Privacy Policy

Who is responsible for your data?

Migrennity is a community-driven project. The controller responsible for your data is:

What does Migrennity do?

Migrennity is a migraine and headache tracking application that helps you log episodes, understand patterns, and connect with a supportive community of people who understand what you're going through.

What data do we collect?

Account Data

Basic information needed to create and manage your account:

• Email address
• Display name or nickname
• Account preferences and settings

Health Data (Special Category)

With your explicit consent, we process health-related data:

• Migraine and headache episode details (timing, intensity, duration)
• Symptoms, triggers, and pain characteristics
• Medications and treatments used
• Weather correlation data

Technical Data

Information collected automatically for security and service operation:

• IP address (anonymized where possible)
• Device type and browser information
• Usage logs and error reports

Community Content

If you participate in the community, we store posts, comments, and reactions you create. You control whether these are anonymous or linked to your display name.

Legal bases for processing

• Contract (Art. 6(1)(b) GDPR): We process your account data to provide the service you signed up for.
• Explicit Consent (Art. 9(2)(a) GDPR): We only process your health data after you give explicit, informed consent. You can withdraw this consent at any time.
• Legitimate Interest (Art. 6(1)(f) GDPR): We process minimal technical data for security, error tracking, and service improvement.

Cookies and similar technologies

We use cookies to keep the service running smoothly. We ask for your preference on first visit.

Essential Cookies

Required for login, security, and basic functionality. These cannot be disabled.

Optional Analytics

Privacy-friendly analytics to understand how people use Migrennity. Only enabled if you choose "Accept all" in our cookie banner.

Who has access to your data?

We use trusted service providers to run Migrennity:

• Hosting providers (for storing your data securely)
• Authentication service (Clerk, for secure login)
• Analytics (privacy-friendly, only with your consent)
• Error tracking (to fix bugs and improve the service)

We never sell your data. Ever. That's a promise.

International data transfers

Some of our service providers are based outside the EU. Where this occurs, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or adequacy decisions) to protect your data.

How long do we keep your data?

• Account data: As long as your account is active
• Technical logs: Up to 90 days
• Backups: Up to 30 days after deletion request

Your rights

Under GDPR and similar laws, you have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data ("right to be forgotten")
• Restrict how we process your data
• Receive your data in a portable format
• Object to certain processing
• Withdraw consent at any time

To exercise these rights, visit your account settings or contact us directly.

Children's privacy

Migrennity is not intended for users under 16 years of age. We do not knowingly collect data from children.

Security

We implement reasonable technical and organizational measures to protect your data. However, no system is 100% secure. We encourage you to use a strong, unique password and keep your account credentials safe.

Disclaimer

Migrennity is provided as-is for informational purposes. While we take data protection seriously, you use this service at your own risk. This does not affect your mandatory rights under applicable law.

Contact us

For privacy questions or to exercise your rights, contact us at: support@migraine.club