Legal

Privacy Policy

Last updated: 8 June 2026

This is a first operational draft for Qiela’s beta. It should be reviewed and adapted before public launch, especially if Qiela adds analytics, payments, advertising, or third-party integrations beyond those listed here.

1. Who we are

Qiela is a location-based chat application centered around salons, managing user accounts, profiles, map discovery, location-bound chats, and presence validation. You can contact us at hello@qiela.app.

2. Information we collect

Depending on how you use Qiela, we may collect:

• Account information: phone number, verification status, account identifiers, and session information.
• Profile information: real name, public handle, email address, birthdate, profile image, and optional profile details you choose to add.
• Salon and access data: salon memberships, invite links, QR tokens, location-based access checks, and presence session records.
• Device and technical data: app version, device type, IP address, logs, crash information, and basic security events.
• Communications: messages you send to us by email or support channels.

3. SMS verification

Qiela may use SMS one-time passcodes to verify phone numbers during signup or login. We use a third-party provider, currently Twilio, to send and verify these messages. The provider processes the phone number and verification metadata needed to deliver and validate the code.

4. How we use information

We use information to:

• create and secure user accounts;
• verify phone numbers and prevent abuse;
• manage salon access, invites, QR links, and presence sessions;
• store and serve profile images;
• operate, debug, and improve the service;
• respond to support, security, and legal requests.

5. Legal bases

Where EU or UK data protection law applies, we rely on legal bases such as performance of a contract, legitimate interests in operating and securing the service, consent where required, and compliance with legal obligations.

6. Sharing with service providers

We may share limited data with service providers that help us operate Qiela, including hosting providers, database providers, SMS verification providers, object storage providers, email/support tools, and security or logging services. These providers are used only as needed to provide and secure the service.

7. Retention

We keep personal data only as long as needed for the purposes described above, including account operation, security, backup, audit, and legal requirements. Some technical logs may be retained for a shorter period than account information.

8. Security

We use reasonable technical and organizational measures to protect Qiela, including access controls, environment-separated secrets, HTTPS, and restricted production access. No online service can guarantee absolute security.

9. Your choices and rights

You may contact us to request access, correction, deletion, restriction, portability, or objection where applicable. You may also ask us to delete your account. Contact hello@qiela.app.

10. Children

Qiela is intended for individuals 15 and older. We do not knowingly collect information from children or allow under-15 accounts. If you believe a child has provided personal data, contact us.

11. International transfers

Qiela and its providers may process data in countries other than your country of residence. Where required, we use appropriate safeguards for international transfers.

12. Changes

We may update this Privacy Policy as Qiela develops. The updated version will be posted on this page with a new “Last updated” date.