Skip to content
Movin
中文

Privacy Policy

Last updated: May 15, 2026

Introduction

This Privacy Policy describes how Movin (“we”, “us”, or “our”) collects, uses, and shares information when you use the Movin mobile application and the website at movin-app.com (collectively, the “Service”). By using the Service, you agree to the practices described here.

This document is a working draft. It will be reviewed by legal counsel before public launch. If you spot something that should change, email [email protected].

What we collect

We collect the minimum information needed to run the Service.

  • Account data — when you sign up, we receive your email, display name, and profile photo from the chosen identity provider (Google, Apple, or SMS). For SMS sign-in, we store your phone number.
  • Profile data — sports you’ve selected, your bio, your activity history, and your friends list.
  • Activity data — activities you host or join, including title, sport, time, location pin or GPX route, headcount, and chat messages.
  • Device & usage data — app version, OS version, anonymous crash logs, and aggregated analytics events (e.g. “user opened Explore tab”). No personally identifying information is attached unless you contact support.
  • Location data — only when you explicitly grant the permission, and only used to centre the map and recommend nearby activities. Location is never tracked in the background.

How we use it

  • To operate the core Service: showing activities, matching participants, delivering chat messages, sending push notifications you opted into.
  • To improve the Service: aggregated, anonymised analytics to understand which features are useful.
  • To keep the Service safe: spam, abuse, and fraud detection.
  • To comply with applicable law.

We do not sell your personal data. We do not run third-party ads inside the app.

Third-party services

The following services process limited data on our behalf:

  • Supabase — authentication, database, and file storage. Data is stored on Supabase infrastructure in the AWS region we’ve designated.
  • Google Sign-In, Apple Sign-In — identity provider sign-in flows.
  • Map providers (MapLibre / MapTiler) — render the map. Your IP address is shared with the tile server when the map loads.
  • Crash reporting — anonymised stack traces only.

These providers operate under their own privacy policies. We have signed data-processing agreements where required.

Your rights

Depending on where you live, you may have the right to:

  • Request a copy of your personal data.
  • Correct inaccurate data.
  • Delete your account and associated personal data.
  • Withdraw consent for processing.

To exercise any of these rights, email [email protected] from the address on your account. We will respond within 30 days.

Data retention

  • Account data — kept until you delete your account.
  • Activity history — kept until you delete your account, after which it is anonymised in past activities so other participants’ history remains intact.
  • Crash logs — 90 days.
  • Anonymous analytics — up to 14 months.

Children’s privacy

Movin is not intended for users under 13 years old. We do not knowingly collect personal data from children under 13. If you believe a child has provided us personal data, please contact us so we can remove it.

Changes

We may update this Privacy Policy. Material changes will be announced in-app and via email to active users. The “Last updated” date at the top reflects the most recent revision.

Contact

Questions? Email [email protected]. For abuse or safety concerns, use [email protected].