DEGEN ⚡ — Privacy Policy
Last updated: 2026-07-04
DEGEN is a parody app. Without an account, nothing leaves your device. Once you sign in to use the social features you choose what to share — and the App always shows a night's visibility (Public / Friends / Just me) right above the button before you post it. This policy explains what data the App handles.
Who we are
The App is provided by George Leonard Batca (private individual, the Netherlands) — the data controller under the GDPR ("we," "us"). Contact: george.leonard.batca@gmail.com.
The short version
DEGEN can be used two ways. Without an account, you can browse the public Discover feed read-only — nothing is sent to us. With a DEGEN account (Sign in with Apple or email), it becomes a social app: posting a night, following people, commenting, "respecting," attaching photos, or broadcasting "I'm out tonight" presence stores that data on our backend so the social features work. A new night defaults to Public (discoverable by anyone on DEGEN); the visibility you'll publish with — Public, Friends, or 🔒 Just me — is shown above the Post button, and you can switch it before posting. You stay in control of what you share: you can change a night's visibility, or delete your posts or your whole account, at any time (see below).
Data processors and third parties we send data to
To run the App we rely on the following service providers. They process data on our behalf or as needed to deliver the feature you used; each has its own privacy terms:
- Supabase — our backend: database, authentication, photo storage, and push-notification delivery. Stores your account, posts, photos, social graph, device push token, and presence.
- Apple — if you use Sign in with Apple, Apple authenticates you and provides a private identifier (and, if you allow it, a private-relay email). Apple also delivers push notifications via APNs. Your use of the App is also subject to Apple's own privacy practices.
- OpenStreetMap routing (
routing.openstreetmap.de, OSRM) and CARTO map tiles — when the App draws your route on the map, it sends the venue coordinates of your stops to the OSRM routing service to compute the walking path, and requests map-tile images from CARTO. These requests necessarily expose your IP address and the route coordinates to those providers. We do not send your account identity to them.
We do not use any third-party advertising or analytics SDK, and we do not share your data with data brokers. The App has no in-app purchases, and we never receive or store any card or payment details.
Data stored on your device only
Using the device's local storage, the App keeps: your alias and emoji; your logged nights out (the venues/stops you entered, the city, crew size, an optional title, and a timestamp); streaks, trophies, and points; your theme choice; small interface flags (e.g. whether a one-time tip has already been shown); and your record of consent (that you confirmed you're 18+ and agreed to the Terms). This data stays on your device and is deleted when you delete the App. Note: any venue or city names you type are free-text you choose to enter — avoid typing anything you don't want stored.
Data shared only if you join a squad
If you create or join a squad, the following is sent to our squad server so the leaderboard can work: your chosen alias, emoji, rank label, and your weekly Degen Points total, associated with a random anonymous identifier generated on your device. This identifier is not your name, email, Apple ID, or device ID. Squad scores reset weekly. If you never join a squad, no data leaves your device. You can leave a squad at any time from the Squad tab.
Data shared if you create a DEGEN account (social features)
The social features are entirely optional. If you choose to sign in (e.g. with Sign in with Apple) and post or interact, the following is stored on our backend (Supabase):
- Your account & profile: an account identifier, your @handle, alias, emoji, and optional bio. If you use Sign in with Apple, Apple gives us a private identifier; if you opt to share your email it may be a private relay address. We never receive your Apple password.
- Posts you choose to share: the night's title, venues/stops, city, crew size, points, and any photo you attach, plus whether you marked it Public (anyone can discover it) or Friends (only people who follow you).
- Social interactions: who you follow (follows are consent-based — they stay pending until the other person accepts), the "respects" (likes) and comments you make.
- "I'm out tonight" presence: if you turn on presence, the city you type in is broadcast to your followers so they can see you're out, until you turn it off or it expires. This is optional and off unless you enable it.
- Your "vibe" & budget preferences: if you set them, your saved venue-vibe tags (e.g. "Craft & cask," "Techno & clubs") and budget band are stored with your account to personalise the venues we suggest. They describe the kinds of places you like — not anything you consume.
- Venue accounts (businesses only): if you operate a pub/club account and claim a venue, we store the business/venue details and the offers or announcements you post so we can show and moderate them. Venue offers are commercial content you publish; see the Terms for the venue posting rules.
- Device push token: if you allow notifications, we store your device's push token so we (via Apple/Supabase) can notify you about follows, respects, and comments.
- Safety data: if you report content or block a user, we store that report/block so we can act on it.
You control what you share: when you're signed in, a new night defaults to Public (anyone on DEGEN can discover it). You pick Public, Friends, or 🔒 Just me for each night before you post it, and the choice is shown above the Post button. A night kept Just me is private to you — it is never shown in any feed or to other users (it syncs to your account's private night log so you keep it across devices, but it is not published). You can change a night's visibility or delete it at any time, and you can request deletion of your whole account and its data by contacting us at the email above.
Location for "Near Me" (precise, optional, in-use only)
If you turn on "Near Me," the App asks iOS for your device location to show nearby venues, walking distances, and how many people are out near you. Specifics:
- In-use only. This location is used only while you're actively using the App ("When In Use"). The App does not request background location for this feature.
- Not stored by us. Your device coordinates are not stored on our backend, not logged to your account, and not shared with any advertiser or data broker. They are used in the moment to sort venues by distance and then discarded.
- Where coordinates go: as with the route map, your coordinates are sent to the OpenStreetMap/CARTO map and routing services to draw the map and compute walking distance — which necessarily exposes your IP and those coordinates to those providers (see "Data processors" above) — but never tied to your account identity.
- "X out nearby" is not location-tracking. The count of people "out nearby" is derived from other users' optional "I'm out tonight" presence, not from tracking anyone's device location.
- Optional & revocable. You can deny or revoke the location permission at any time in iOS Settings. If you do, the rest of the App still works — "Near Me" simply falls back to the city you type in, exactly as before.
What we do NOT collect
No real name or phone number is required (an account uses Sign in with Apple or an email only). No advertising identifier (IDFA), no third-party advertising or analytics SDKs, and no contacts access. Location: by default the only location we handle is the city you type; the one optional feature that uses device location is "Near Me," which uses your precise location only while the App is open and does not store it on our backend (see "Location for 'Near Me'" above). No background location, ever. No health data — the App never reads heart rate, Apple Health, or any fitness data. No purchase data — the App has no in-app purchases. We do not use your data to track you across other companies' apps or websites, we do not sell or share personal data with data brokers, and there are no ads.
Share cards
Share cards are images generated on your device. When you tap Share, your device's operating system passes the image to whatever app you choose. We never receive it.
App Store privacy label (nutrition label)
For transparency, our App Store "App Privacy" label declares the following data types:
- Precise Location — App Functionality (the "Near Me" venue discovery feature). Used in-app to sort nearby venues and not stored; not used for tracking or advertising.
- Contact info (email), user content (posts, photos, comments), and identifiers (user id) as already described above for the social account features.
Maintenance note: keep this label in sync with the code (App Store Guideline 5.1.1). If a feature that collects new data types ships later (e.g. purchases, or any Apple Watch functionality), both this policy and the App Privacy label must be updated first.
Children
DEGEN is rated 17+ and intended for adults (18+). It is not directed to children, and we do not knowingly collect data from anyone under 18.
Your rights (GDPR / CCPA and similar)
If you create an account, you have the right to access, correct, export, and delete the personal data we hold about you, to object to or restrict certain processing, and to withdraw consent at any time. In the App you can edit your profile, change a night's visibility, and delete individual posts. To export your data or delete your entire account and its data (posts, photos, social graph, presence, push token), contact us at the email above and we will action it. Data you keep "Just me" / off-account lives only on your device and is removed when you delete the App. We do not sell personal information. EU/UK users may also lodge a complaint with their local data-protection authority.
Security & retention
Account data is held in our Supabase backend, protected by authentication and row-level security so users can only access what they're permitted to. Local-only data is protected by your device's own security. We retain account data for as long as your account exists and delete it on account deletion (subject to short backup-retention and any legal hold). No system is perfectly secure, but we minimize risk by collecting as little as we need.
International users
If you use the App outside the Netherlands, the data you share may be stored and processed on our providers' servers (Supabase, Apple, and the map/routing providers above), which may be located in other countries with different data-protection laws.
Changes
We may update this policy; we will revise the "Last updated" date and, where appropriate, note changes in the App.
Apple
Your use of the App is also subject to Apple's privacy practices for the App Store, which we do not control.
DEGEN is satire. Pace yourself — and drink water, legend. 💚