Privacy Policy

Version: 1.0 Effective Date: March 15, 2026 Last Updated: March 15, 2026

Intimassy ("the App") is developed and operated by Center Table Inc., based in Turkey. This Privacy Policy explains how we collect, use, store, retain, and delete your personal data, including health and sensitive data, when you use the App.

By using Intimassy, you consent to the data practices described in this policy. If you do not agree, please do not use the App.

1. Health and Sensitive Data We Collect

Intimassy is an intimate activity tracker. Due to the nature of the App, we collect and process health and sensitive personal data as defined under GDPR Article 9. This data is only collected when you voluntarily enter it into the App.

The following health and sensitive data may be collected:

Sexual Activity Logs (Entries)

  • Date of activity
  • Duration (in minutes)
  • Personal rating
  • Safety status (whether protection was used)
  • Initiator (who initiated: you, your partner, both, or spontaneous)
  • Orgasm counts (yours and your partner's)
  • Personal notes

Activity Details

  • Activity types (e.g., casual, oral, anal, and other sexual activity categories)
  • Places where activity occurred (e.g., bedroom, hotel, car, and other locations)
  • Sexual positions used, including custom positions with intensity levels
  • Partners involved in the activity

Partner Information

  • Partner name
  • Partner gender
  • Relationship type
  • Date added
  • Personal notes about the partner
  • Partner profile photo

Photos

  • Intimate photos attached to activity entries
  • Partner profile photos

All health and sensitive data listed above is used solely to provide you with the core features of the App: tracking, reviewing, and analyzing your intimate activity history for your personal use.

2. Personal Data We Collect

When you create an account, we collect:

  • Email address
  • Name or nickname
  • Gender
  • Authentication provider used (Google, Facebook, or email/password)
  • Firebase User ID (a unique identifier assigned to your account)

In-App Purchase Information

  • Product IDs of items purchased
  • Purchase tokens (for verification with Google Play)
  • Order IDs
  • Purchase status

3. Automatically Collected Data

The following data is collected automatically when you use the App:

  • Device information (manufacturer, model, operating system version)
  • App version
  • Timezone and language preferences
  • Firebase Cloud Messaging (FCM) token (for push notifications)
  • Crash reports and error logs (via Firebase Crashlytics)
  • App usage analytics (screen views, feature usage, via Firebase Analytics)
  • Facebook app events and advertiser ID (via Facebook SDK)

4. How We Use Your Data

We use your data for the following purposes:

  • Service Provision: To provide you with the core features of the App, including activity tracking, statistics, partner management, and cloud backup/sync.
  • Cloud Backup and Sync: To securely back up and restore your data across devices using your account.
  • Analytics: To understand how the App is used and improve our services (using aggregated, anonymized data).
  • Advertising: To display advertisements within the App (via StartApp). You can remove ads through an in-app purchase.
  • Push Notifications: To send you reminders and updates via Firebase Cloud Messaging.
  • Aggregated Community Statistics: To provide anonymized, aggregated statistics (e.g., average activity frequency) to all users. No individual data is identifiable in these statistics.
  • Purchase Verification: To verify in-app purchases and manage your feature entitlements.
  • Customer Support: To respond to your support requests and problem reports.
  • Security: To detect and prevent fraud, abuse, and security incidents.

5. Data Storage and Security

Local Storage

Your data is stored locally on your device in a SQLite database (via Android Room). This data is protected by Android's built-in application sandboxing.

Cloud Storage

If you use the cloud backup feature, your data is stored in Firebase Realtime Database and Firebase Storage (operated by Google).

Encryption

We take the security of your sensitive data seriously:

  • All backed-up data (activity entries, partner information, positions) is encrypted using strong, industry-standard encryption before being uploaded to our servers.
  • Each data entity (each entry, each partner, each position) is encrypted individually.
  • Photos are encrypted before being uploaded to Firebase Storage.
  • Encryption keys are derived using industry-standard key derivation functions.
  • All data in transit is protected by HTTPS/TLS encryption.
  • Your encrypted data cannot be read by us or by third parties without your encryption key.

Data Location

Your cloud data is processed and stored on Google Cloud infrastructure (Firebase), which may include servers located in the United States and other countries. See Section 11 for information about international data transfers.

6. Data Retention

Active Accounts

Your data is retained for as long as your account remains active. You can access, modify, or delete your data at any time.

Inactive Accounts

Accounts that have been inactive for 1 (one) year and do not have any active in-app purchases are automatically deleted. This includes complete removal of:

  • Your Firebase Authentication account
  • All data in Firebase Realtime Database (user profile, backups, preferences)
  • All files in Firebase Storage (photos)

Accounts with active in-app purchases are exempt from automatic inactive account cleanup.

Local Data

Local data stored on your device is deleted when you uninstall the App. Cloud data is not affected by uninstalling the App and will remain until you delete your account or the inactive account cleanup occurs.

Cloud Backups

Cloud backups are retained until you delete your account, manually clear your data, or your account is removed through the inactive account cleanup process.

Purchase Records

Purchase verification records (order IDs, purchase tokens, product IDs) are retained for as long as your account exists to prevent duplicate charges and to verify your entitlements.

Crash Reports and Analytics

Crash reports and analytics data are retained according to Firebase's standard retention policies (typically 90 days for crash data, 14 months for analytics data).

7. Data Deletion

In-App Account Deletion

You can delete your account and all associated data directly within the App by going to Settings and selecting "Clear User Data." This permanently and irreversibly deletes:

  • All local data (Room database on your device)
  • All data in Firebase Realtime Database (your user profile, all cloud backups, all preferences)
  • All files in Firebase Storage (all uploaded photos)
  • Your Firebase Authentication account

Deletion by Email Request

You may also request deletion of your account and data by emailing us at:

We will process your request within 30 days.

What Happens After Deletion

  • Deletion is permanent and cannot be undone. We cannot recover your data after deletion.
  • Aggregated, anonymized statistical data that was derived from your activity (and that cannot be used to identify you) may be retained.

What Happens When You Uninstall

  • Uninstalling the App deletes all local data stored on your device.
  • Cloud data (backups, photos, account) is NOT deleted by uninstalling. To delete cloud data, you must use the in-app "Clear User Data" option or contact us by email before uninstalling.
  • If you uninstall without deleting your account, your cloud data will be automatically removed after 2 years of inactivity (unless you have active purchases).

8. Third-Party Services

We use the following third-party services. Each service may collect and process data according to its own privacy policy:

Firebase Authentication (Google)

  • Data shared: Email address, display name, authentication credentials, sign-in metadata
  • Purpose: User account management and authentication
  • Privacy Policy: firebase.google.com/support/privacy

Firebase Realtime Database (Google)

Firebase Storage (Google)

Firebase Analytics (Google)

  • Data shared: App usage events, device information, user properties
  • Purpose: Understanding App usage patterns to improve our services
  • Privacy Policy: firebase.google.com/support/privacy

Firebase Crashlytics (Google)

  • Data shared: Crash reports, stack traces, device information, app version
  • Purpose: Identifying and fixing bugs and crashes
  • Privacy Policy: firebase.google.com/support/privacy

Firebase Cloud Messaging (Google)

StartApp (Start.io)

  • Data shared: Device information, advertising identifiers, ad interaction data, IP address
  • Purpose: Displaying advertisements within the App
  • Note: You can remove all StartApp advertising by purchasing the "Remove Ads" feature within the App
  • Privacy Policy: start.io/policy/privacy-policy-site

Facebook SDK (Meta)

  • Data shared: App events, device information, advertiser ID
  • Purpose: Analytics and app event tracking
  • Privacy Policy: facebook.com/privacy/policy

Google Play Billing (Google)

  • Data shared: Purchase tokens, order IDs, product IDs
  • Purpose: Processing in-app purchases and verifying entitlements
  • Privacy Policy: policies.google.com/privacy

9. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds under GDPR Article 6:

Explicit Consent (Article 6(1)(a) and Article 9(2)(a))

For processing health and sensitive data (sexual activity logs, partner information, intimate photos), we rely on your explicit consent, which you provide when you create an account and begin using the App. You may withdraw your consent at any time by deleting your account.

Performance of Contract (Article 6(1)(b))

For processing data necessary to provide the App's services to you, including account management, cloud backup, and purchase verification.

Legitimate Interest (Article 6(1)(f))

For processing data for analytics (to improve the App), security (to detect and prevent abuse), and crash reporting (to maintain App stability). We have assessed that these interests do not override your rights and freedoms.

10. Your Rights Under GDPR

If you are in the European Economic Area (EEA) or in a jurisdiction with similar data protection laws, you have the following rights:

  • Right of Access: You may request a copy of the personal data we hold about you.
  • Right to Rectification: You may request correction of inaccurate personal data. You can also update your data directly within the App.
  • Right to Erasure: You may request deletion of your personal data. You can do this directly in the App (Settings > "Clear User Data") or by contacting us.
  • Right to Data Portability: You may request your data in a structured, commonly used, machine-readable format.
  • Right to Restriction of Processing: You may request that we restrict the processing of your personal data under certain circumstances.
  • Right to Object: You may object to the processing of your personal data where we rely on legitimate interest.
  • Right to Withdraw Consent: You may withdraw your consent at any time. Withdrawing consent does not affect the lawfulness of processing performed before withdrawal.
  • Right to Lodge a Complaint: You may file a complaint with a supervisory authority. In Turkey, this is the Turkish Personal Data Protection Authority (KVKK). If you are in the EU, you may contact your local Data Protection Authority (DPA).

To exercise any of these rights, contact us at info@centertable.club or centertableinc@gmail.com. We will respond within 30 days.

11. International Data Transfers

Your data may be transferred to and processed in countries outside of Turkey and the European Economic Area (EEA), including the United States, as our cloud infrastructure is provided by Google (Firebase), which operates servers globally.

These transfers are safeguarded by:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Google's compliance with applicable data protection frameworks
  • Encryption of your data before transfer

By using the App, you acknowledge and consent to the transfer of your data to these locations, subject to the safeguards described above.

12. Children's Privacy

Intimassy is intended for users aged 18 and older. We do not knowingly collect personal data from anyone under the age of 18. If we become aware that we have collected data from a person under 18, we will take steps to delete that data promptly.

If you believe that a child under 18 has provided us with personal data, please contact us at info@centertable.club.

13. In-App Purchases

The App offers the following in-app purchases: Platinum Pack (unlocks all features), Lock Feature (PIN/biometric app lock), Limitless Image Gallery, Limitless Partners, and Remove Ads.

When you make an in-app purchase:

  • The transaction is processed by Google Play. We do not collect or store your payment method details (credit card numbers, bank account information).
  • We store purchase tokens, order IDs, and product IDs in Firebase to verify your entitlements and prevent duplicate charges.
  • Purchase records are retained for as long as your account exists.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this policy.

For significant changes, we will notify you via email (if we have your email address) and/or through an in-app notice.

We encourage you to review this Privacy Policy periodically.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: