Privacy policy app
Last updated: 04/15/2026
1. introduction
Welcome to Conscious Connections! We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how Aluria AG ("we", "us" or "our") collects, uses, shares and protects your personal data when you use the Conscious Connections mobile application ("the App").
Conscious Connections is a platform for conscious dating, friendships and event discovery. Due to the nature of our service, we process personal data, which may include sensitive or special categories of personal data. We take this responsibility seriously and process your data in accordance with the Swiss Federal Act on Data Protection (nDSG), the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.
By creating an account and using the app, you confirm that you have read and understood this Privacy Policy. Where required by law, we will obtain your explicit consent before processing certain categories of data.
2. who we are
The controller responsible for your personal data is:
Aluria AG
c/o Trendstock AG
Mühlegasse 18
6340 Baar, Switzerland
Responsible person: Anne Wieser
E-mail: support@conscious-connections.com
Website: https://conscious-connections.com
3 Scope of this Privacy Policy
This Privacy Policy applies to the Conscious Connections mobile application (available for iOS and Android) and any related services, features or content we make available through the app. This includes our dating and friend matching services, event discovery and listing features, business profile features for event organizers, and in-app messaging and communication tools.
This Privacy Policy does not apply to our website (conscious-connections.com), which has a separate privacy policy available at https://conscious-connections.com/en/privacy-policy/. If a particular feature or service within the app requires its own privacy policy, this will be made available to you and will supplement or replace this Privacy Policy where indicated.
4. data that we collect
In order to provide you with a meaningful experience and help you find authentic connections, we need to collect and process certain personal data. Below you will find a detailed overview of the categories of data we collect.
4.1 Data that you provide to us
a) Account data
When you create an account, you provide us with basic registration information, including your name, e-mail address, date of birth and login details.
b) Profile data
To create your profile, you can provide additional information such as your gender, sexual orientation, relationship preferences (e.g. dating, friendship, companionship), photos, biographical description and personal interests, location (city/region), spiritual or personal growth interests and practices, lifestyle preferences (e.g. dietary habits, wellness practices) and your preferred language.
Sensitive data: Some of this information may be considered sensitive or special categories of personal data under applicable data protection law, in particular information about your sexual orientation, spiritual or religious beliefs and health-related lifestyle choices. We only process such data with your express consent, which you give by voluntarily entering this information in your profile. You can withdraw this consent at any time by removing the relevant information from your profile, deleting your account or contacting us.
c) Contents
When using the app, you can create and share content, including messages to other members, photos and videos as well as messages or feedback about other users or the service.
d) Purchase data
When you make in-app purchases, we process transaction-related data, including the type of subscription or purchase, the transaction date and amount and the payment confirmation. Payment processing takes place via third-party providers (e.g. Apple App Store, Google Play Store). We do not store your credit card or bank details directly.
e) Communication data
When you contact our support team or participate in surveys, we collect the content of your messages, any attachments and your feedback or survey responses.
f) Event data (for business customers)
If you use the app as an organizer, you can enter event details, including name, description, category, date, time, location, pricing, links and promotional images or media.
4.2 Automatically generated or collected data
a) Usage data
We automatically collect data about how you interact with the app, including features used and actions taken (e.g. profiles viewed, events searched, matches made), frequency and duration of use, search queries and filter preferences, and interaction patterns (e.g. messaging behavior, event attendance).
b) Technical data
We collect technical information from your device, including device type, model and operating system, unique device identifiers (e.g. advertising ID, device ID), IP address, browser type (when accessing web-based functions), app version, language settings, crash reports and performance data (via Firebase Crashlytics).
c) Analysis data
We use Amplitude to collect analytics data, which may include session data (start time, duration, frequency), user journey and funnel data, feature usage metrics and aggregated behavioral patterns.
4.3 Location data
With your permission, we collect approximate or precise location data from your device. This data is used to show you events and people near you, enable location-based search and discovery, and provide location context in your profile. We use the Google Places API for location-based features such as venue search and location search. If you deny location permission, certain location-based features will not be available, but you will still be able to use the core features of the app.
5. how and why we use your data
We process your personal data for the following purposes, in each case with a corresponding legal basis under applicable law:
| Purpose | Details and legal basis |
|---|---|
| Provision and operation of the app | Creation and maintenance of your account and profile; operation of matching, messaging and event functions; processing of your transactions. Legal basis: Performance of our contract with you (Art. 6(1)(b) GDPR); your consent for sensitive data (Art. 9(2)(a) GDPR). |
| Personalization and recommendations | Recommendation of potential matches and connections; suggestion of relevant events; personalization of your experience based on your preferences and behavior. Legal basis: Performance of our contract with you; legitimate interest in improving the user experience. |
| Security and protection | Preventing, detecting and combating fraud, abuse and violations of our terms of use; verifying user accounts; moderating content; protecting the security of our community. Legal basis: Legitimate interest in the security of the app; compliance with legal obligations; protection of vital interests. |
| Analysis and improvement | Analyzing usage patterns (via Amplitude); monitoring app performance and stability (via Firebase Crashlytics); developing new features; conducting research. Legal basis: Legitimate interest in improving our service; your consent where required. |
| Marketing and advertising | Sending of newsletters and advertising messages (via Kit); measurement of advertising effectiveness (via Meta Pixel/SDK and Hyros); implementation of targeted advertising campaigns. Legal basis: Your consent (Art. 6(1)(a) GDPR); legitimate interest where permitted by law. |
| Communication | Responding to your support requests; sending service-related notifications (e.g. matches, messages, event reminders); communicating important changes to our service or policies. Legal basis: Performance of our contract with you; legitimate interest. |
| Compliance with legal requirements | Compliance with applicable laws and regulations; establishment, exercise or defense of legal claims; response to lawful requests by public authorities. Legal basis: Compliance with legal obligations (Art. 6(1)(c) GDPR); legitimate interest. |
5.1 Newsletter and e-mail marketing
If you agree to receive our newsletter when you register, we will process your email address for the purpose of sending you marketing communications (event recommendations, news and offers). The newsletter is sent via our service provider Kit (formerly ConvertKit), which processes your email address, subscriber preferences and interaction data (openings, clicks). The legal basis is your consent (Art. 6 para. 1 lit. a GDPR / Art. 31 para. 1 nDSG). You can withdraw your consent at any time by using the unsubscribe link in every email or by adjusting your settings in the app. The revocation does not affect the lawfulness of the processing that took place before the revocation.
6. how we share your data
We do not sell your personal data. We only share your data in the following circumstances:
6.1 With other members
Certain information you provide is inherently visible to other app users, including your profile information (name, photos, bio, interests, approximate location), publicly shared content and your activities within shared features. Messages you send are visible to their recipients.
Important - No screenshot protection: Please note that the app does not use screenshot protection or screenshot recognition technology. This means that any content you share in the app - including your profile information, photos and private messages - can be captured by any recipient or viewer via screenshot, screen capture or other means. Once another user has captured your content, we have no control over how it is used, shared or distributed. We strongly recommend that you exercise caution and good judgment when sharing personal or sensitive information via the app. Do not share content that you would not want to be seen outside of the app.
6.2 With service providers and partners
We share data with trusted third-party providers who support us in operating, maintaining and improving the app. These service providers process data exclusively on our behalf, in accordance with our instructions and in compliance with corresponding data protection agreements.
| Provider | Purpose and data passed on |
|---|---|
| Amazon Web Services (AWS) | Cloud hosting and data storage infrastructure. Processes all categories of data stored in the app. |
| Firebase Crashlytics (Google) | Crash reports and app stability monitoring. Processes technical data, device information and crash logs. |
| Amplitude | Product analysis and analysis of user behavior. Processes usage data, technical data and pseudonymized user IDs. |
| Google Places API | Location search and event location data. Processes location queries and geographical data. |
| Kit (formerly ConvertKit) | Email marketing and newsletter distribution. Processes e-mail addresses, subscriber preferences and interaction data (openings, clicks). |
| Meta (Facebook/Instagram) | Advertising, conversion tracking and social login. Processes advertising identifiers, usage data and hashed identifiers for ad targeting and measurement. |
| Hyros | Marketing attribution and tracking of advertising performance. Processes usage data, conversion data and pseudonymized identifiers. |
6.3 For legal reasons
We may disclose your information if required to do so by law, in response to a lawful request (e.g., court order, governmental request), to protect the safety of any person, to prevent fraud or enforce our Terms of Use, or to establish, exercise or defend legal claims.
6.4 In connection with corporate transactions
If Aluria AG is involved in a merger, acquisition, reorganization or asset sale, your information may be transferred as part of that transaction. We will notify you of any such change and of any choices you may have regarding your information.
7. international data transfers
Conscious Connections is operated from Switzerland. However, some of our service providers are located in the United States and other countries outside the European Economic Area (EEA) and Switzerland. When we transfer your personal data to countries that do not have an adequacy decision from the European Commission or the Federal Data Protection and Information Commissioner (FDPIC), we implement appropriate safeguards, including:
- EU Standard Contractual Clauses (SCCs) approved by the European Commission
- The Swiss-U.S. Data Privacy Framework, where applicable
- Binding corporate rules, where applicable
- Your explicit consent if none of the above mechanisms are available
In particular, data may be transferred to the United States if it is processed by AWS, Kit, Meta, Hyros, Amplitude and Google services. We ensure that all such transfers are subject to appropriate contractual safeguards.
8. your rights
Depending on your location, you have the following rights in relation to your personal data under the GDPR, the Swiss nDSG and other applicable laws:
| Law | Description |
|---|---|
| Right to information | You have the right to request a copy of the personal data that we have stored about you. |
| Rectification | You have the right to request the rectification of inaccurate or incomplete personal data. |
| Deletion (right to be forgotten) | You have the right to request the erasure of your personal data, subject to statutory retention obligations. |
| Restriction of processing | You have the right to request the restriction of the processing of your data under certain circumstances. |
| Data portability | You have the right to receive your data in a structured, commonly used and machine-readable format. |
| Objection | You have the right to object to processing based on legitimate interests or for the purpose of direct marketing. |
| Revocation of consent | If the processing is based on your consent, you can withdraw it at any time without affecting the lawfulness of the previous processing. |
| Submitting a complaint | You have the right to lodge a complaint with the competent data protection authority (see section 14). |
How to exercise your rights: You can exercise many of these rights directly in the app (e.g. editing your profile, deleting your account). For all other requests, please contact us at support@conscious-connections.com. We will respond to your request within 30 days (or such other period as required by law). We may ask you to verify your identity before we process your request.
9. how long we keep your data
We will only retain your personal data for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.
- Active account: Your data will be kept as long as your account is active.
- Account deletion: If you delete your account, we will initiate the deletion of your profile data.
- Transaction data: Purchase and payment records are retained for up to 10 years in accordance with Swiss tax and accounting requirements.
- Legal obligations: We may retain data for longer periods if required by applicable law or for the establishment, exercise or defense of legal claims.
- Anonymized data: We may retain anonymized or aggregated data indefinitely for analytical and statistical purposes, as such data can no longer identify you.
10. data protection for children
Conscious Connections is intended for users over the age of 18. We do not knowingly collect personal information from anyone under the age of 18. If we learn that we have collected information from a minor, we will take immediate steps to delete that information and close the associated account. If you believe that a minor has provided us with personal data, please contact us immediately at support@conscious-connections.com.
11. cookies, SDKs and tracking technologies
The app uses software development kits (SDKs) and similar technologies to collect and process data. Unlike websites, mobile apps do not use browser cookies in the conventional sense. However, the following technologies are integrated into the app:
11.1 Analysis SDKs
- Amplitude SDK: Collects usage and behavioral data to help us understand how members use the app and to improve the user experience. Amplitude processes pseudonymized identifiers and usage events.
- Firebase Crashlytics SDK: Automatically captures crash reports and device diagnostic data to help us identify and resolve technical issues. This includes device health, stack traces and device identifiers.
11.2 Advertising and marketing SDKs
- Meta SDK (Facebook): Used for conversion tracking, ad measurement and retargeting. This SDK can pass on device identifiers, usage events and hashed user data to Meta for advertising purposes.
- Hyros: Used for marketing attribution and tracking the effectiveness of advertising campaigns. Hyros processes conversion data and pseudonymized identifiers.
11.3 Infrastructure SDKs
- Google Places API: Used for location search functions and venue information. Google can process location query data and IP addresses.
- AWS SDKs: Used for backend infrastructure, including data storage, authentication and push notifications.
11.4 Managing the tracking settings
You can manage your tracking settings in the following ways:
- App settings: You can customize your privacy and data sharing settings in the app's settings menu.
- Device settings: On iOS, you can manage App Tracking Transparency (ATT) permissions. On Android, you can reset or deactivate your advertising ID via the device settings.
- Unsubscribing from marketing: You can unsubscribe from receiving marketing emails at any time via the unsubscribe link in every email or update your settings in the app.
12. data security
We use appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure or destruction. These measures include
- Encryption of data during transmission (TLS/SSL) and at rest
- Access controls and authentication mechanisms for internal systems
- Regular security assessments and vulnerability tests
- Employee training in data protection and information security
- Data processing agreements with all third-party providers
- Infrastructure hosted on AWS with industry-standard security certifications
While we strive to protect your personal data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to following best practices.
13 Automated decision-making and profiling
We may use automated processes to personalize your experience, such as recommending potential matches based on your profile data, preferences and behavior, suggesting events that may interest you, and moderating content for security purposes.
These automated processes are designed to improve your experience and have no legal effect or similarly significant impact on you. If you have any concerns about automated decision-making, you can contact us at support@conscious-connections.com.
14. supervisory authority
If you believe that our processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with the competent supervisory authority:
In Switzerland:
Federal Data Protection and Information Commissioner (FDPIC)
Feldeggweg 1, CH-3003 Bern
https://www.edoeb.admin.ch/
In the EU/EEA: You can lodge a complaint with the supervisory authority of your habitual residence, place of work or place of the alleged infringement. You can find a list of EU data protection authorities at https://edpb.europa.eu/about-edpb/board/members_en.
15. changes to this privacy policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements or other factors. If we make material changes, we will notify you through the app (e.g., via an in-app notification or pop-up) and/or by email before the changes take effect. The "Last Updated" date at the top of this Privacy Policy indicates when the last revision was made. We recommend that you check this Privacy Policy regularly.
16. contact
If you have any questions, concerns or requests in relation to this Privacy Policy or our data processing practices, please contact us:
Aluria AG
c/o Trendstock AG
Mühlegasse 18
6340 Baar, Switzerland
E-mail: support@conscious-connections.com
17 Additional provisions for certain jurisdictions
17.1 European Economic Area (EEA) and United Kingdom
If you are in the EEA or the UK, you have the additional rights described in section 8. Our legal bases for processing are set out in Section 5. Where we rely on legitimate interests, we have carried out a balancing test to ensure that our interests do not override your fundamental rights and freedoms.
17.2 Switzerland
If you are located in Switzerland, your data will be processed in accordance with the Swiss Federal Act on Data Protection (FADP). The FDPIC is the competent supervisory authority for complaints in connection with data processing. Cross-border transfers are subject to Art. 16 ff. nDSG.
© 2026 Aluria AG. All rights reserved.