Gigavibe logo
Home Terms Privacy

Privacy Policy of Gigavibe

This policy explains what personal data Gigavibe collects, why we collect it, who helps us process it, and the rights you have over it.

Latest update: July 4, 2026

Who we are

The Gigavibe mobile application (the "App") and the website gigavibe.com (together, the "Service") are operated by:

Outstandly Ventures Ltd
86-90 Paul Street, London, EC2A 4NE, United Kingdom

We are the data controller for the personal data described in this policy.

Contact email: cellardoor@gigavibe.ai

The data we collect

Depending on how you use the Service, we collect the following categories of personal data, either directly or through the service providers listed in this policy:

  • email address
  • password
  • payment info
  • usage data
  • device information
  • advertising identifiers (IDFA / Google Advertising ID)
  • geographic position
  • language
  • trackers
  • content you submit

Account data

When you create an account we ask for an email address and a password. If you register through Sign in with Apple, Apple may give us a private relay address instead of your real email address, keeping it hidden from us.

Content you submit

The App's purpose is to generate captions and replies. To do that, it processes the photos, screenshots and text you choose to submit. This content is processed to produce your results and is stored using the infrastructure providers described below. We do not sell your content or use it for advertising.

Purchase data

Payments are handled entirely by the Apple App Store or Google Play together with our subscription provider. We receive confirmation of your purchases and subscription status, but we never receive your card number or full payment credentials.

Usage and device data

When you use the Service, we and our providers automatically collect technical and interaction data: IP address, device model, operating system and version, system language, approximate location derived from your IP address or device settings, the screens and features you use, session length, and crash and performance diagnostics.

Identifiers and trackers

Where you have allowed it, the App uses device identifiers — including the Apple Identifier for Advertisers (IDFA) and the Google Advertising ID — and similar SDK-level technologies to recognize your device for the purposes described below.

Most of the data above is needed for the App to work; if you choose not to provide data marked as required (for example, an email address at registration), some or all of the Service may be unavailable. If you are unsure whether specific data is required, contact us. If you submit personal data belonging to someone else, you are responsible for having the right to do so.

Why we process your data, and on what legal basis

Under the UK GDPR and the EU GDPR, we need a legal basis for each purpose we process data for:

  • Providing the Service — generating captions and replies from the content you submit, operating your account, and delivering purchased features. Legal basis: performance of our contract with you.
  • Payments and subscription management — confirming purchases and keeping your subscription active across devices. Legal basis: performance of our contract with you.
  • Analytics and product improvement — understanding how the App is used, diagnosing problems, and improving features. Legal basis: our legitimate interest in improving the Service, or your consent where required.
  • Install attribution — measuring which campaigns and channels bring users to the App. Legal basis: our legitimate interest in measuring marketing effectiveness, or your consent where required.
  • Advertising and personalization — showing personalized recommendations and, where applicable, interest-based advertising. Legal basis: your consent where required by law.
  • Messages and push notifications — sending you service messages and notifications. Legal basis: your consent (you can withdraw it in your device settings at any time).
  • Security, fraud prevention and legal compliance — detecting abuse, keeping system logs, complying with legal obligations and responding to lawful requests. Legal basis: our legitimate interests and compliance with legal obligations.

Where we rely on legitimate interests, you can ask us to explain the balancing assessment, and you can object as described in the "Your rights" section. Where we rely on consent, you can withdraw it at any time without affecting past processing.

The service providers we work with

We use a small number of specialist providers to run the Service. Each acts as described below and under its own privacy policy, which we encourage you to read.

Sign in with Apple

Registration and authentication, provided by Apple Inc. (United States). Data involved: email address, password. If you choose to hide your email, Apple generates a relay address that forwards to your real inbox. Apple privacy policy.

Firebase Cloud Storage

Hosting and backend infrastructure, provided by Google LLC (United States). Data involved: usage data and the content processed by the App, plus other data described in Google's privacy policy.

RevenueCat

Subscription management, provided by RevenueCat, Inc. (United States). RevenueCat links your purchases to your app account so your subscription works reliably, and gives us purchase analytics. Data involved: usage data, trackers, purchase history. Privacy policy; opt-out requests: compliance@revenuecat.com.

Superwall

Used to display subscription plans and offers inside the App. Data involved: usage data related to the screens it displays. Privacy policy.

AppsFlyer

Install attribution and marketing analytics, provided by AppsFlyer Ltd (Israel). Data involved: trackers and usage data. Privacy policy; opt-out: privacy@appsflyer.com.

UXCam

App analytics that help us understand user journeys and the issues people run into while using the App. Data involved: usage data and interaction recordings within the App. Privacy policy.

Clerk.io

Personalized recommendations and content, provided by Clerk.io ApS (Denmark). Clerk.io also gives us analytics about how recommendations perform. Data involved: trackers and usage data. Privacy policy.

OneSignal

Push notifications and messaging, provided by Lilomi, Inc. (United States). OneSignal lets us send notifications to single devices, groups or segments. Depending on the permissions you have granted on your device, the data involved may include: email address, geographic position (including precise GPS-level location or WiFi information where permitted), language, trackers, advertising identifiers (IDFA / Google Advertising ID), usage data, and apps installed on the device. OneSignal may use this data for interest-based advertising, analytics and market research of its own — see OneSignal's privacy policy and its opt-out section.

Opting out of push notifications: disable notifications for Gigavibe in your device's notification settings at any time.

Opting out of OneSignal's advertising features: use your device's advertising settings, described in the next section.

Apple App Store payments

In-app purchases on iOS are processed by Apple Inc. (United States). Data involved: device information, email address, payment info, trackers, usage data — processed by Apple as described in the App Store privacy policy.

Google Play Store

The App is distributed on Google Play, operated by Google LLC (United States). Google collects usage and diagnostics data from your device (largely on an opt-in basis) and shares aggregate information with us. You can manage this in your device settings — see Google's guide and privacy policy.

Advertising identifiers and how to opt out

You control whether apps can use your device's advertising identifier:

  • iOS: the App may only track you across other companies' apps and websites if you allow it in the App Tracking Transparency prompt. You can change this any time in Settings > Privacy & Security > Tracking.
  • Android: in Settings > Google > Ads (or Settings > Privacy > Ads) you can reset or delete your advertising ID and opt out of ads personalization.

Individual providers listed above may offer additional opt-outs through the links given for each of them.

Cookies and trackers

The gigavibe.com website is a static site: it does not set cookies and does not run analytics or advertising trackers.

The App does not use browser cookies, but it does use trackers in the wider sense — device identifiers, SDK identifiers and similar technologies operated by us and the providers listed above — to provide the Service, measure how it is used, attribute installs, send notifications and support the personalization and advertising purposes described in this policy. Your choices for limiting these trackers are described in the sections above.

Where your data is processed

Your data is processed at our offices in the United Kingdom and by our providers in the locations listed above, including the United States, Israel and Denmark. Whenever personal data leaves the UK or the European Economic Area, we rely on recognized safeguards: adequacy decisions or adequacy regulations covering the destination country, or standard contractual clauses (including the UK addendum or International Data Transfer Agreement) with the receiving provider. You can contact us for more information about the safeguard applied to a specific transfer.

How long we keep data

We keep personal data only as long as needed for the purpose it was collected for:

  • Account data and submitted content are kept while your account is active, and deleted or anonymized after the account is closed, except where we must keep records longer.
  • Data processed to perform our contract with you is kept until the contract is fully performed.
  • Data processed for our legitimate interests is kept as long as needed for those interests.
  • Purchase records may be retained for as long as tax and accounting laws require.
  • Data processed with your consent is kept until you withdraw consent, unless another basis applies.

Once the applicable retention period ends, the data is deleted, and the rights described below can no longer be exercised over it.

Your rights

To the extent granted by applicable law — including the UK GDPR and the EU GDPR — you have the right to:

  • Access your personal data and receive a copy of it, along with information about how it is processed.
  • Rectify inaccurate or incomplete data.
  • Erase your data ("right to be forgotten").
  • Restrict processing, in which case we will only store the data.
  • Object to processing based on legitimate interests, on grounds relating to your situation. Where data is processed for direct marketing, you can object at any time, free of charge and without giving a reason, and we will stop.
  • Port your data (data portability) — receive it in a structured, commonly used, machine-readable format and have it transmitted to another controller where technically feasible.
  • Withdraw consent at any time, where processing is based on consent.
  • Complain to your supervisory authority — in the UK, the Information Commissioner's Office (ICO); in the EU, the data protection authority of your country.

You are also entitled to information about the legal basis for transfers of your data abroad and the safeguards we apply.

How to exercise your rights

Email us at cellardoor@gigavibe.ai. Requests are free of charge and we will respond as early as possible, and always within one month. Where we have disclosed your data to recipients, we will notify them of any rectification, erasure or restriction, unless this proves impossible or involves disproportionate effort.

Children

The Service is not directed at children under 13, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.

Security

We apply appropriate technical and organizational measures to protect your data against unauthorized access, disclosure, alteration or destruction. Data is processed using computers and IT tools, following procedures strictly tied to the purposes described here. Besides us, data may be accessible to personnel involved in operating the Service (administration, legal, system administration) and to the appointed providers listed in this policy, acting as processors where applicable. An up-to-date list of these parties is available from us on request.

System logs and legal disclosures

For operation and maintenance, the Service and its providers may keep system logs — files recording interactions, which can include IP addresses.

We may use personal data to establish, exercise or defend legal claims arising from misuse of the Service, and we may be required to disclose personal data to public authorities upon lawful request.

More details about the processing of your personal data are available from us at any time via the contact details above.

Changes to this policy

We may update this policy at any time. We will post the new version on this page, update the date at the top, and — for material changes — notify you inside the App or via the contact details we hold, as far as technically and legally feasible. If a change affects processing based on your consent, we will collect new consent where required. The version in force before a change governs the period before that change.

Definitions

Personal data

Any information that directly or indirectly identifies, or can identify, a natural person.

Usage data

Information collected automatically through the Service, such as IP addresses, device and OS details, request times, features used, time spent on screens, and other parameters about your device and environment.

Tracker

Any technology — cookies, unique identifiers, web beacons, embedded scripts, fingerprinting and similar — that enables recognizing a user or device, for example by storing or accessing information on the device.

User / Data subject

The individual using the Service, to whom the personal data refers.

Data controller

The entity that determines the purposes and means of processing — for this Service, Outstandly Ventures Ltd, unless stated otherwise.

Data processor

An entity that processes personal data on behalf of the controller, as described in this policy.


Legal information

This privacy policy relates solely to Gigavibe, unless stated otherwise within this document.