Privacy Policy — Vibereef

Effective date: 12 May 2026

Prototype notice

Vibereef is currently a prototype. This means:

  • Features, design, and data structures may change without notice.
  • The Service is provided for testing and evaluation only and should not be relied upon for production use.
  • We may reset, migrate, or delete prototype data (including accounts and content) during development cycles. Where reasonably possible we will give advance notice, but we cannot guarantee preservation of any data submitted during the prototype phase.
  • Please do not upload sensitive personal data (e.g., health data, government IDs, financial information) or anything you would not be comfortable losing.

This Privacy Policy still applies in full to data we process while Vibereef is in prototype, and we comply with the EU General Data Protection Regulation (GDPR) and Apple's App Store privacy requirements.

This Privacy Policy explains how we collect, use, and protect personal data when you visit our website, use Vibereef (the "Service"), or contact us.

1) Who we are (data controller)

Controller: FabFun (The Netherlands), trading as Vibereef

KvK: 92807224

Contact: info@vibereef.com

2) Scope

This Policy applies to:

  • Visitors of our website and documentation
  • Users of Vibereef (iOS app, web app, APIs)
  • People who contact support or participate in beta / prototype testing programs

3) What data we collect

A. Account and profile data

  • Name, username, email address, account identifiers
  • Profile photo, bio, and other profile fields you choose to provide
  • Authentication data (e.g., hashed passwords, Sign in with Apple identifiers, SSO identifiers)
  • Date of birth or age confirmation (to verify minimum age)

B. Content you submit to the Service

This is content you create or upload while using Vibereef, such as:

  • Posts, photos, videos, audio, captions, comments, and reactions
  • Direct messages and conversations with other users
  • Profile information you make visible to others
  • Reports and moderation feedback you submit

Some of this content is, by design, shared with other users (see Section 6 on how social features work).

C. Social graph and interactions

  • Followers, following, friends, and blocked users
  • Likes, saves, shares, mentions, and similar interactions
  • Activity history (posts viewed, time spent on content)

D. Device permissions and content access

With your explicit permission via iOS system prompts, we may access:

  • Camera — to capture photos and videos within the app
  • Photo library — to upload existing photos and videos
  • Microphone — to record audio
  • Notifications — to send push notifications you opt in to
  • Location — only if you choose to tag content with location

You can change these permissions at any time in iOS Settings.

E. Usage, device, and log data

To keep the Service secure and reliable, we collect operational telemetry such as:

  • IP address, device/OS type, app version, timestamps
  • Features used, session identifiers, error codes, performance diagnostics
  • Crash reports

F. Communications and support

  • Emails and messages you send us
  • Support tickets, screenshots, or recordings you choose to share
  • Feedback, survey answers, and prototype/beta testing notes

G. Cookies and similar technologies (web)

On our website we use cookies and similar tools to run the site, remember preferences, and understand usage. We ask for consent where required by law. The iOS app does not use web cookies but may use equivalent local storage for session and preferences.

H. App Tracking Transparency (iOS)

Vibereef does not track you across apps and websites owned by other companies for advertising purposes. If this ever changes, we will request your permission via Apple's App Tracking Transparency prompt before any such tracking occurs.

4) Why we use your data (purposes)

We process personal data to:

  • Provide and operate Vibereef (accounts, profiles, posting, social interactions)
  • Display your content to the audiences you choose
  • Personalize feeds and recommendations within the Service
  • Maintain security, prevent abuse/fraud/spam, and debug incidents
  • Moderate content and enforce our community rules
  • Improve product performance and user experience (analytics in aggregate)
  • Provide support and respond to requests
  • Send essential service messages (e.g., security, account, updates)
  • Send optional notifications and communications you opt in to
  • Comply with legal obligations (e.g., accounting, lawful requests)

5) Legal bases (GDPR)

We rely on the following legal bases where applicable:

  • Performance of a contract — to provide the Service you request
  • Legitimate interests — security, fraud prevention, service improvement, basic analytics
  • Consent — non-essential cookies, optional notifications, optional features (you can withdraw at any time)
  • Legal obligation — tax/accounting, lawful requests, safety reporting

6) How social features work

Vibereef is a social app. This means certain data is, by design, visible to other users:

  • Your profile (username, photo, bio) is visible based on the privacy setting you choose.
  • Posts and content you publish are visible to the audience you select at the time of posting (e.g., public, followers, specific people).
  • Interactions such as likes, comments, and follows may be visible to other users involved.
  • Direct messages are visible to the participants of the conversation.

You control your audience through in-app privacy settings. You can also block users, report content, and delete your own content at any time.

We may use automated and human review to detect prohibited content (e.g., spam, abuse, illegal material). We do not use automated decision-making that produces legal or similarly significant effects on individuals within the meaning of GDPR Article 22.

7) Sharing your data (processors and third parties)

We may share data with:

  • Infrastructure providers — hosting, storage, databases, content delivery, email delivery
  • Analytics and crash-reporting providers — to understand usage and fix issues
  • Push-notification providers — to deliver notifications (e.g., Apple Push Notification service)
  • Authentication providers — e.g., Sign in with Apple
  • Payment processors — if and when paid features are introduced (full card numbers are not stored by us)
  • Moderation and safety providers — to help detect prohibited content and behaviour
  • Law enforcement or regulators — only where legally required

We only share what is necessary and under contractual safeguards.

We do not sell your personal data, and we do not share your content with advertisers.

8) International transfers

Some providers may process data outside the European Economic Area (EEA). Where required, we use appropriate transfer safeguards such as EU Standard Contractual Clauses (SCCs) and/or other lawful mechanisms depending on the transfer context.

9) Retention

We keep personal data only as long as needed for the purposes above:

  • Operational logs / telemetry: typically up to 90 days, unless needed longer for security or legal reasons
  • Account data: for the life of the account
  • User content: kept while your account is active; you can delete individual items at any time
  • Direct messages: kept until deleted by the participants or until the account is deleted
  • Prototype-phase data: may be reset or deleted as part of development cycles
  • Upon account deletion: we delete or de-identify personal data within a reasonable period. Backups may persist for a limited time, typically up to 90 days.

10) Account deletion

You can delete your Vibereef account at any time from within the iOS app (Settings → Account → Delete account), as required by Apple's App Store guidelines. Deletion is permanent and will remove your profile, posts, and personal data, subject to the retention rules in Section 9. Some content (e.g., messages you sent to others, reports you submitted) may remain visible to recipients or retained for safety and legal reasons.

You can also request deletion by emailing info@vibereef.com.

11) Security

We use reasonable technical and organisational measures such as:

  • Encryption in transit and (where appropriate) at rest
  • Access controls and least-privilege policies
  • Monitoring and abuse prevention

Because Vibereef is a prototype, security measures are evolving. You are responsible for keeping your credentials secure and using strong authentication (e.g., Sign in with Apple or a strong unique password) where available.

12) Your rights (EEA / Netherlands)

Depending on your situation, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete data (with legal exceptions)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (for consent-based processing)

To exercise these rights, contact info@vibereef.com.

Complaints. You can lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

13) Children

Vibereef is not intended for children under 13 (or under the minimum age required in your country to consent to data processing, whichever is higher). We do not knowingly collect personal data from children below this age. If you believe a child has provided us with personal data, contact info@vibereef.com and we will take appropriate steps to delete it.

14) Cookies (website)

On our website we use cookies for:

  • Strictly necessary functionality (security, session)
  • Analytics/performance (to improve the Service)
  • Preferences (language/theme)

You can manage cookie preferences via our cookie banner/settings (where available) and browser controls.

15) Changes to this Policy

We may update this Policy to reflect changes in law, our practices, or the prototype's evolution. If changes are material, we will provide notice in-app or via email, and update the effective date.

16) Contact

For privacy questions or requests, contact: info@vibereef.com