Last updated: May 20, 2026
Welcome to the LivX Privacy Policy. Whether you're ready to start connecting or just looking for new friends, we believe every connection should start with respect and trust — especially when it comes to your personal information.
When we talk about "LivX", "we", "us", or "our" in this policy, we refer to LivX Studios, LLC, the operator of the LivX application. This Policy explains how we process your personal information when you use the LivX mobile application ("App") and our websites, including livxapp.com ("Sites"). We also suggest you read our Terms of Service.
Have any questions? Contact us at support@livxapp.com.
You should know: We may update this Policy from time to time. The most current version at livxapp.com/privacy.html controls how we use your information. We will notify you of any material changes by email or in-app notification.
For the purposes of the General Data Protection Regulation ("GDPR") and other applicable data protection laws, the data controller is LivX Studios, LLC, with registered agent address at 131 Continental Dr, Suite 305, Newark, DE 19713, USA, incorporated in Delaware, United States.
Because LivX Studios, LLC is established outside the European Economic Area but intends to offer its services to users in the EEA, an EU representative will be appointed under Article 27 GDPR prior to launch in the EEA. A Data Protection Officer will also be designated under Article 37 GDPR before the platform's processing activities reach the scale at which appointment becomes mandatory. The name and contact details of both will be added to this Policy at that time. In the interim, all data-protection enquiries should be sent to support@livxapp.com.
The type of information collected depends on the specific situation and how you use the App.
When you create a LivX account, we collect the following information:
After registration, you can update most of this information through your profile settings. You are responsible for keeping your account details up to date.
You can sign in using Google or Apple. When you do:
We use this information to create and/or authenticate your LivX account. You can disconnect linked accounts at any time through the platform's settings.
If you sign in as a guest, we generate and store a hashed device identifier and a locally-generated token to maintain your session across visits. No email or personal details are required for guest accounts. Guest account data is tied to your device.
To ensure the safety and security of everyone on LivX, we may:
If you purchase coins, subscriptions, or other paid features, payment processing is handled by Google Play or the Apple App Store as independent controllers under their own terms (see the Google Play payment terms and the Apple Media Services Terms). We do not directly store your credit card or payment details. We receive transaction confirmations for our records and fraud prevention.
We process location information about you in the following ways:
You should know: We never store precise GPS coordinates on our servers. Location detection resolves to country only.
When you use the App, we collect specific technical information from your device. This includes your hardware device ID, unique installation ID, operating system version, device model, app version, and locale settings. We use this data, as a strictly necessary measure, to authenticate your sessions (including guest logins), enforce our Terms of Service, and permanently block specific devices from our network if a user is banned for severe violations.
Some uses of device identifiers go beyond what is strictly necessary to provide the service you have requested (for example, identifiers used to enforce device-level bans). For these uses, we rely on your consent under Article 5(3) of the ePrivacy Directive in addition to a GDPR Article 6 basis. See "Cookies and Device Storage" below.
We store profile photos you upload. To ensure the safety of everyone on LivX, we screen uploaded profile photos for inappropriate content using automated third-party AI services (see "Who We Share Your Information With" below).
We store call duration, participants, and status. While we do not continuously record the audio or video streams of your calls, our automated safety systems may capture and upload periodic screenshots during video calls solely for the purpose of content moderation, investigating user reports, and enforcing our safety guidelines. We also monitor and log attempts to screen record or capture screenshots on your device to protect the privacy of all users.
During video calls, our App uses on-device face detection (via Google ML Kit) to support our safety features. This operates locally on your device and identifies the presence of a face in the frame without generating, storing or transmitting any biometric identifier capable of uniquely identifying a natural person. It is therefore not biometric data within the meaning of Article 4(14) GDPR, and Article 9 does not apply. In-call screenshots are reviewed by our moderation team for conduct assessment and are not processed through facial recognition or any other technique that uniquely identifies individuals.
We store messages in our database to deliver them to recipients. Messages and profile text are scanned for prohibited content (including attempts to share contact information) to prevent platform circumvention and to enforce our Community Guidelines. Messages may be automatically translated to the recipient's language; translation is performed server-side. In-call text messages are temporarily stored during the call for delivery and content moderation.
If you contact support through the LivX Team channel in the App or via email, we collect your messages and any information you share to help resolve your request. See "How Long We Keep Your Data" below for retention details.
If you participate in LivX as a "Streamer", additional processing applies, including identity verification (KYC) via our third-party verification provider (Didit), anti-money-laundering screening, payout processing through our payment partners (Payoneer, Wise, and USDT settlement), and tax reporting. Streamers receive a separate Streamer Privacy Notice covering these activities; that notice forms part of the Streamer Agreement and applies in addition to this Policy.
Our main goal is to give you a safe and enjoyable LivX experience as you connect with others.
We use your personal information to:
To help you find connections, our random matching system uses:
We do not use personality profiling or behavioral prediction for matchmaking.
Safety is very important to us. We use a combination of automated systems and human moderators:
Under EU data protection law, we process your personal data only where we have a lawful basis. Where processing involves special category data within the meaning of Article 9 GDPR, we additionally rely on a specific condition under that Article. This section sets out each purpose of processing and the legal basis we rely on.
Withdrawing consent. Where we rely on your consent as the legal basis for processing, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal. Withdrawing consent may mean that certain features become unavailable to you. Where we rely on legitimate interests, you have the right to object to the processing on grounds relating to your particular situation under Article 21 GDPR.
Our App applies automated tools — including NSFW classification of profile photos, automated text filtering of messages, and device-ID-based ban enforcement — that contribute to safety and integrity decisions. Where these tools surface a potential violation, the decision to apply a significant restriction — including account suspension, account termination, forfeiture of coins under Clause 9.3 of our Terms, or device-level bans — involves meaningful human review by a member of our moderation team before the restriction takes effect (except in cases of urgent risk to users or third parties, where action may be taken pending review). Because significant restrictions are not based solely on automated processing, Article 22(1) GDPR is not engaged.
You may nevertheless request review of any moderation decision under Article 22(3) GDPR by contacting support@livxapp.com. You will be given the opportunity to express your point of view and to contest the decision.
LivX is designed to help you connect, but in line with the privacy-by-default principle in Article 25(2) GDPR, we keep profile visibility narrow unless you choose to expand it. Our target visibility model is:
| Field | Default visibility |
|---|---|
| Display name, profile photo, country | Visible to all authenticated users |
| Gender, birth year / age, bio, online status | Visible only to matched or connected users (friends, or users in an active call with you) |
| Subscription status | Visible only to matched or connected users |
You can opt in to expand the visibility of additional fields through your profile settings. We are in the process of aligning our product to this target model; certain fields may currently be more broadly visible while we complete that work. The visibility controls described here represent the configuration we are implementing.
Important: We strongly recommend you do not share sensitive information on your profile, including email addresses, phone numbers, social media handles, financial details, or government identification numbers. Please also do not share information revealing your or another person's racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, genetic or biometric data, health data, or sex life or sexual orientation — see our Community Guidelines.
We share your information with the following categories of recipient acting as our processors or, where indicated, as independent controllers. Each engagement is governed by a data-processing agreement compliant with Article 28 GDPR (or, where the recipient is an independent controller, by their own terms).
| Recipient | Purpose | What we share |
|---|---|---|
| Google Firebase (cloud infrastructure) | Backend authentication, database, storage, push notifications | Account data, messages, profile information, device tokens |
| Agora (real-time video and audio) | Operating the random and direct video-calling features | Temporary call session tokens. Audio and video streams are routed through Agora's infrastructure during a call but are not recorded or stored by us |
| Didit (identity verification) | KYC verification for Streamers only | Identity documents and verification photos (Streamers only) |
| Hugging Face and Google ML Kit (content safety) | Automated screening of profile photos and in-call screenshots for inappropriate content; on-device face detection (no biometric template generated or retained) | Profile photographs and in-call screenshots submitted to the content-safety API; face detection runs locally on your device |
| Apple and Google (authentication and email delivery) | Sign-In with Apple / Google; transactional email such as OTP codes via Apple/Google relay or delivery | Email address (or Apple relay address) and verification code; account identifier |
| Cloudflare (geolocation and edge security) | IP-based country lookup (country-level only) and network security | IP address (transient; not retained against your profile) |
| Apple App Store / Google Play (billing — independent controllers) | Payment processing for in-app purchases and subscriptions | Transaction confirmations. We do not receive payment card details |
| Payoneer, Wise, USDT settlement (payouts — Streamers only) | Streamer payouts | Streamer name, payout account details and payout amounts |
| Push notification provider | Delivery of push notifications to your device | Device push token and notification content |
| Law enforcement and regulators | When required by law, court order, or to protect safety | Any relevant information as legally required |
Streamer-specific recipients (Didit, Payoneer, Wise, USDT settlement) only receive data about you if you are participating as a Streamer.
If you are located in the EU, you have the following rights in relation to your data:
To exercise your rights, contact us at support@livxapp.com. We may need to verify your identity before processing your request.
We may transfer your information outside the EU to facilitate essential third-party services, such as cloud processing, enabling essential features such as video calling, tools for content moderation, and email delivery. We seek to ensure these international transfers are protected by relying, where available, on adequacy decisions issued by the European Commission (including the EU-US Data Privacy Framework for certified US recipients). Whenever an adequacy decision is unavailable for a specific region, we implement the Commission's approved Standard Contractual Clauses to maintain legally binding safeguards with our service providers. Where required following Schrems II, we conduct Transfer Impact Assessments on a per-provider basis.
We keep your personal data only as long as necessary for legitimate business reasons and as permitted by applicable law. When you decide to stop using our services and request account deletion, we initiate a 7-day grace period. During that time, your profile is hidden from other users, giving you a 7-day window to restore your account if you change your mind. Following this period, we begin deleting your data in accordance with the provisions below.
Safety and security retention. We keep communications metadata, flagged in-call screenshots, and moderation decisions for up to 12 months following an incident or case closure to investigate harmful conduct and resolve disputes. Unflagged in-call screenshots are retained for 30 days for proactive safety monitoring, and text-filter triggers are kept for 90 days. The retention of this data is based on our legitimate interest in protecting our users, maintaining platform integrity and defending our moderation decisions.
Tax and accounting retention. We keep purchase transactions and payout records as required by applicable tax and accounting law (typically 6 to 10 years, depending on the EU Member State).
Operational retention. We keep customer support records for 3 years after your last interaction to follow up on inquiries, support our customer-care decisions, and resolve potential disputes. For platform security, we retain active device identifiers and country/region data for the duration of your account. Security logs containing IP addresses are kept for 6 months, and analytics for up to 12 months, to improve service stability. To ensure ongoing safety of our community, we retain the device identifiers of banned users for 3 years to prevent them from opening new accounts.
Identity verification photos are retained for 30 days following completion of the verification process, then deleted, except where the photo is connected to an open moderation case or user report, in which case it is retained for up to 12 months from case closure.
Transient data. One-Time Passwords (OTPs) are kept for 3 minutes to securely authenticate your login attempts. Automated safety scans, such as NSFW classifications, are processed instantly; we log only the final moderation decision, ensuring strict data minimisation. Routine system backups are kept for 30 days after live data is deleted to allow for recovery in the event of technical failures.
Finally, we maintain data on the basis of our legitimate interest where there is an outstanding or potential issue, claim or dispute requiring us to keep data. In particular, if we receive a valid legal request, we will keep data to comply with our legal obligations or where it would otherwise be necessary as part of legal proceedings. Where appropriate and as legally permitted, we may maintain and use data that, by itself, cannot identify or be attributed to you, to improve our service, create new features and keep our platform safe.
The App and our Sites may store information on, or access information stored on, your device. Under Article 5(3) of the ePrivacy Directive, we distinguish between two categories of storage and access:
We take appropriate security measures to protect your information:
Tips to keep your account secure:
LivX is strictly for users aged 18 and older. We do not knowingly collect information from anyone under 18. Age confirmation is required during onboarding. If we become aware that a minor has registered, we will take steps to terminate their account and delete their information.
Our App is not directed at children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately at support@livxapp.com.
If you have any questions about this Privacy Policy, want to exercise your rights, or have a concern: