted to our servers)

Information We Do Not Collect

  • We do not collect precise GPS location continuously
  • We do not collect contacts, health data, or financial information
  • We do not use advertising identifiers
  • We do not track you across other apps or websites

Legal Basis for Processing

We process your data under the following legal bases (GDPR Article 6):

  • Account creation and management — Performance of contract (Art. 6(1)(b))
  • Displaying events, bookmarks, follows — Performance of contract (Art. 6(1)(b))
  • Venue search using coarse location — Your consent (Art. 6(1)(a))
  • Crash reports and diagnostics (Sentry) — Legitimate interest in maintaining service quality (Art. 6(1)(f))
  • App performance monitoring — Legitimate interest in improving the service (Art. 6(1)(f))
  • Retaining event data after account deletion — Legitimate interest in maintaining event database integrity (Art. 6(1)(f))

How We Use Your Information

  • Provide the service: Display events, manage your profile, enable follows and bookmarks
  • Improve the app: Diagnose crashes, monitor performance, fix bugs
  • Venue search: Use your approximate location to show nearby venues when creating events

Data Storage and International Transfers

Your data is stored on Supabase cloud infrastructure. Profile photos and event images are stored in Supabase Storage. Authentication is handled by Supabase Auth.

Crash reports and performance data are processed by Sentry (Functional Software, Inc.), based in the United States.

Israel has been recognized by the European Commission as providing an adequate level of data protection (Commission Decision 2011/61/EU). For transfers to the United States (Sentry), appropriate safeguards are in place, including Standard Contractual Clauses.

Data Sharing

We do not sell your personal information. We share data only with the following service providers, solely for operating the App:

  • Supabase — database and authentication provider
  • Sentry — crash reporting and performance monitoring (receives user ID and email for issue tracking)
  • Google Places API — venue search queries (no personal data sent)
  • Spotify API — artist search queries (no personal data sent)

Your Rights

You have the following rights regarding your personal data:

  • Access your data through your profile in the App
  • Update your profile information at any time
  • Delete your account directly from the App, which removes your personal profile and authentication data. Deletion is processed immediately upon confirmation.
  • Data portability — request a copy of your personal data in a structured, commonly used format by contacting us
  • Restrict processing — request restriction of processing of your personal data in certain circumstances
  • Object — object to processing based on our legitimate interests
  • Withdraw consent — revoke location permission or other consents at any time through your device settings
  • Lodge a complaint with a data protection supervisory authority, in particular in the EU Member State of your habitual residence

To exercise any of these rights, contact us at privacy@anyday.am.

Data Retention

  • Account data (profile, authentication) is retained until you delete your account
  • Crash reports are retained for 90 days
  • When you delete your account, your personal profile and authentication data are permanently removed immediately
  • Structured event data (event details, venue information, artist metadata, and uploaded images) may be retained by Anyday after account deletion in de-identified form, as described in our Terms of Use. This data is no longer linked to your identity.

Children's Privacy

The App is not intended for children under 13 years of age, or under the minimum digital age of consent in your jurisdiction (which may be up to 16 in some EU Member States). We do not knowingly collect information from children under these ages.

Security

We use industry-standard security measures including encrypted connections (HTTPS/TLS), secure authentication protocols, and access controls to protect your data.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the App or via email. The "Last updated" date at the top of this page indicates when the policy was last revised.

Contact

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at privacy@anyday.am.