myhappi

Privacy Policy

Last updated: September 12, 2025

This Privacy Policy describes how myhappi ("we", "us", or "our") collects, uses, and discloses your personal information when you use our website and services (the "Services"). For the purposes of data protection laws in the EU/EEA and UK, we act as the data controller for the personal information described below.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for other operational, legal, or regulatory reasons. We will post the revised Privacy Policy here and update the "Last updated" date above.

What personal information we collect

We collect and process the minimum information needed to run the Service:

  • Nickname from your OAuth profile (e.g., Discord, X).
  • Email address from your OAuth provider.
  • Usage data such as IP address and basic device/browser information may be processed by our hosting and security providers for service operation, fraud prevention, and security.

How and why we use your information (lawful bases)

  • Provide and secure the Service (Art. 6(1)(b) GDPR – performance of a contract; Art. 6(1)(f) – legitimate interests).
  • Account recovery and support using your email (Art. 6(1)(b) and/or Art. 6(1)(f)).
  • Legal compliance where necessary (Art. 6(1)(c)).
  • We do not sell your data or use it for targeted advertising.

Cookies and similar technologies

We use essential cookies and similar technologies necessary to operate the Service. We do not use cookies for targeted advertising. Your browser may support signals like Global Privacy Control (GPC); where applicable, we will treat such signals as an opt-out of sharing/targeted advertising.

How we share information

We share personal information only with service providers who help us operate the Service:

  • Supabase (authentication and database).
  • Cloudflare (hosting/Pages/Workers; Cloudflare Images for assets).

These providers process data on our behalf under appropriate data processing terms. We do not sell personal information.

International transfers

Your information may be processed outside your country. Where we transfer personal information from the EU/EEA or UK to countries that do not provide an adequate level of protection, we rely on appropriate safeguards such as Standard Contractual Clauses.

Security and retention

We use reasonable technical and organizational measures to protect your information. No security measures are perfect. We retain personal information only as long as necessary to provide the Service, meet legal obligations, resolve disputes, and enforce agreements.

Your rights (EU/UK)

Subject to applicable law, you may have the right to:

  • Access a copy of your personal information.
  • Request correction of inaccurate information.
  • Request deletion of your personal information.
  • Restrict or object to certain processing.
  • Request data portability.
  • Withdraw consent where processing is based on consent.

You can exercise these rights by contacting us at [email protected]. To request account deletion, email us at [email protected] with subject "User account deletion request".

Complaints

If you have concerns about our processing, please contact us first. You may also lodge a complaint with your local data protection authority (for EEA residents) or the UK Information Commissioner’s Office (ICO).

Contact

For questions about this Privacy Policy or our practices, contact us at [email protected].