livinquest | Privacy Policy
Last Updated: May 25, 2026
1. Introduction
Welcome to livinquest. Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use the livinquest mobile application (the “App”), our website at livinquest.com (the “Site”), and any related services (collectively, the “Services”).
We are committed to protecting your personal data in accordance with:
- Egyptian Personal Data Protection Law No. 151 of 2020 (PDPL) and its Executive Regulations (full enforcement expected October 2026).
- EU General Data Protection Regulation (GDPR) (where applicable).
For the purposes of this policy, livinquest acts as the Data Controller.
Contact Information:
- Email: privacy@livinquest.com
- Based in: Cairo, Egypt.
2. Personal Data We Collect
We collect the following categories of personal data:
Information You Provide Directly
- Account information: Name, email address, and a unique Agent codename.
- Profile information: Any preferences or optional details you add to your dossier.
Information Collected Automatically
- Location data (GPS): When you start a mission, we collect precise GPS location data to track your distance, speed, and route. You can disable GPS tracking at any time through your device settings, but this may limit app functionality.
- Fitness and activity data: Distance covered, duration, speed (including top speed), elevation gain (where available), and mission history.
- Device information: Device model, operating system, unique device identifiers, and app version.
- Usage data: Features accessed, mission logs, points earned, and redemption history.
Information from Connected Services
- If you choose to connect your Google account, we receive your email address and basic profile information.
- If you later connect Apple Health or Google Fit, we may access fitness data with your explicit consent.
We classify health and fitness data as “sensitive data” under Egyptian PDPL and “special category data” under GDPR.
3. How We Use Your Data
We process your personal data for the following purposes, relying on the lawful bases described in Section 4:
- To create and manage your Agent account.
- To track and record your walking, running, and cycling missions (including distance, speed, duration, and points).
- To award and manage points based on your subscription status.
- To provide the Experiences marketplace, including the WhatsApp booking flow.
- To improve, optimise, and personalise the App’s features and user interface.
- To communicate with you about your account, missions, and bookings.
- To ensure security, prevent fraud, and enforce our Terms of Service.
- To comply with legal obligations.
Purposes for sensitive data (health/fitness): We collect health and fitness data solely to provide the core functionality of the App – tracking your missions and awarding points. We do not use this data for advertising or sell it to third parties.
4. Lawful Basis for Processing
Under Egyptian PDPL
We rely primarily on consent as the lawful basis for processing personal data, including sensitive health and location data. Consent must be freely given, specific, informed, and explicit.
Under GDPR
We rely on the following lawful bases:
- Consent (Article 6(1)(a) and Article 9(2)(a)): For processing location data, health/fitness data, and for sending marketing communications.
- Performance of a contract (Article 6(1)(b)): To provide the App’s core services, including tracking missions and awarding points.
- Legitimate interests (Article 6(1)(f)): To improve and secure the App, analyse usage, and prevent fraud.
- Legal obligation (Article 6(1)(c)): To comply with applicable laws, including data breach notification requirements.
5. Data Sharing and Disclosure
We do not sell your personal data to third parties. We may share your data only in the following circumstances:
| Recipient Category | Data Shared | Purpose | Legal Basis |
|---|---|---|---|
| Service providers (Firebase, Google Cloud, hosting providers) | Account data, mission logs, activity history | App hosting, database management, authentication | Contract / Legitimate interests |
| Excursion partners (when you book an experience) | Name, codename, contact details, booking details | To facilitate your excursion booking | Consent / Performance of contract |
| Analytics providers (Firebase Analytics) | Anonymised usage data | To improve app performance and features | Legitimate interests |
| Law enforcement / regulatory authorities | Any relevant data | To comply with legal obligations | Legal obligation |
We require all third-party service providers to contractually protect your personal data and process it only in accordance with our instructions.
6. International Data Transfers
Your personal data is stored on Google Cloud servers, which are located in the European Union (EU). Transferring personal data outside Egypt requires a license from the Personal Data Protection Centre (PDPC) and must be to jurisdictions with an adequate level of data protection. We are taking steps to ensure compliance with these requirements.
For Egyptian users: By using livinquest, you acknowledge that your data may be transferred to and stored on servers located in the EU, where data protection laws may differ from those in Egypt. We rely on the European Commission’s adequacy decision regarding the EU’s level of protection, and we are working towards obtaining the necessary license from the PDPC.
For EU users: We rely on the European Commission’s Standard Contractual Clauses (SCCs) to ensure an adequate level of protection when transferring personal data from the EU to Egypt.
7. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements.
| Data Category | Retention Period |
|---|---|
| Account information | Until you delete your account |
| Mission logs and activity history | Retained indefinitely as part of your Agent dossier (you may request deletion) |
| Location data (raw GPS points) | Deleted after mission processing (no longer than 30 days) |
| Booking records | 5 years from the date of booking (legal requirements) |
| Usage analytics (anonymised) | 2 years from collection |
After you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required to retain it for legal compliance.
8. Your Rights
Under Egyptian PDPL
You have the following rights:
- Right to access: Request a copy of the personal data we hold about you.
- Right to correction: Request correction of inaccurate or incomplete data.
- Right to deletion (right to be forgotten): Request deletion of your data when it is no longer needed for its original purpose.
- Right to object: Object to processing for specific purposes (e.g., direct marketing).
- Right to withdraw consent: Withdraw previously granted consent at any time.
Under GDPR
EU users also have:
- Right to data portability: Receive your data in a structured, machine-readable format.
- Right to restrict processing: Request that we limit how we use your data.
- Right to lodge a complaint: With your local supervisory authority (e.g., ICO in the UK, CNIL in France).
How to exercise your rights:
Contact us at privacy@livinquest.com. We will respond within 30 days (or 30 days for Egyptian PDPL). We may need to verify your identity before processing your request.
9. Children’s Data
livinquest is not intended for children under the age of 15. We do not knowingly collect personal data from children under 15. If you believe we have collected data from a child under 15, please contact us so we can delete it.
Under Egyptian PDPL, processing children’s data (under 15) requires explicit written consent from a legal guardian. Under GDPR, the age threshold is 16 (or lower per EU member state, but not below 13).
10. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure:
- All data transmitted between the App and our servers is encrypted using TLS.
- Sensitive data (health, fitness, location) is stored in encrypted form.
- Access to personal data is restricted to authorised personnel only.
- Regular security audits and penetration testing.
11. Data Breach Notification
In the event of a personal data breach, we will:
- Notify the Egyptian Personal Data Protection Centre (PDPC) within 72 hours of becoming aware of the breach.
- Notify affected individuals within 3 working days after notifying the PDPC.
- Notify the relevant EU supervisory authorities (for EU users) within 72 hours under GDPR.
12. Your Rights Over Subscription and Payment Data
If you subscribe to a paid plan, payment processing is handled by external providers (Paymob, InstaPay). We do not store your full payment card details on our servers. For questions about how payment providers handle your data, please refer to their respective privacy policies.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the updated policy on our website at
livinquest.com/privacy. - Sending an in-app notification or email (for significant changes).
The “Last Updated” date at the top of this policy indicates when it was last revised.
14. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
-
Emails:
privacy@livinquest.com
admin@livinquest.com
- Postal Code: 11309
- Based -in: Cairo, Egypt