Privacy Policy

Bonsoir prioritizes the security of your data. This document outlines how we collect, store, protect, and share your information, as well as with whom we may share it. In designing and developing our services, we strive to earn your trust, foster a positive user experience, and help you build connections while safeguarding your data.

When you use our app, we collect certain information about you. You also have the option to share information with other users within the app, and in some cases, we may need to share your information at intervals to maintain service quality and security.

Please review our Privacy Policy carefully (referred to as “Policy” or “Policies” hereafter), as by using our app, you accept these Terms and consent to how we handle your data.

Our aim is to deliver high-quality services while providing maximum protection of your data. Our experts are continuously working to ensure that our practices align meticulously with all relevant privacy standards, integrating these protections into our services at every level.

Data protection is a complex process, but we strive to communicate our Policies to you in a clear, understandable manner so you can be fully informed about our privacy measures.

To ensure your data remains secure, we collaborate with industry experts and regularly update both our privacy practices and documentation, further ensuring your data is protected.

We understand that navigating online services can be challenging, especially when unclear or overly complex information complicates users’ decision-making. While we appreciate your trust in sharing your data with us, we encourage you to read our Policy carefully and consider it fully before deciding to use our services.

Our Privacy Policy is effective as of December 1, 2024.

1. General Information

This Privacy Policy, along with any questions regarding data protection, is governed by Hungarian law. In the event of any legal disputes related to data protection, the courts of Hungary have jurisdiction, specifically those within the jurisdiction of the registered office of the data controller, Ébredj Velem Kft.

Our activities comply with the legal framework of both the European Union and Hungary. Our data processing practices are primarily governed by the General Data Protection Regulation of the European Union (Regulation (EU) 2016/679 of the European Parliament and of the Council, April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC, hereinafter “GDPR”).

The following additional regulations also apply:

  • The Fundamental Law of Hungary;
  • The Hungarian Civil Code;
  • Act CXII of 2011 on the Right to Informational Self-Determination and Freedom of Information (Info Act);
  • Act CVIII of 2001 on Certain Issues of Electronic Commerce Services and Information Society Services (eCommerce Act);
  • Act C of 2003 on Electronic Communications (Eht.);
  • Act XLVIII of 2008 on the Essential Conditions of and Certain Limitations to Business Advertising Activity;
  • for prize competitions, the applicable tax legislation, including Act CXVII of 1995 on Personal Income Tax and Act CL of 2017 on the Rules of Taxation;
  • for paid services, the retention of records as specified by Section 169 of Act C of 2000 on Accounting (“Accounting Act”).

    • Relevant regulations are available at http://net.jogtar.hu.

    Our aim is to ensure that the rights and fundamental freedoms of all users are respected in every aspect of our services, especially regarding the right to privacy in the processing of personal data, which we regard as the essence of data protection.

    Data Controller Information:

    name: Ébredj Velem Kft.

    company registration number: 03-09-138341

    representative: Edina Magyar, CEO

    TAX number: 32544688-1-03

    2. Definitions of Terms related to personal data

  • personal data: any information relating to an identified or identifiable natural person – that is, an individual who can be identified, directly or indirectly, by reference to an identifier such as a name, location data, or specific factors related to physical, physiological, mental, economic, cultural, or social identity;
  • special or sensitive data: personal data that reveals racial or ethnic origin, nationality, political opinions or affiliation, religious or other ideological beliefs, membership in any interest group, as well as data related to an individual’s biometrics, health, sexual life, orientation, or identity, as well as information on health status, addictions, or criminal history;
  • application: the Bonsoir dating application;
  • data processing: any operation or set of operations performed on personal data or data files, whether automated or manual. This includes, but is not limited to, collection, recording, organization, structuring, storage, alteration, retrieval, restriction, deletion, destruction, and blocking further use of the data;
  • data transmission: making data or a data file accessible to a specific third party;
  • data controller: a natural or legal person, organization, agency, or other body that, alone or jointly with others, determines the purposes and means of processing personal data;
  • data processor: a natural or legal person, organization, agency, or other body that processes personal data on behalf of the data controller;
  • data deletion: rendering data unrecognizable in a way that makes it permanently unrecoverable;
  • data blocking: labeling data with a unique identifier to restrict further processing either permanently or for a specified time period;
  • data destruction: the complete destruction of the data medium containing personal data;
  • automated processing: storing and performing logical and arithmetic operations on data using automated tools;
  • consent: the voluntary and explicit indication by the user, based on appropriate information, giving clear agreement to the processing of their personal data;
  • service: collectively, all services of the Bonsoir dating application, including all currently available and future associated functions and services;
  • user: the natural person who voluntarily registers to use the services and benefits from them;
  • account: the user’s profile which contains personal and sensitive data, and combines their dating preferences and other settings associated with the use of the service.

    • 3. Collected information

    We process your data lawfully, fairly and in a transparent manner. When you download our app and register your account, we require certain information, including personal and sensitive data to provide you with our services effectively. These include:

  • name;
  • email address;
  • gender identity;
  • date of birth;
  • sexual orientation or preference;
  • the relationship type you are looking for;
  • photos;
  • location.

    • Additionally, you may choose to share optional information, such as:

  • a personal bio;
  • interests;
  • additional photos;
  • verified profile status.

    • Certain details (like your name, age, photos, and optional information) are automatically displayed on your profile. However, sensitive information, such as your gender identity and sexual orientation, will only be visible to others upon a mutual match, by default. You may adjust your settings to make more information publicly visible to all users if desired.

    To upload photos, you may grant the app permission to access your camera or photo album if necessary.

    If you subscribe to any paid services, payments are securely processed via Stripe with Apple Pay, Google Pay, and standard credit or debit card options. Payment processing is handled by third-party systems. More information on Stripe's services is available here.

    Enabling location access on your mobile device is essential for the app to function properly. By allowing GPS location tracking, your approximate location is automatically updated, helping you view nearby profiles.

    We handle both personal and sensitive data solely to deliver our services and fulfill legal obligations associated with these services. Data collection and processing align with the defined purposes at each stage.

    Please note that when you choose to share information about yourself or use the messaging feature to communicate with other users, the scope of personal information you share is at your own discretion and risk.

    We offer an optional profile verification feature. Verification is conducted by an automated system which temporarily stores the data you provide for this purpose and deletes it upon completion. If questions arise regarding the provided verification photo, human review may confirm the authenticity of your profile.

    Anything you post or share may become publicly accessible to users and others outside the app. Therefore, we encourage you to carefully consider the data you share and be cautious with sensitive information.

    While we implement stringent security measures to protect your data from misuse or unauthorized access, no system is immune to potential security incidents. Thus, we ask that you take appropriate measures to secure your account, such as not sharing your access credentials with others.

    In some cases, we may request verification of your account, either through phone number verification or photo verification. This helps ensure authenticity and prevent fake profiles, which can diminish user experience and pose security risks. While we may not perform verification for every user, it may be required as a preventive measure against fraud.

    The legal grounds for processing your data are as follows:

  • user consent (GDPR Article 6(1)(a)): your voluntary, informed, and explicit consent, which you provide by registering for the service, accepting these Privacy Policies, agreeing to the general Terms and Conditions, and adhering to our Community Standards;
  • contractual agreement between the data controller and the user (GDPR Article 6(1)(b)): if you access paid services, the processing of data serves the purpose of providing additional services, and the Civil Code applies in this case;
  • compliance with legal obligations (GDPR Article 6(1)(c)): if you win a prize in a competition, tax obligations related to the prize may arise, which require processing of your data.

    • While using our services, we collect various types of information, including technical data and data related to how you use the app's features. Below is a list of the data types we collect and how we use them:

  • usage data: when you use our services, we collect data about your activities, including but not limited to login times, actions taken, information displayed, features used and interactions with other users;
  • geographical data: if you grant access to your location within the app, we collect information about your approximate geographic location. This helps us personalize your experience, making it easier for you to interact with other users based on your physical location;
  • device data: we collect data about your device, which may include your IP address, device type, operating system, app settings, crashes, and advertising identifiers;
  • photo data: we collect data related to your photos, such as which images attract more attention from users. This helps us reorder your profile pictures to highlight those that may be more favorable to you. You can disable this feature anytime in the app's settings.

    • Your IP address is considered personal data, and we store it temporarily for the duration of your session while using the app.

    We may review the content of messages exchanged between users to identify any unlawful behavior or content that violates our Policies and Guidelines.

    Occasionally, we may reach out to you with surveys, which are completely voluntary. These surveys help us improve our services, gather feedback, request testimonials, or invite you to participate in marketing campaigns (such as if you found whom you were looking for within our service). We will provide further details if you choose to participate.

    If you contact us, please note that through the in-app feedback page, we receive your email address along with any relevant profile information you share and may track your IP address to assist in resolving your query.

    4. Our data processing procedure

    Any natural person who fulfills the rights and obligations associated with account access as outlined in our Terms and Conditions may voluntarily register for our application.

    Registration is not mandatory, and choosing not to register will not result in any disadvantage to you, except that you will not be able to use the application.

    By registering, you voluntarily provide us with your personal data which we process in accordance with our Policies. The profile created through your registration grants you access to the app and enables you to use our services.

    The scope of the data processed includes all the information necessary for using the application. The purpose of processing this data is to identify registered users, store the data in profiles, provide our services, use the data for the purposes described in section 6, exercise rights arising from the user agreement, and fulfill our legal obligations.

    The legal basis for the processing of your data is your consent as a user. You can withdraw your consent at any time, but please note that if you do so, we will no longer be able to provide access to the application.

    If you use any paid services within the application, we will also process data related to the service, including but not limited to your name, email address, service details, and payment information. The purpose of processing this data is to calculate and facilitate payment for the service, exercise rights arising from the contractual relationship, fulfill obligations, and comply with legal requirements. In this case, the legal basis for processing is the Accounting Act.

    As the data controller, we will delete your data if you explicitly request it or if you object to the processing of your data. However, data related to invoices will be stored and processed for eight years, in accordance with the Accounting Act.

    5. Data security

    The data controller takes all necessary precautions to ensure the security of the data it processes and implements both technical and organizational measures to comply with data security requirements. Any person acting on behalf of the data controller is authorized to access only the data that is essential for performing their job duties, and all such data must be treated as confidential by the relevant personnel.

    Additionally, the data controller ensures that the following security measures are in place within the scope of its IT-related duties:

  • adequate measures to prevent unauthorized access;
  • proper protection of software and hardware;
  • procedures are in place to enable data recovery in case of data loss;
  • regular security backups to ensure proper data management;
  • protection of data from viruses.

    • The processed data is maintained in compliance with applicable laws and regulations.

    The data is stored encrypted via Cloudflare, and you can learn more about this service here.

    6. Usage of data

    Our primary goal is to ensure that you have a positive experience while using our application. To achieve this, and as a priority, we use your data to provide and improve our services, as well as to enhance your safety. Additionally, we use the information you share to deliver personalized ads that may interest you.

    We may use your data for the following purposes:

  • to recommend services and features tailored to you;
  • to provide you with updates about the application (e.g., new features, updates, etc.);
  • to customize the application and content you upload or receive;
  • to conduct research and analysis;
  • to test new technologies or processes;
  • to resolve conflicts and enforce our Terms and Conditions;
  • to enforce our rights;
  • to investigate fraud and misuse;
  • to handle reports and take countermeasures as necessary;
  • to inform you about our promotions and offers;
  • to run advertising and marketing campaigns;
  • to conduct market research;
  • to protect our users and third parties from potential harm.

    • Your interactions with other users may be used for:

  • making recommendations to help you connect with others;
  • displaying profiles to make it easier to get in touch.

    • Our algorithm uses the data you share to predict compatibility with other users, allowing us to present individuals to you in the app who are likely to be of interest. We strive to recommend the most relevant profiles, but we cannot guarantee the success of our system.

    7. Your Rights

    As we handle your personal data, we want to ensure you are aware of the rights that apply to you:

  • right to information: you have the right to know what data we process and why;
  • right of access: you may request a copy of your personal data, which includes all relevant information. However, please note that any personal data of the other party in your messages will be encrypted, and you only have access to the images you have sent;
  • right to rectification: most of your data can be edited directly within the app. If you believe any of the information we hold about you is inaccurate, please contact us;
  • right to deletion: under certain circumstances, you have the right to request the deletion of your data. However, please be aware that prior to deletion, we reserve the right to review your data and messages;
  • right to removal: you can stop data collection by uninstalling the app, but please note that this does not delete your account;
  • right to termination: you can deactivate your account by following the instructions available in the app;
  • right to data portability: you have the right to receive your personal data in a structured, commonly used, machine-readable format.

    • If you have concerns or questions regarding the processing of your data, or if it relates to your specific personal data, please contact us directly.

    If you believe your rights have been violated, you may request that we cease unlawful data processing or examine the rejection of your request. We will investigate your complaint and inform you of the outcome.

    You may also file a complaint directly with the Hungarian National Authority for Data Protection and Freedom of Information (address: 1125 Budapest, Szilágyi Erzsébet fasor 22/c.; phone: +36-1-391-1400; email: [email protected]; website: www.naih.hu). Additionally, in case of a violation of your rights, you can turn to the courts. Upon request, we will inform you of the court with jurisdiction and the possibility of initiating legal proceedings.

    8. Data storage

    We retain your personal data only as long as necessary for legitimate business purposes. If you decide to stop using our services, you can deactivate your account, making your profile unavailable to other users. However, please note that this is not the same as deleting your profile, it merely deactivates it. If your profile remains inactive for a month, we will automatically delete it – unless you log in during that time, in which case we will reactivate it.

    If you choose to delete your account, we will ensure it is no longer visible to other users. However, please be aware that we will follow the guidelines below for deleting your personal data:

  • after account termination (three months in case of deletion, one month following a ban by us), we apply a "security retention period" during which we may retain data in case of unlawful or harmful behavior, and to provide information to investigating authorities;
  • we retain customer service records and supporting data for five years, and transactional data for eight years (in accordance with tax and accounting regulations);
  • for legitimate business interests, we may retain data, for example, if a user has violated our security principles or been banned due to irregular behavior, to prevent the creation of a new account;
  • if an issue, claim, or dispute requires access to relevant information, we will retain the data to fulfill our legal obligations.

    • Please note that even if you remove information from your profile or delete your account, copies of that information may still be visible or accessible if it has been shared with others. Unfortunately, we cannot control or take responsibility for this. If you have provided third parties with access to your personal data, they may retain it according to their own terms and privacy policies.

    9. Data protection incidents

    A data protection incident refers to a breach of security that leads to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data being transmitted, stored, or otherwise processed. In the event of such an incident, we ensure that it is promptly reported to the National Authority for Data Protection and Freedom of Information, unless the incident is deemed not to pose a risk to the rights and freedoms of the data subjects.

    We maintain a record of any incidents and the actions taken in response.

    If the data protection incident is deemed severe, meaning it is likely to result in a high risk to the rights and freedoms of the data subjects, we reserve the right to notify all affected parties of the incident without undue delay.

    10. Changes to the Privacy Policy

    As our app evolves and we test and implement new methods to provide the best possible user experience, we may update or modify this Policy accordingly. We strive to keep you informed when we make changes that we consider significant. However, we encourage you to periodically review our Policy to understand any changes and decide whether you wish to continue using our app.