StayAlive Privacy Policy
Last updated: January 2026
This Privacy Policy is in compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council ("GDPR").
StayAlive is an application developed and operated by Collabwire P.S.A. with headquarters in Warsaw.
1. Data Controller
The controller of personal data is:
Collabwire P.S.A.
ul. Długa 29
00-238 Warsaw, Poland
KRS: 0000988718
NIP: PL 525-292-09-49
Contact for privacy matters:
2. Scope of Application
This Privacy Policy applies to personal data processed in connection with the use of:
- the StayAlive mobile application,
- the stayalive.love website,
- related support and communication services.
3. What Personal Data We Collect
3.1 User Account Data
When creating an account, we process:
- email address,
- encrypted password (if applicable),
- OAuth identifiers (e.g., Apple ID, Google ID),
- account creation date,
- subscription status.
The legal basis for processing is Article 6(1)(b) GDPR (performance of a contract).
3.2 Protected User Data
To enable check-ins, we process a limited set of data:
- first name or nickname,
- assignment to the primary user account.
We do not collect identification data such as PESEL, home address, or date of birth.
The legal basis for processing is Article 6(1)(b) GDPR.
3.3 Operational Data (Check-ins)
As part of the Application's operation, we process:
- check-in date and time,
- check-in status (e.g., completed / skipped),
- protected user identifier.
This data does not constitute health data within the meaning of Article 9 GDPR.
3.4 Alert and Notification Configuration
We process technical data necessary for notification operation:
- alert configuration,
- device identifiers (e.g., push tokens).
This data is used solely for the Application's functionality.
3.5 Payments and Subscriptions
StayAlive does not process or store payment card data.
We process only:
- transaction identifier,
- payment status,
- selected subscription plan.
Payments are processed by external providers (e.g., Apple, Google, Stripe).
The legal basis is Article 6(1)(b) and (c) GDPR.
3.6 Communication
When contacting us, we process:
- email address,
- message content,
- contact date.
The legal basis is Article 6(1)(f) GDPR (legitimate interest of the controller).
4. What We Do Not Collect
StayAlive does not collect and does not process:
- health data,
- medical data,
- biometric data,
- location data,
- contact lists,
- content from other applications,
- advertising or profiling data.
5. Purposes of Data Processing
We process personal data for the purpose of:
- providing StayAlive services,
- performing check-ins and alerts,
- handling subscriptions,
- communicating with users,
- ensuring system security,
- fulfilling legal obligations.
6. Data Recipients
We use external technical service providers (e.g., hosting, push notifications, payments).
These entities process data solely on the basis of data processing agreements and in accordance with our instructions.
7. Transfer of Data Outside the EU
In case of transferring data outside the European Economic Area, we apply:
- Standard Contractual Clauses (SCC),
- other mechanisms compliant with GDPR.
8. Data Retention Period
Personal data is stored:
- for the duration of the account,
- until consent is withdrawn (if applicable),
- in accordance with applicable legal provisions.
After account deletion, data is permanently deleted or anonymized, unless the law requires further retention.
9. User Rights
You have the right to:
- access your data,
- rectification,
- deletion,
- restriction of processing,
- data portability,
- objection,
- withdrawal of consent at any time.
You also have the right to file a complaint with the President of the UODO.
10. Data Security
We apply technical and organizational measures appropriate to the risk, including encryption and access control.
11. Changes to Privacy Policy
The Policy may be updated.
We will notify you of significant changes at least 14 days in advance.
12. Contact
For privacy matters: