Last updated: 2026-06-05
This Privacy Policy explains how Latin Fire collects, uses, and protects your personal data, and the rights you have under the EU General Data Protection Regulation (GDPR). It is provided in good faith and is not legal advice.
1. Who controls your data
The data controller is Stichting Latin Fire, Blaak 526, 3011 TA Rotterdam, the Netherlands (KvK 97109738, BTW NL867914075B01). For any privacy question or request, contact info@latinfire.net.
2. What we collect
Account and profile data (name, email, city, dance styles, skill, leader/follower role, optional organiser/performer details); content you create (events, line-ups, messages, images); usage and device data (log data, approximate location from your chosen city, cookies/local storage); and your communication preferences.
3. Our legal basis
We process data on these bases: performance of our contract with you (running your account and the Service); your consent (marketing emails, which you can withdraw anytime); our legitimate interests (keeping the Service secure, improving it, preventing abuse); and legal obligations (e.g. tax, security).
4. How we use your data
To create and run your account, publish and recommend events, power the AI assistants that help you create and discover events, secure the Service, respond to you, and — only with your consent — send newsletters and event updates.
5. Who we share it with
We use trusted sub-processors who process data on our behalf: Supabase (database, authentication, file storage), Vercel (hosting), OpenAI (the AI assistant features), and Resend (transactional and marketing email). They act under data-processing agreements and may not use your data for their own purposes. We never sell your data.
6. International transfers
Some sub-processors (e.g. OpenAI, Vercel) may process data outside the European Economic Area. Where they do, transfers are protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision.
7. How long we keep it
We keep account and profile data while your account is active. If you delete your account, we delete or anonymise your personal data within 30 days, except where we must keep certain records longer to meet legal obligations. Server and security logs are kept for a limited period.
8. Your rights
Under the GDPR you can request access to your data, and its rectification, erasure, restriction, or portability, and you can object to processing based on legitimate interests. To exercise any right, contact info@latinfire.net; we respond within the statutory period.
9. Marketing and consent
We only send marketing emails (newsletter, event updates) if you opted in. You can withdraw consent at any time using the unsubscribe link in every email or in your account settings; withdrawing does not affect the lawfulness of earlier processing.
10. Cookies and local storage
We use strictly necessary cookies and local storage to keep you signed in, remember your language and theme, and keep the Service secure. We do not use advertising trackers.
11. How we protect your data
We use encryption in transit, access controls, and reputable infrastructure providers to protect your data. No system is perfectly secure, but we take reasonable measures and review them regularly.
12. Complaints
If you believe we have mishandled your data, please contact us first at info@latinfire.net. You also have the right to lodge a complaint with the Dutch data protection authority, the Autoriteit Persoonsgegevens (autoriteitpersoonsgegevens.nl).
13. Changes to this policy
We may update this policy as the Service evolves. The current version is shown as “Last updated” above; material changes will be notified through the Service or by email.
14. Contact
For privacy questions or requests, email info@latinfire.net or write to Stichting Latin Fire, Blaak 526, 3011 TA Rotterdam, the Netherlands.