privacy policy
we built go to help you meet people through what you love. that doesn't work if we're sketchy with your data. here's exactly what we collect, why, and what you can do about it.
last updated: 19 may 2026
who we are
go ("we", "us") is the mobile app and website (go-app.co) operated by the maintainer of go. for any data question or request, email hello@sleeb.co.uk. we're the data controller for everything described below.
what we collect
when you sign up
- email address — to create your account and (rarely) email you about your account
- display name — what other go users see
- password (if email sign-in) — stored hashed by firebase; we never see it
- google account identifier (if you sign in with google) — only your email and basic profile, never your contacts or other data
when you use the app
- approximate location — to show you events nearby. we store geohashes (not exact coordinates) for events you host. your live location is only used in-session to query nearby events and is not stored on our servers.
- profile photo (if you upload one) — stored in firebase storage
- your interests — the activities you tell us you're into
- events you host or join — title, description, location, photo, attendees
- messages you send in event chats or direct messages
- friends, blocks, and reports you create
technical data
- device push token — so we can notify you about events and messages (only if you grant notification permission)
- crash reports — if the app crashes, we collect anonymous diagnostic data (device model, OS version, stack trace, your user id) via sentry to fix the bug
- basic web analytics on go-app.co — only what your browser sends with normal requests; no third-party trackers or ad cookies
what we don't collect
no contact upload. we never read your phone contacts or address book.
no ad tracking. we don't sell your data, we don't run third-party ad SDKs, and we don't share you with brokers.
no precise location history. your real-time location is used to find nearby events; we don't keep a trail of where you've been.
why we collect it
- to run the service — show you nearby events, deliver messages, keep your account working. (lawful basis: performance of our contract with you.)
- to keep go safe — moderate reports, enforce blocks, prevent spam. (lawful basis: our legitimate interest in a safe service, and compliance with app store rules.)
- to fix bugs — crash reports help us find and fix problems. (lawful basis: our legitimate interest in a working product.)
- to send push notifications — only when you opt in. (lawful basis: your consent, which you can withdraw any time in your phone's settings.)
who we share it with
we use a small number of trusted infrastructure providers. they process your data on our behalf, not for their own purposes:
- google firebase (authentication, firestore database, storage, hosting) — usa
- google maps platform (map rendering and place search) — usa
- apple push notification service / firebase cloud messaging — for delivering pushes
- sentry (crash reporting) — usa
- expo (push token routing) — usa
we don't sell your data. we don't share it with advertisers. we'll only disclose data to law enforcement if compelled by a valid legal order, and we'll push back where we reasonably can.
where it's stored
most data is stored on google's servers in the united states. when you're in the uk or eu, that means an international transfer. we rely on the standard contractual clauses approved by the european commission and uk authorities to make that transfer lawful.
how long we keep it
- account data — until you delete your account
- events and messages — until you delete the event or your account
- reports — kept for moderation history; retained while the service operates
- crash diagnostics — 90 days, then automatically purged by sentry
- marketing waitlist email — until we launch and email you, or until you ask to be removed
your rights
under uk and eu data protection law, you have the right to:
- access the personal data we hold about you
- correct anything that's wrong (most of it you can edit in the app)
- delete your data — there's a "delete account" button in your profile that wipes your events, chats, profile, and avatar; auth record is removed too
- port your data to another service in a common format
- object to a particular use, or withdraw consent for things you opted into
- complain to your data protection authority — in the uk, that's the information commissioner's office (ico.org.uk)
email hello@sleeb.co.uk and we'll respond within 30 days, usually faster.
children
go is for people aged 16 and over. we don't knowingly collect data from anyone under 16. if you think a child under 16 has signed up, email us and we'll delete the account.
security
we use firebase's built-in encryption in transit (https) and at rest. access to production data is limited to the operator of go. we follow standard security practices but no service can promise perfect security — if you reuse a password and another service is breached, your go account is at risk too. use a unique password.
changes to this policy
if we materially change how we use your data, we'll update this page and the "last updated" date, and notify you in-app or by email. continued use after the change means you accept the new version.
contact
questions, requests, or complaints: hello@sleeb.co.uk.