Migavibe Privacy Policy
Last Updated: December 30, 2025 Data Controller: Migamor GmbH Address: Brandstrasse 33, 8952 Schlieren, Switzerland Email:
1. Introduction
Migamor GmbH ("we," "us," or "Migavibe") operates an online dating platform for heterosexual singles, with sister platforms for other communities (Migagay.com for gay/lesbian singles and Migaqueer.com for LGBTQ+ singles).
This Privacy Policy explains how we collect, use, disclose, and protect your personal data in compliance with:
- The EU General Data Protection Regulation (GDPR).
- Swiss data protection laws (FADP).
- Other applicable privacy regulations.
⚠️ Important Notes:
- By using Migavibe, you agree to this policy.
- All events are free—we do not process payment data.
- We never sell your data to third parties.
2. Data We Collect
2.1 Data You Provide
When you register, use our services, or contact us, you may voluntarily share:
- Identity Data: Name, username, date of birth, gender.
- Contact Data: Email, phone number (optional).
- Profile Data: Photos, location (city/region), event preferences.
- User-Generated Content: Messages, event participations, interactions.
2.2 Automatically Collected Data
Via cookies, logs, and tracking technologies, we collect:
- Device/Technical Data: IP address (anonymized), browser type, OS, device ID.
- Usage Data: Pages visited, session duration, referring site.
- Location Data: City/region (with your consent, via MaxMind GeoLite2).
2.3 Data from Third Parties
- Social Media: If you log in via Facebook/Google (limited to authentication data).
- Partners: Event organizers (with your consent).
🔒 Exclusions:
- We do not access your private messages, contacts, or sensitive data (e.g., health, ethnicity).
- No payment data is collected (all events are free).
3. How We Use Your Data
| Purpose | Legal Basis (GDPR) | Examples |
|---|---|---|
| Account Management | Contract performance | Registration, authentication, profile updates. |
| Event Organization | Legitimate interest | Participation confirmations, reminders, moderation. |
| Service Improvement | Legitimate interest | Analytics (Matomo), user feedback, feature development. |
| Marketing | Consent (opt-in) | Newsletters, targeted ads (unsubscribe anytime). |
| Security & Compliance | Legal obligation / Legitimate interest | Fraud prevention, organizer verification, CGU enforcement. |
⚠️ Targeted Ads:
- Based on declared preferences (e.g., local events).
- No intrusive profiling (e.g., cross-site tracking without consent).
4. Data Sharing
4.1 With Other Users
Your public profile (username, age, photo, city) is visible to:
- Event participants (max. 10 people per event).
- Event organizers (for validation purposes).
4.2 With Service Providers
We share data with third-party processors under GDPR-compliant contracts:
- Hosting: Servers in Switzerland/EU (adequate protection).
- Analytics: Matomo (self-hosted, IP anonymization).
- Emailing: GDPR-compliant providers (e.g., Sendinblue).
- Location: MaxMind (anonymized geo-data).
🛡️ Safeguards:
- Standard Contractual Clauses (SCCs) for non-EU transfers.
- No reselling or misuse of data.
4.3 Legal Disclosures
We may disclose data if:
- Required by law (e.g., court order, regulatory request).
- Necessary to protect rights (e.g., fraud, CGU violations).
- Critical for user safety (e.g., harmful behavior).
5. Cookies & Tracking Technologies
5.1 Cookie Categories
| Type | Purpose | Duration | Consent Required? |
|---|---|---|---|
| Essential | Site functionality (login) | Session | No |
| Analytics | Audience measurement (Matomo) | 13 months | Yes |
| Marketing | Targeted ads (Google Ads) | 6 months | Yes |
| Functional | User preferences (language) | 12 months | No |
5.2 Managing Cookies
- Cookie Banner: Accept/reject non-essential cookies.
- Browser Settings: Block cookies via Chrome/Firefox/Safari.
- Opt-Out Tools:
- Enable "Do Not Track" in your browser.
- Use extensions like Ghostery or uBlock Origin.
🔍 Matomo (GDPR-Compliant Alternative to Google Analytics):
- No data sharing with third parties.
- IP anonymization by default.
6. Your GDPR Rights
As a user, you have the following rights:
| Right | Description | How to Exercise |
|---|---|---|
| Access | Request a copy of your data. | Email: |
| Rectification | Correct inaccurate data. | Edit your profile or email us. |
| Erasure | Delete your data ("right to be forgotten"). | Request via |
| Restriction | Pause data processing (e.g., during a dispute). | Email with justification. |
| Portability | Receive your data in a structured format (JSON/CSV). | Written request. |
| Objection | Opt out of marketing/profiling. | Unsubscribe link in every email. |
| Withdraw Consent | Stop marketing communications. | Click "Unsubscribe." |
⏳ Response Time: Within 30 days (free of charge, unless requests are excessive).
7. Data Security & Retention
7.1 Security Measures
- Encryption: TLS 1.3 for data in transit, AES-256 for backups.
- Access Controls: Two-factor authentication (2FA) for admins.
- Audits: Regular penetration testing.
7.2 Retention Periods
| Data Type | Retention Period | Legal Basis |
|---|---|---|
| User Account | While active | Legitimate interest |
| Event History | 5 years (archives) | Legal obligation |
| Marketing Data | Until consent withdrawal | Consent |
| Deleted Accounts | 30 days before permanent erasure | GDPR (Art. 17) |
8. International Data Transfers
Your data may be transferred to:
- Switzerland (Migamor GmbH HQ): Adequate protection (EU decision).
- United States (for certain processors): Standard Contractual Clauses (SCCs) in place.
🛡️ Safeguards:
- Privacy Shield compliance (for US partners).
- Anonymization of sensitive data before transfer.
9. Updates & Contact
9.1 Policy Changes
We may update this policy for:
- Legal changes (e.g., new EU directives).
- Technological updates (e.g., new cookies).
- Notification: Email + updated "Last Modified" date.
9.2 Contact Us
- GDPR Questions:
This email address is being protected from spambots. You need JavaScript enabled to view it. - Data Protection Officer (DPO): info
This email address is being protected from spambots. You need JavaScript enabled to view it. - Swiss/EU Supervisory Authority:
- Switzerland: FDPIC
- EU Users: Contact your local Data Protection Authority.
10. Glossary
- GDPR: EU Regulation 2016/679 on data protection.
- FADP: Swiss Federal Act on Data Protection.
- SCCs: Standard Contractual Clauses (for non-EU transfers).
- IP Anonymization: Truncated IP (e.g., 192.168.XX.XX).
🔹 Key Commitments Summary
✅ No data sales to third parties. ✅ Full transparency—access your data on request. ✅ Strong security—encryption, audits, GDPR compliance. ✅ User control—easy unsubscribe, cookie management.
Need Help? Email us at
