Platforum9 Privacy Policy

Effective Date: 05/09/2025

Controller: Platforum9 Limited (“Platforum9”, “we”, “us”, “our”)

Registered Office: The CHQ Building, Custom House Quay, North Wall, Dublin 1, D01

Y6H7, Ireland

Contact (Privacy/DPO): privacy@platforum9.com

1. About this Policy

This Privacy Policy (“Policy”) explains how Platforum9 processes personal data when you

use our social audio services, including our iOS and Android apps, our website, our

customer support, and any other Platforum9 service that links to this Policy (collectively, the

“Platforum9 Service”). This Policy complements, and should be read alongside, our Terms

of Service and Community Guidelines.

From time to time, we may introduce new features or services. Unless stated otherwise

when introduced, they will also be subject to this Policy.

Age: Our Service is for users 18+ only.

2. Your personal data rights and controls

Under the GDPR and Irish data protection law, you have rights over your personal data.

Some rights apply only when we rely on specific lawful bases. Below is a summary of your

rights and how to use them (consistent with your policy’s rights table and approach).

● Be informed: We inform you via this Policy, in-product notices, and by answering

questions when you contact us.

● Access: Request a copy of your personal data via “Download your data” in Privacy

Settings (when available) or by contacting us.

● Rectification: Ask us to correct inaccurate or incomplete data; you can also edit

profile fields directly.

● Erasure: Request deletion where, for example, data is no longer needed, you

withdraw consent (where relied upon), or you object and we have no overriding

legitimate grounds. Limits apply where retention is required for safety, fraud

prevention, legal obligations, or the establishment/exercise/defence of legal claims.

You may also remove certain audio/content yourself.

● Restriction: Request we stop processing in certain cases (e.g., accuracy contested,

processing unlawful, no longer needed, or pending objection).

● Object: Object to processing based on our legitimate interests or to tailored

advertising (if/when implemented). Controls are available in Privacy Settings; you

can also contact us.

● Portability: Request an electronic copy and/or transmission to another service

where processing is based on consent or contract; we will reasonably honour

requests in other cases where feasible.

● No solely automated decisions: We do not carry out automated decision-making

that produces legal or similarly significant effects without human involvement.

● Withdraw consent: Where we rely on consent, you may withdraw it at any time via

controls or by contacting us.

● Complain: You may lodge a complaint with the Irish Data Protection Commission

or your local supervisory authority.

Tailored advertising controls. If we introduce interest-based ads in the future, you will

have clear opt-outs/controls in Privacy Settings. We will not enable tailored ads for users

below the applicable advertising age in their country. Until then, any ads (if present) will not

be tailored using your behavioural data.

3. Personal data we collect about you

We collect categories of data consistent with your original schema, refined to remove

payment data for now (since there are no payments at this time) and to emphasise

voice/audio processing for sessions, chats, and replays.

A. Collected when you sign up or update your account

● User Data: profile name, email address, password, phone number (optional), date of

birth (for 18+ verification), country, street address (where required for lawful notices

or eligibility checks), professional details (e.g., place of work;

qualification/professional body), and optional university/college (e.g., Platforum9

Student). Some of this may be inferred from your device (e.g., country/region).

● Street Address Data: Only where needed (e.g., to deliver legally required notices or

eligibility checks). Address verification may use third-party tools (e.g., mapping).

B. Collected through your use of the Service

● Usage Data: actions within Platforum9 (e.g., search queries; forum/session history;

content you create or share; bookmarks; settings; interactions with other users;

inferences about interests); use of third-party apps/devices; content you post (audio,

text, images, titles, descriptions, communications).

● Technical Data: IP address; device identifiers; connection type; OS and app version;

browser; language; DRM and device/app discovery metadata for integrations;

general (non-precise) location (country/region) derived from technical data/payment

currency (if payments later resume).

● Device Sensor Data: motion/orientation data if required to provide a feature (you

control device permissions).

C. Additional data you may choose to give us

● Voice Data (Audio + Transcripts): audio you speak or upload; session recordings;

voice messages (DMs/VMs); and automated or human-assisted

transcripts/summaries. We use these to provide replays, summaries, moderation,

and trust & safety (and, where you agree, for marketing such as showcasing

platform capabilities).

● Survey/Research Data: responses when you take part in surveys, research, or

feedback activities.

No payments right now. If we reintroduce in-app/web payments, we will update

this Policy to explain related processing (and surface in-product notices where

required).

D. Third-party sources

● Authentication partners: if you sign up/login via another service, they provide us

with necessary info to create your account.

● Third-party apps/services/devices you connect: if you connect social media,

speakers, phones, watches, automotive platforms, voice assistants, or partner apps,

they may share data to enable the integration (with your permission).

● Technical service partners: non-precise geo (e.g., IP to country/region); security

tools for account protection.

● Marketing/analytics partners: high-level inferences about interests (if/when

marketing features are enabled).

● Acquired companies: where applicable in future, we may receive your data to

enhance products/services.

If you try the app without an account (logged-out experience), we collect limited Usage Data

to ensure the right experience for your country/region and to understand usage; this may be

linked to your account if/when you sign up.

4. Our purposes and legal bases

We process personal data for the purposes below under the listed legal bases, aligned to

your tabular model.

Purpose

Legal Basis

Categories Used

Provide the Service (create/secure

your account; personalise; deliver

the app)

Performance of a contract

User Data; Street

Address Data; Usage

Data; Voice Data

Provide further Service features

(e.g., link sharing)

Legitimate interests (keep

service running &

accessible)

User Data; Street

Address Data; Usage

Data; Voice Data

Optional features (where clearly

offered)

Consent

User Data; Usage

Data; Survey/Research

Data

Diagnose, troubleshoot, fix issues

Performance of a contract

User Data; Usage Data

Evaluate/develop features,

technologies, improvements

(including recommendations over

time)

Legitimate interests

(improve products for

users)

User Data; Usage

Data; Voice Data;

Survey/Research Data

Marketing/advertising where

consent is required (e.g., cookies,

email marketing)

Consent

User Data; Usage

Data; Survey/Research

Data

Other marketing where consent is

not required (e.g., service

communications)

Legitimate interests

User Data; Usage

Data; Survey/Research

Data

Legal compliance (e.g., age

checks, lawful requests)

Legal obligation

User Data; Street

Address Data; Usage

Data; Voice Data;

Survey/Research Data

Requests from authorities/courts

Legal obligation;

Legitimate interests (assist

serious-crime

prevention/detection)

User Data; Street

Address Data; Usage

Data; Voice Data;

Survey/Research Data

IP takedown/inappropriate content

actions

Legitimate interests

(protect IP/original

content)

User Data; Usage

Data; Voice Data

Establish/exercise/defend legal

claims

Legitimate interests (seek

legal advice; protect

ourselves/users)

User Data; Street

Address Data; Usage

Data; Voice Data;

Survey/Research Data

Business

planning/reporting/forecasting

(aggregated)

Legitimate interests

(operate business

successfully)

User Data (minimal);

Usage Data

(Where we later reintroduce payments, we will add a payments row with contract/consent

basis and specify Payment & Purchase Data.)

5. Sharing your personal data

Public information. Certain information may be public by design (e.g., profile name/photo;

your public Forums/Sessions; public content you post; who you follow and who follows you),

except where you have blocked a user or adjusted visibility. Sharing to third-party platforms

means those services may store a copy under their own privacy terms.

You may choose to share with:

● Connected apps/services/devices (via integrations you enable) to use the Service

with those tools; you can revoke connections in Apps under your account.

● Support Community (if/when offered) where your community profile/posts are

visible in that space.

● Other Platforum9 users (e.g., visibility of your activity depending on your settings).

We may share with:

● Service providers (hosting, security, analytics, moderation/transcription, customer

support) under data-processing agreements.

● Payment partners (not currently applicable; if payments are reintroduced, we’ll

update this Policy and provide appropriate notices).

● Advertising/marketing partners (only if/when implemented and subject to your

settings/consent as applicable).

● Hosting platforms/podcast providers for delivery of certain media (as applicable

and per their privacy terms).

● Academic researchers in pseudonymised form for statistical analysis or study.

● Affiliates / future group companies (if established) to maintain and improve the

Service.

● Law enforcement/authorities/litigation parties where required by law, valid

process, or vital interests (e.g., safety).

● Potential purchasers in the event of merger, acquisition, or asset sale, under

appropriate safeguards.

We do not sell personal data.

6. Data retention

We retain personal data only as long as necessary to provide the Platforum9 Service and for

legitimate and essential business purposes (performance, planning, safety, legal

compliance, and dispute resolution). We follow a combination of user-controlled deletion,

fixed retention periods, lifecycle retention tied to account status, and extended

retention for limited legal/safety purposes—all consistent with your policy model.

Examples:

● You can remove certain items (e.g., profile photo or your audio segments) yourself.

● Search queries may expire after a defined period (e.g., ~90 days).

● Account-tied data (e.g., core profile) is typically retained until account deletion, then

deleted or de-identified.

● Extended retention (post-deletion) may apply in limited cases, e.g., to meet legal

obligations, preserve evidence for investigations/litigation, protect user safety, or

enforce our policies.

Audio/Voice Data. Session recordings, replays, voice messages, and transcripts are kept

for as long as needed for replays, summarisation, moderation, and safety/compliance.

Moderation holds may extend retention where a complaint or investigation is ongoing (or

reasonably anticipated).

We maintain an internal retention schedule and periodically review retention horizons.

7. International transfers

We may transfer personal data outside the EEA/UK to service providers or partners. When

we do, we use appropriate transfer mechanisms to protect your data and your rights,

including EU Standard Contractual Clauses (SCCs) and/or transfers to jurisdictions

covered by European Commission adequacy decisions. We may also apply additional

safeguards (encryption, pseudonymisation, transfer risk assessments, and policies for

challenging disproportionate government requests).

You can exercise rights under SCCs by contacting us or the relevant processor.

8. Keeping your personal data safe

We use appropriate technical and organisational measures to protect personal data,

including encryption in transit and at rest, access controls, pseudonymisation, and retention

minimisation. No system is 100% secure, but we take continuous steps to reduce risk. You

can help by using a strong, unique password, limiting shared-device access, and signing out

on shared devices (e.g., “Sign out everywhere”).

9. Cookies & similar technologies

We use cookies and similar technologies on the website/app to operate the Service,

measure performance, and (if/when enabled) support analytics/marketing. See our Cookies

Policy for details and controls.

10. Changes to this Policy

We may update this Policy from time to time. For material changes, we will provide

prominent notice (e.g., in-app banner, email, or device notification) and indicate the effective

date. Continued use of the Service after the effective date signifies acceptance of the

updated Policy.

11. How to contact us

Questions or concerns about privacy? Contact our privacy team/DPO:

Email: privacy@platforum9.com

Post: Platforum9 Limited, The CHQ Building, Custom House Quay, North Wall, Dublin 1,

D01 Y6H7, Ireland

(If you previously saw our Dogpatch address, please use the CHQ address above going

forward.)

Supervisory authority

You can contact the Irish Data Protection Commission (or your local authority) if you

believe your rights have been infringed. We encourage you to contact us first so we can try

to resolve your concern quickly.