Legal
Privacy Policy
Last updated: March 2026
At iAppLabs, we are committed to protecting your privacy and personal data. This Privacy Policy explains what data we collect through the Clubr. platform, how we use and protect it, and your rights under the EU General Data Protection Regulation (GDPR) and Brazil's Lei Geral de Protecao de Dados (LGPD).
1. Data Controller
iAppLabs ("Company", "we", "us") is the data controller responsible for processing your personal data in connection with the Clubr. platform ("Service"). If you have questions about how your data is processed, contact our Data Protection team at privacy@iapplabs.com.
2. Information We Collect
We collect the following categories of personal data: (a) Account Data — email address, username, display name, profile photo, and role type (DJ, clubber, or promoter) provided during registration; (b) Payment Data — billing details processed securely through Stripe (we do not store full credit card numbers on our servers); (c) Usage Data — pages visited, events browsed, features used, interactions, timestamps, and session duration; (d) Technical Data — IP address, browser type and version, operating system, device identifiers, and referring URLs; (e) Location Data — approximate location for event discovery features (only with your consent); (f) Communication Data — messages, feedback, and support requests you send to us. We collect data directly from you, automatically through your use of the Service, and from third-party services (e.g., OAuth providers when you sign in with Google or social accounts).
3. How We Use Your Information
We use your personal data to: (a) provide, maintain, and improve the Service; (b) personalize event recommendations based on your music preferences and location; (c) process payments and manage subscriptions; (d) send transactional communications (account confirmations, event reminders, billing notifications); (e) monitor and analyze usage trends to improve functionality and user experience; (f) detect, prevent, and address fraud, security issues, and technical problems; (g) facilitate connections between DJs, clubbers, and promoters; and (h) comply with legal obligations. We do not sell, rent, or trade your personal data to third parties for their marketing purposes.
4. Information Sharing
We share your personal data only in the following circumstances: (a) with your consent or at your direction; (b) with service providers who process data on our behalf (see Section 7); (c) to comply with legal obligations, court orders, or regulatory requests; (d) to protect the rights, safety, or property of iAppLabs, our users, or the public; (e) in connection with a merger, acquisition, or sale of assets (you will be notified of any such change). Public profile information (username, display name, profile photo, and role) is visible to other users as part of the Service functionality.
5. Data Security
We implement industry-standard technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include: encryption in transit (TLS/SSL) and at rest, regular security assessments, access controls and authentication, and secure development practices. While we strive to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We encourage you to use strong, unique passwords for your account.
6. Cookies & Tracking Technologies
Clubr. uses the following types of cookies: (a) Strictly Necessary Cookies — required for authentication, session management, and security (cannot be disabled); (b) Analytics Cookies — help us understand how you use the Service using privacy-friendly analytics; (c) Preference Cookies — remember your settings and preferences (e.g., theme, music genre filters). We do not use third-party advertising cookies or cross-site tracking. You can manage non-essential cookies through your browser settings.
7. Third-Party Services
We rely on trusted third-party service providers to operate the Service. These providers process your data only on our behalf and in accordance with our instructions: (a) Stripe — payment processing (PCI DSS Level 1 compliant); (b) Supabase — authentication, database, and storage services; (c) Vercel — hosting and content delivery; (d) Google Analytics — anonymized usage analytics (IP anonymization enabled); (e) Resend — transactional email delivery. Each provider is contractually bound to protect your data and has its own privacy policy.
8. Your Rights (GDPR & LGPD)
Under the GDPR and LGPD, you have the following rights regarding your personal data: (a) Right of Access — request a copy of the personal data we hold about you; (b) Right to Rectification — request correction of inaccurate or incomplete data; (c) Right to Erasure — request deletion of your personal data ("right to be forgotten"); (d) Right to Data Portability — receive your data in a structured, machine-readable format; (e) Right to Restrict Processing — request that we limit how we use your data; (f) Right to Object — object to processing based on legitimate interest; (g) Right to Withdraw Consent — withdraw consent at any time where processing is based on consent. To exercise any of these rights, email us at privacy@iapplabs.com. We will respond within 15 business days (LGPD) or 30 days (GDPR). You also have the right to lodge a complaint with your local data protection authority.
9. Data Retention
We retain your personal data for as long as your account is active or as needed to provide the Service. If you delete your account, we will permanently erase your personal data within 30 days, except where retention is required by law (e.g., tax records, legal proceedings). Anonymized, aggregated data that cannot identify you may be retained indefinitely for analytics and service improvement purposes. Backup copies may persist for up to 90 days after deletion before being fully purged.
10. Children's Privacy
The Service is not directed to children under the age of 18 due to the nightlife-related nature of the platform. We do not knowingly collect personal data from minors. If you believe we have collected data from a minor, please contact us immediately at privacy@iapplabs.com and we will promptly delete the information.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of material changes by posting a prominent notice on the Service or by sending you an email. Your continued use of the Service after any changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at: iAppLabs — Data Protection Team — privacy@iapplabs.com. We aim to respond to all inquiries within 5 business days.