Privacy Policy
Last updated: July 18, 2025
Albora ("we", "our", or "us") is committed to protecting your privacy. This policy explains how we collect, use, store, and protect your personal information when you use the Albora mobile app and website.
1. Data We Collect
When using our app, we may collect the following personal data from your TikTok profile through the TikTok Login Kit:
- TikTok user ID (union_id)
- Username
- Display name
- Profile avatar URL
2. Purpose of Data Use
We use this information strictly for internal functionality, including:
- User authentication
- Displaying your profile in events or tournaments
- Event invitations and matchmaking
- Push and in-app notifications
2.1 Profile Picture Analysis
With your consent, we analyze your TikTok profile picture to generate a personalized event poster. This is done through an OpenAI-powered image interpretation process that does not recognize or store real facial data.
The process involves:
- Sending your profile picture to an OpenAI API to generate a visual description (e.g., "young man smiling outdoors").
- Using that description with DALL·E 3 to generate a themed event poster.
We use OpenAI services in accordance with their Privacy Policy. No biometric or identifiable data is stored or used for facial recognition.
You may disable this feature at any time in the app by navigating to Profile → Settings → Disable profile picture analysis.
2.2 Controlling Event Invitations
You can decide whether other users are allowed to invite you to events. Invitations are enabled by default, but you may disable them in the app under Profile → Settings → Privacy → Allow event invitations. When disabled, other users will see a warning if they attempt to invite you and the invitation will be blocked.
3. Legal Basis
Your data is processed based on your explicit consent given during the TikTok login process. You can withdraw this consent at any time by contacting us.
4. Data Retention
We retain your data as long as your account remains active. Inactive accounts may be purged after 12 months of inactivity, unless legally required to keep them longer.
5. Data Sharing and Third Parties
We do not sell, trade, or share your personal data with any third parties. All information is securely stored on our backend (Supabase) and protected by role-based access.
6. Data Security
We apply industry-standard security practices such as HTTPS encryption, token-based access, and database-level security rules. However, no system is 100% secure. Users are responsible for protecting their devices and credentials.
7. Your Rights
You have the right to:
- Access the personal data we hold about you
- Request correction or deletion of your data
- Withdraw your consent at any time
- Submit a complaint if your rights are violated
To exercise these rights, please contact us at support@albora-mobile.com.
8. International Transfers
Your data may be processed and stored outside of your country of residence, including in the EU or the US, where our infrastructure providers operate.
9. Children’s Privacy
Albora is not intended for users under 13 years of age. We do not knowingly collect data from minors without parental consent.
10. Updates to This Policy
This Privacy Policy may be updated from time to time. We will notify you of any changes via the app or website so you can review the updated policy.
11. Contact Us
If you have any questions or concerns about this Privacy Policy, contact us at: