GDPR & NDPA Compliant

Privacy Policy

Version 3.0 Effective 1 March 2026 Tailorte — Devpitch UG (haftungsbeschränkt)
01

Introduction §

This Privacy Policy explains how Tailorte — Devpitch UG (haftungsbeschränkt) ('Tailorte', 'we', 'us') collects, uses, processes, stores, and protects personal data when you use our mobile application, website, and related services.

We comply with the General Data Protection Regulation (GDPR) and the Nigeria Data Protection Act (NDPA) 2023 where applicable.

Effective Date: 23 February 2026. Last updated: 1 June 2026.

02

Data Controller §

Tailorte — Devpitch UG (haftungsbeschränkt) is the data controller responsible for your personal data.

Tailorte — Devpitch UG (haftungsbeschränkt) — Germany
Privacy enquiries: hello@tailorte.com  |  privacy@tailorte.com

04

Categories of Data We Collect §

Account Data §

NameEmail addressPhone numberUsernameProfile photoDate of birthGenderCountry

Phone Number: Used exclusively to match users to customer records within the Tailorte backend system. Not shared with third parties.

Email Address: Used for account management and communications only.

Gender: Used solely for anatomical style matching. Processed internally, never shared.

Date of Birth: Used for age verification. May be used in anonymised aggregated analytics.

Country: May be publicly displayed for transparency and fraud prevention.

Location Data §

Exact location (proximity suggestions)Country (public profile)

Exact location data is used only to power proximity-based service suggestions and is not shared with third parties.

Usage & Content Data §

App interactionsSearch queriesEngagement metricsPosts & portfoliosSaved contentComments

Device & Technical Data §

IP addressDevice typeOperating systemApp versionBrowser typeSession cookies

Push Notification Data §

Push notification token (FCM / APNs)

Push tokens are used solely to deliver notifications you choose to receive. You may disable push notifications at any time in your device settings.

05

Analytics — Firebase Analytics §

We use Firebase Analytics provided by Google LLC to analyse app performance and user interaction.

  • Firebase Analytics may collect usage data, device information, approximate location, and app performance metrics.
  • We do not use analytics for personalised advertising.
  • We do not collect advertising identifiers such as IDFA or AAID.
  • We do not track users across third-party apps or websites.
  • Analytics data is used solely to improve app functionality and user experience.

Firebase is operated by Google LLC. Data processing by Google is governed by Google's standard data processing terms and applicable SCCs.

06

Push Notifications §

We use Firebase Cloud Messaging (FCM) to deliver push notifications. For iOS devices, notifications are also routed via Apple Push Notification Service (APNs).

  • Push tokens are used only to send notifications you choose to receive.
  • No notification content is stored beyond delivery.
  • You may disable push notifications at any time in your device settings.
07

Hosting & Infrastructure §

Our infrastructure and primary databases are hosted on Amazon Web Services (AWS) servers located in Ireland (European Union).

  • Core user data is stored within the European Economic Area (EEA).
  • AWS acts as a data processor under GDPR Article 28, bound by a Data Processing Agreement.
  • Backups and failover systems are also maintained within the EEA.
08

International Data Transfers §

Certain service providers — including Google (Firebase) and Apple (APNs) — may process limited data outside the EEA. Where such transfers occur, appropriate safeguards are applied:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions recognised by the European Commission where applicable.

For users in Nigeria, cross-border transfers comply with the Nigeria Data Protection Act (NDPA) 2023 and the NDPC's transfer framework.

09

Data Sharing §

Tailorte does not sell, rent, trade, or monetise personal data under any circumstances.

Data is shared only in the following limited circumstances:

Service processors
Contracted hosting (AWS), analytics (Firebase), and notification (FCM/APNs) providers, bound by GDPR-compliant data processing agreements.
Legal requirements
Where required by valid court order, law enforcement request, or statutory obligation.
Business transfer
In the context of a merger, acquisition, or asset sale, subject to confidentiality obligations. Users will be notified.
10

Data Retention §

Personal data is retained only as long as necessary to:

  • Provide the platform services you use.
  • Comply with applicable legal retention obligations.
  • Resolve disputes and enforce our policies.
  • Prevent fraud and protect platform security.

When you delete your account, public profile content is removed within 30 days. Anonymised aggregate data may be retained for analytics for up to 24 months. Legal compliance records may be retained for up to 7 years.

You may request deletion by contacting hello@tailorte.com.

11

Data Security §

Tailorte implements the following safeguards to protect personal data:

  • Encryption of data in transit using TLS.
  • Secure cloud hosting on AWS (EEA) with access controls and monitoring.
  • Password hashing using industry-standard algorithms.
  • Regular security reviews and vulnerability assessments.

While no internet system can guarantee complete security, we apply industry-standard safeguards and will notify affected users and supervisory authorities in the event of a data breach, as required by GDPR Article 33 (within 72 hours of discovery).

🔒 Security issues: security@tailorte.com
12

Automated Decision-Making §

Tailorte does not engage in automated decision-making that produces legal or similarly significant effects under GDPR Article 22. Content recommendations and feed curation are algorithmic but do not result in legally significant decisions about you.

13

Children's Privacy §

Tailorte is not intended for children below the legally required minimum age (16 in most jurisdictions; higher where required by local law).

If we discover or are notified that we have unlawfully collected personal data from a child below the minimum age, we will delete that data promptly.

If you believe a child has provided personal data to Tailorte without appropriate consent, please contact privacy@tailorte.com.

14

Your Rights (GDPR & NDPA) §

Under the GDPR and the Nigeria Data Protection Act 2023, you have the following rights:

Right of Access
Obtain a copy of personal data we hold about you (GDPR Art. 15; NDPA s.34).
Right to Rectification
Request correction of inaccurate or incomplete data (GDPR Art. 16).
Right to Erasure
Request deletion of your data where retention is no longer necessary — 'Right to be Forgotten' (GDPR Art. 17).
Right to Restriction
Request that we limit how we process your data in certain circumstances (GDPR Art. 18).
Right to Portability
Receive your data in a structured, machine-readable format (GDPR Art. 20).
Right to Object
Object to processing based on legitimate interests or for direct marketing (GDPR Art. 21).
Withdraw Consent
Withdraw consent at any time without affecting prior processing (GDPR Art. 7(3)).
Lodge a Complaint
File a complaint with an EU supervisory authority (e.g. Germany's BfDI) or the Nigeria Data Protection Commission (NDPC).

To exercise any right, contact privacy@tailorte.com. We will respond within 30 days (GDPR) or as required by the NDPA.

15

Cookies & Tracking §

Tailorte uses cookies and similar technologies. On first visit, users are presented with a cookie consent banner. Categories:

Strictly Necessary
Essential to platform functionality. Cannot be disabled.
Performance & Analytics
Firebase Analytics and similar tools to understand how users interact with the platform.
Personalisation
Enable content recommendations and preference memory.

You may update cookie preferences at any time via the Privacy Settings menu, or by adjusting your browser settings.

16

Changes to This Policy §

We may update this Privacy Policy periodically. Updates will be reflected with a revised Effective Date at the top of this page. For material changes, we will notify you via in-app notification or email at least 14 days in advance.

Continued use of the platform after the effective date of changes constitutes acceptance.

17

Contact §

For all privacy-related matters:

hello@tailorte.com — General enquiries
privacy@tailorte.com — Privacy & data rights
📞 Phone (EU, Berlin): +49 152 171 23159