This Privacy Policy explains how CityFox handles personal data exchanged between CityFox and a user. See also our Terms and Conditions.
When accessing our Services, your device automatically transmits data for technical reasons. The following data is stored separately from other data that you may transmit to us:
Identifiers collected by mobile apps:
We save this data for the following purposes:
Your IP address is only saved for a period of 90 days. Processing takes place on the basis of our predominant legitimate interests mentioned above (Art. 6 (1) lit. f GDPR).
To be able to use all functions of CityFox, you have to register. For this you must provide the following mandatory information:
Alternatively, you can log into CityFox using your Google account. Doing so means we will receive the following information from Alphabet:
Your registration data is necessary in order for CityFox to create a user account for you. This is also used to activate and manage your account and to allow you to use all the features of the Service. In this way, you opt in to a (free) user contract which allows us to store the data (Art. 6 (1) lit. b GDPR).
In order to conclude the contract, you have to provide us with this data. However, you are neither contractually nor legally obliged to conclude the contract — and thus to provide the data.
When you log in to CityFox, we also save your IP address for a short period of time in order to be able to detect and prevent possible attacks and mass misuse of logins (e.g. brute-force attacks) by blocking IP addresses temporarily if necessary. The processing takes place to ensure the security of the processing according to Art. 32 GDPR and based on our legitimate interest in protecting us from misuse of our service (Art. 6 (1) lit. f GDPR). Data is stored for a maximum of 90 days and is subsequently anonymised.
If you purchase a Premium subscription or Gems in our shop, payments are processed via the in-app purchase flow of the Apple App Store or Google Play Store. CityFox does not itself receive or store your credit card details.
If you contact us via our support centre, we process:
We store inquiries about contracts or of potential legal relevance during the general limitation period, i.e. three years from the end of the year in which we received your request. We store all other inquiries for a period of 24 months. Your requests will then be deleted unless we are legally obliged to keep them for a longer period of time.
The storage takes place on the basis of our legitimate interest in the proper documentation of our business operations and the protection of our legal positions (Art. 6 (1) lit. f GDPR). In the case of inquiries about contracts, the storage takes place to initiate and implement the respective contractual relationship (Art. 6 (1) lit. b GDPR) and, if necessary, to fulfil legal obligations (Art. 6 (1) lit. c GDPR).
If you have discovered a vulnerability on our Services and report it to us, we will process your contact details as well as other information you have provided in order to receive and process your report and, if necessary, to ask you any questions. If your report is included in our bounty reward programme and you qualify for a reward, we also need additional information from you in order to pay you the corresponding reward.
Please note that we may forward reports regarding vulnerabilities of service providers or third parties to them.
The legal basis for the processing of your personal data is Art. 6 (1) lit. f GDPR. We have a legitimate interest in receiving and processing your report to ensure the security and functionality of our Services.
We store reports of potential legal relevance during the general limitation period (three years from the end of the year in which we received your report) and all other reports for 24 months. The report will then be deleted unless we are legally obliged to keep it for a longer period.
If you register with us, we may inform you periodically about news related to our services on the CityFox platform, but not more than once a week. In this case, the collection and processing of your personal data takes place due to our legitimate interest in promoting similar services to your user account (Art. 6 (1) lit. f GDPR, § 7 (3) UWG).
You can object to this at any time — even at registration — by deactivating the corresponding checkbox or by clicking the unsubscribe link in the respective emails.
If you give your consent, we may also send you commercial communications that include sponsored content from our carefully selected partners. In this case, the processing of your personal data for these communications is based on your consent (Art. 6 (1) lit. a GDPR, § 7 (2) UWG). You can withdraw your consent at any time (this will not affect communications already sent) — for example, by deactivating the corresponding checkbox in your account settings or by using the unsubscribe link in our emails.
When we use the word “cookies” in this Privacy Policy, we mean any tracking technology that stores or accesses information on the user's device — including any SDK, tracking pixel, HTML5 local storage, local shared object, and fingerprinting technique.
Cookies are usually classified:
This classification is important because different legal requirements apply based on how the cookie is classified.
Technical cookies. We set cookies that are absolutely necessary for the operation and functionality of the website and the associated services without your consent. This category includes cookies that ensure that the website is technically accessible and usable. Specifically, we use cookies that are absolutely necessary for the following functions:
Depending on the respective function, these cookies are only stored for the duration of your visit (session cookies) or for a longer period of time, e.g. until you actively log out. Cookies for storing your chosen settings remain stored until the end of the browser session.
If personal data from these cookies are processed, the processing is carried out to ensure: that our website and the functions provided can be used by you — this is also our legitimate interest, Art. 6 (1) lit. f GDPR; and that your cookie selection, in particular your consent or non-disclosure to the use of cookies, is stored correctly, Art. 6 (1) lit. c GDPR.
Analytics cookies. Additionally, we use cookies to analyse and evaluate your usage behaviour. If we ask for your consent for the use of these cookies, the legal basis for such processing is consent in the sense of Art. 6 (1) lit. a GDPR. Otherwise, we base the processing of these cookies on our legitimate interest in improving the quality of our products and services pursuant to Art. 6 (1) lit. f GDPR.
These cookies are used to measure online traffic and analyse behaviour. They collect information about how you interact with our website, which pages you have visited and which features of our website you have used. Your usage behaviour can be traced using a user ID. This enables us to better understand the use of our Services and optimise them accordingly.
If we use cookies on the basis of your consent, you can revoke your consent at any time via the “Privacy Settings” link in the footer of the website. The revocation of the consent does not affect the lawfulness of the processing carried out on the basis of your consent until the revocation. These cookies remain stored on your device for up to two years, unless you withdraw your consent before this period has expired.
Profiling cookies. Profiling cookies may be used to trace specific actions or recurring behavioural patterns in the use of the offered functionalities back to specific, identified or identifiable individuals for the purpose of grouping the different profiles within homogeneous clusters. This is aimed in turn to enable us to provide increasingly customised services beyond what is strictly necessary for the delivery of the service and to send targeted advertising messages in line with the preferences expressed by the user during their web-browsing activities.
In other words, profiling cookies may be used to convey behavioural advertising, measure the effectiveness of ads, or customise the services offered in line with the user's monitored behaviour. Profiling cookies include the performance, marketing and social-media cookies you might find mentioned while browsing the Services. Profiling cookies need your explicit consent.
First-party cookies. Cookies installed directly by the website that the user is browsing. The publisher of the website installs the cookies directly without using any third-party publishers and processes the information thereby acquired.
Third-party cookies. Third-party cookies are set by external providers other than the publisher of the website the user is browsing. For the purposes of this Privacy Policy, third-party cookies include any tracker which, although directly published by us, is provided by third parties which receive or otherwise process for their own purposes the information acquired through these cookies when you use the Services.
The data collected by these third parties is governed by their own specific privacy policies, terms and conditions, or cookie policies over which we have no control.
When our Services host third-party non-anonymised analytics cookies and/or profiling cookies, you will be asked to consent to such third-party cookies when landing on our websites for the first time, via a specific cookie banner. You can manage and delete these third-party cookies at any time by accessing the privacy policies of the third parties as indicated in the cookie table on our website.
To deliver push notifications to your device (e.g. journey progress, route reminders, account messages), we use Firebase Cloud Messaging (FCM), a service operated by Google Ireland Limited / Google LLC. When you opt into push notifications, FCM generates a per-device registration token and we store the token on our servers so we can target messages to your device. We send the message payload through FCM, which routes it to the platform-native push service (Apple Push Notification service on iOS, Firebase / Google's own infrastructure on Android and Web).
The registration token is the only identifier exchanged with Firebase for messaging purposes. Message contents are minimised — we do not include personal data beyond what is strictly needed to render the notification. You can disable push notifications at any time in your device's system settings; revoking permission invalidates the token immediately. Legal basis: your consent (Art. 6 (1) lit. a GDPR) when you grant the OS permission prompt; legitimate interest (Art. 6 (1) lit. f GDPR) for service notifications you have explicitly subscribed to. Google's processing of the token and message routing is governed by its own privacy policy (policies.google.com/privacy) and the Firebase data-handling documentation.
Some of the third-party providers we rely on (e.g. AWS, Google including Firebase, Anthropic) process data outside the European Economic Area. Where transfers occur, we rely on the European Commission's Standard Contractual Clauses (SCCs) or, where applicable, an adequacy decision under Art. 45 GDPR.
Our Services are not directed at users under the age of 16. If we learn that we have collected personal data from a child under 16 without verified parental consent, we will delete it as quickly as possible.
As long as we process your personal data, you have the following rights against us under the GDPR, regardless of the legal basis for the processing. To exercise any of these, write to team@cityfox.io with the subject “GDPR request” — we will respond within 30 days as required by Art. 12 (3) GDPR.
To delete your account and all data linked to it, sign in, go to Profile, and click “Delete account”. This is irreversible. Any content you have shared publicly via CityFox is detached from your profile but may remain available; see also section 18 of the Terms of Service.
We may amend this Privacy Policy from time to time. The “Last updated” date at the top reflects the current version. For material changes, we will notify you in advance, in the app or by email.