Privacy Policy for Storily.me

Effective Date: October 05, 2025

At Storily.me (“the Site,” “we,” “us,” or “our”), operated by Team Storily, based in Pakistan, we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://storily.me/, which features authentic travel stories, vlogs, photos, and journal entries. Users may submit content via email (submit@storily.me).

We comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Union (EU) or European Economic Area (EEA). As the data controller, Team Storily is responsible for the personal data we process. If you have questions, contact us at info@storily.me.

By using the Site, you consent to the practices described in this Policy.

1. Information We Collect

We collect information to provide and improve our services. This includes:

Personal Data

  • Contact Information: Email addresses submitted via contact forms or submissions (e.g., submit@storily.me for stories).
  • User-Generated Content: Names, locations, photos, or other details in submitted stories, vlogs, or comments.
  • Technical Data: IP addresses, browser type, device information, and usage data (e.g., pages visited, time spent).

Non-Personal Data

  • Aggregated analytics (e.g., total visitors) without identifying individuals.

We do not collect sensitive personal data (e.g., health or financial information).

2. How We Collect Information

  • Directly from You: When you submit stories, contact us, or sign up for newsletters.
  • Automatically: Via cookies, web beacons, and server logs during Site visits.
  • From Third Parties: Limited analytics from tools like Google Analytics (if implemented), subject to your consent.

3. How We Use Your Information

We use your information for:

  • Providing Services: Publishing submitted content, responding to inquiries, and sending newsletters (with consent).
  • Improving the Site: Analyzing usage to enhance content and user experience.
  • Communication: Notifying about updates or featured stories.
  • Legal Compliance: Responding to legal requests or protecting rights.

We do not use your data for automated decision-making or profiling.

4. Legal Basis for Processing (GDPR)

For EU/EEA users, processing is based on:

  • Consent: For newsletters or non-essential cookies.
  • Contract: To fulfill submission requests.
  • Legitimate Interests: Site improvement, fraud prevention (balanced against your rights).
  • Legal Obligation: Compliance with laws.

You can withdraw consent at any time (see Section 8).

5. Sharing Your Information

We do not sell your data. We may share it with:

  • Service Providers: Hosting (Stellar Plus EU Hosting Plan), email services, or analytics tools, all within the EU under GDPR-compliant agreements.
  • Legal Authorities: If required by law.
  • Business Transfers: In case of merger or acquisition.

No data is shared with third parties outside the EU/EEA.

6. Data Storage and Transfers

  • Storage Location: All data is hosted and processed within the European Union (EU) via our Stellar Plus EU Hosting Plan, ensuring GDPR compliance. Servers are located in EU data centers.
  • Administrative Access: Site administration may occur from outside the EU, but no personal data is transferred outside the EU/EEA. We use secure remote access protocols to prevent unauthorized transfers.
  • Retention: Data is kept as long as needed for the purposes above (e.g., submitted stories indefinitely unless requested for deletion) or legal requirements. Inactive accounts or unsubmitted data are deleted after 2 years.

7. Cookies and Tracking Technologies

The Site uses cookies for:

  • Essential Cookies: Site functionality (e.g., session management) – no consent required.
  • Analytics Cookies: Usage tracking (e.g., Google Analytics) – requires consent for EU/EEA users.

You can manage cookies via browser settings or our cookie consent banner. For details, see our Cookie Policy (if separate) or contact us.

8. Your Data Protection Rights (GDPR)

Under GDPR (Articles 15-22), EU/EEA users have the right to:

  • Access: Request a copy of your data.
  • Rectification: Correct inaccuracies.
  • Erasure (“Right to be Forgotten”): Delete data (subject to legal exceptions).
  • Restriction: Limit processing in certain cases.
  • Objection: Oppose processing based on legitimate interests.
  • Portability: Receive data in a structured format.
  • Withdraw Consent: At any time, without affecting prior processing.

To exercise rights, email info@storily.me with your request. We respond within one month (extendable if complex). No fee unless requests are excessive.

You may also lodge complaints with your local supervisory authority (e.g., via edpb.europa.eu).

9. Children’s Privacy

The Site is not intended for children under 16. We do not knowingly collect data from children. If we discover such data, we delete it promptly.

10. Security

We implement reasonable technical and organizational measures (e.g., encryption, access controls) to protect data. However, no system is 100% secure. Report suspected breaches to info@storily.me.

11. International Users

For non-EU/EEA users, we adhere to applicable local laws. Data from all users is processed in the EU as described.

12. Changes to This Policy

We may update this Policy by posting the new version on the Site. Changes are effective immediately. We notify via email or Site notice for material changes. Check periodically.

13. Contact Us

For privacy questions, data requests, or our Data Protection Officer:

  • Email: info@storily.me
  • Address: Team Storily, Islamabad, Pakistan

Last Updated: October 05, 2025.