Neufia logoNeufia

← Back to Neufia

Privacy Policy

Last updated: 12 May 2026

Drafting disclosure

The Terms of Service, Privacy Policy, and Cookie Policy on Neufia were written with the help of artificial intelligence (AI) tools, then published by Neufia. They are not legal advice. If you need advice about your own situation, speak to a qualified lawyer.

By using Neufia, creating an account, or ticking the acceptance box at sign-up, you acknowledge that you have read these documents (including this notice) and agree to be bound by them as presented. For questions: hello@neufia.com.

This Privacy Policy explains how Neufia ("we", "us") collects, uses, and shares personal information when you use our websites, mobile apps, and related services (the "Service"). It is intended for users in the United Kingdom and the United States.

Controller. The data controller responsible for your personal data is Neufia (or the legal entity named on neufia.com). For questions and to exercise your rights, email hello@neufia.com.

1. Information we collect

Depending on how you use the Service, we may collect:

  • Account and authentication: email address, password (stored via our authentication provider), Cognito or similar identifiers, and session/security data.
  • Profile and community content: display name, @handle, role, scene (country/region/city), genres, posts, comments, follows, notifications preferences, and similar profile fields you choose to provide.
  • Device and technical data: IP address, device type, app version, approximate location derived from scene selections, diagnostic logs, and security signals.
  • Communications: messages you send to support and, where applicable, in-product chat content processed by our systems.
  • Push notifications (mobile): if you opt in, an Expo push token or equivalent to deliver notifications to your device.

2. How we use information

We use personal information to:

  • Provide, secure, and improve the Service (including personalization by scene and role).
  • Create and maintain your account; authenticate you; prevent fraud and abuse.
  • Send service-related messages (for example security alerts or email verification).
  • Deliver optional notifications you have enabled (for example mobile push).
  • Comply with law; enforce our Terms; protect rights, safety, and integrity of users and Neufia.
  • Analyze usage in aggregated or de-identified form where permitted.

3. Legal bases (UK)

Where UK GDPR / UK data protection law applies, we rely on:

  • Contract — processing necessary to provide the Service you request (for example account creation, hosting your profile and posts).
  • Legitimate interests — for example securing the Service, improving features, and preventing abuse, balanced against your rights.
  • Consent — where required (for example certain optional analytics or marketing communications, if we introduce them with consent controls).
  • Legal obligation — where we must process data to comply with the law.

4. Sharing and processors

We use trusted service providers to host and operate the Service (for example cloud infrastructure, databases, authentication, email delivery, error reporting, and push-notification infrastructure). They may process personal data on our instructions and under contractual safeguards.

We may disclose information if required by law, to respond to lawful requests, or to protect Neufia, users, or the public. We do not sell your personal information as "sale" is defined under US state privacy laws; if we introduce data practices that constitute a sale or "sharing" for cross-context behavioral advertising, we will describe that and provide choices as required.

5. International transfers

We may process and store information in the United Kingdom, the European Economic Area, the United States, or other countries where we or our providers operate. Where UK or EEA law requires safeguards for transfers, we use appropriate mechanisms (such as the UK IDTA / Addendum or EU Standard Contractual Clauses) with providers as applicable.

6. Retention

We keep personal information only as long as needed for the purposes above, including legal, accounting, or reporting requirements. Retention periods depend on the data type and whether you still have an account. We may delete or de-identify data when it is no longer needed.

7. Security

We implement technical and organizational measures designed to protect personal information. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

8. Your rights

UK / EEA:You may have rights to access, rectify, erase, restrict processing, object, data portability, and to withdraw consent where processing is consent-based. You may lodge a complaint with the UK Information Commissioner's Office (ICO) or your local supervisory authority.

United States (including California): Depending on your state of residence, you may have rights to access, delete, or correct personal information, and to opt out of certain sales or sharing (if applicable). We will not discriminate against you for exercising rights afforded by law. You may designate an authorized agent where state law allows.

To exercise rights, email hello@neufia.com. We may need to verify your request.

9. Delete your Neufia account

You can delete your Neufia sign-in and the app data we store for your account. Deletion is permanent and cannot be undone.

In the Neufia app (Android or iOS): sign in, open Profile, choose Delete account, type DELETE_MY_NEUFIA_ACCOUNT when prompted, and confirm.

On the website: sign in, open your profile, open Account, choose I want to delete my account, type DELETE_MY_NEUFIA_ACCOUNT, and confirm.

If you cannot sign in: email hello@neufia.com from the address on your account and ask us to delete it. We may ask you to verify ownership before we act.

When deletion completes, we remove or disconnect, among other things:

  • Your authentication account (Cognito sign-in).
  • Your profile row and related user records in our primary database.
  • Posts and other content attributed to your account as author.
  • Follows, blocks, notifications to your @handle, wall posts, bulletins, catalog tracks, visitor logs, and listings tied to your account.

Some data may remain for a limited time in backups, logs, or systems outside this deletion path (for example chat transcripts, uploaded media objects, or directory entries not yet linked to your account). We delete or de-identify retained copies when no longer needed for security, legal, or operational purposes.

10. Children

The Service is not directed to children under the age required by applicable law in their region. We do not knowingly collect personal information from children in violation of law. If you believe we have, contact us so we can delete it.

11. Changes

We may update this Privacy Policy from time to time. We will post the updated version with a new "Last updated" date and, where appropriate, provide additional notice.

12. Contact

For privacy requests or questions, email hello@neufia.com.