Legal

Privacy Policy

How we collect, use, and protect your personal data.

Last updated: March 2026

1. Introduction

Welcome to MyGigFlow ("the App", "we", "us", or "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, store, and share your information when you use our mobile application and related services.

By using MyGigFlow, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect the following types of information when you use MyGigFlow:

  • Account information: Your name, email address, phone number, and profile photo when you register.
  • Band and event data: Information you enter about your band, gigs, rehearsals, tasks, setlists, riders, and payments.
  • Usage data: Information about how you use the app, including features you interact with and actions you take.
  • Device information: Device type, operating system, app version, and push notification tokens.
  • Communication data: Messages sent through the in-app chat features.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the MyGigFlow service.
  • Enable real-time collaboration between band members.
  • Send push notifications about events, tasks, and band activity.
  • Improve and develop new features for the app.
  • Respond to your support requests and questions.
  • Ensure the security and integrity of the service.

4. How We Share Your Information

We do not sell your personal data. We may share your information in the following limited circumstances:

  • Within your band: Information you add (profile, availability, attendance) is visible to other members of your band(s) within the app.
  • Service providers: We use trusted third-party services to operate MyGigFlow, including Supabase (database and authentication) and RevenueCat (subscription management). These providers only process data on our behalf and in accordance with our instructions.
  • Legal obligations: We may disclose information if required by law or to protect the rights, safety, and security of our users.

5. Data Storage and Security

Your data is stored securely using Supabase, a trusted cloud database provider. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

Data is stored within the European Union and is processed in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the service. If you delete your account, we will delete your personal data within 30 days, except where we are required by law to retain it longer.

7. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal data:

  • Right of access: You can request a copy of the personal data we hold about you.
  • Right to rectification: You can request correction of inaccurate or incomplete data.
  • Right to erasure: You can request deletion of your personal data ("right to be forgotten").
  • Right to restriction: You can request that we restrict the processing of your data.
  • Right to data portability: You can request your data in a structured, machine-readable format.
  • Right to object: You can object to processing of your personal data in certain circumstances.

To exercise any of these rights, please contact us at info@mygigflow.com.

8. Push Notifications

With your permission, we send push notifications to inform you about band activity, events, tasks, and messages. You can disable push notifications at any time through your device settings.

9. Children's Privacy

MyGigFlow is not intended for use by children under the age of 16. We do not knowingly collect personal data from children. If you believe we have collected information from a child, please contact us so we can take appropriate action.

10. Third-Party Services

MyGigFlow uses the following third-party services:

  • Supabase - Database, authentication, and real-time services. Privacy Policy
  • RevenueCat - Subscription and in-app purchase management. Privacy Policy
  • Expo / React Native - App framework and push notification delivery.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by updating the "Last updated" date at the top of this page and, where appropriate, by sending a notification through the app. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: