Privacy Policy
1. Who we are
Full Moon Running ("FMR", "we", "us", "our") is operated by:
JAIMEFY LTD
Sunset Villa 2, 8502, Anarita, Cyprus
Email: hello@fullmoonrunning.com
For the purposes of applicable data protection regulations, JAIMEFY LTD acts as the data controller.
2. Scope of this policy
This Privacy Policy explains how we collect, use, store, and protect personal data when:
- You register and create a Full Moon Running account
- You purchase a FullMoonRunner subscription or Lifetime access
- You use the Full Moon Running platform (web and app)
- You participate in events and community features
- You communicate with us
By creating an account or using our services, you acknowledge and accept this Privacy Policy.
3. What personal data we collect
3.1 Account and identity data
- Email address
- Authentication credentials
- Unique bib number
- Username
- Profile photo (optional)
- Country and city
- Language and preferences
3.2 Participation and activity data
- Events created or joined
- Attendance records
- Medals or recognitions earned
- Community interactions within the platform
3.3 Payment and transaction data
- Payment identifiers provided by our payment processor (Stripe)
- Subscription status and billing history
We do not store credit or debit card data.
3.4 Communications
- Emails sent or received
- Service-related notifications
- Customer support interactions
3.5 Technical and usage data
- IP address
- Device and browser information
- Log data
- Cookies and similar technologies
- Analytics data (when consent exists)
4. Third-party authentication services (Social Login)
FMR offers the ability to register and sign in using third-party authentication services, which allow quick and secure access to the platform.
4.1 Google Sign-In
When you register or sign in using Google Sign-In, we receive exclusively the following data from Google:
- Name
- Email address
This data is used solely to create and manage your Full Moon Running account, assign your Lunar ID, and enable secure access to the platform.
We do not use this data for advertising, analytics, or profiling, nor do we access other information from your Google account such as contacts or activity.
You can revoke Google Sign-In access at any time from your Google account settings. Once revoked, we will stop receiving data from Google.
4.2 Meta Login (Facebook Login) – when enabled
When available, FMR may allow registration and sign-in through Meta (Facebook Login).
When you register or sign in using Meta Login, we receive exclusively the following data from Meta:
- Name
- Email address
This data is used solely to create and manage your Full Moon Running account and enable secure access to the platform.
We do not use this data for advertising, analytics, or profiling, nor do we access other information from your Meta account such as contacts or activity.
You can revoke Meta Login access at any time from your Meta account settings. Once revoked, we will stop receiving data from Meta.
4.3 Role of third-party providers
Google and Meta act as independent data controllers for the data they process on their respective platforms. FMR acts as the data controller solely with respect to personal data received and processed within the Full Moon Running platform.
For more information, consult their privacy policies:
Google Privacy Policy
Meta Privacy Policy
5. Legal bases for processing (GDPR)
We process personal data in accordance with the following legal bases:
- Performance of a contract (account creation, subscriptions, service access)
- Legal obligation (accounting, taxes, fraud prevention)
- Legitimate interest (platform security, service improvement)
- Consent (marketing communications, optional cookies)
6. How we use your data
We use personal data to:
- Create and manage user accounts
- Assign and maintain a unique bib number
- Provide access to Full Moon Running services
- Process payments and subscriptions
- Enable participation in events and community features
- Send service-related communications
- Improve platform performance and security
- Comply with legal and regulatory obligations
We do not sell personal data.
7. Cookies and similar technologies
We use cookies and similar technologies to ensure the platform functions correctly, remember preferences, analyze usage, and enable optional features.
You can manage your cookie preferences at any time through the cookie banner or settings.
For more information, see our Cookies Policy.
8. Data sharing and data processors
We share personal data only with trusted providers who act as data processors, including:
- Supabase (authentication, database, storage)
- Vercel (hosting and infrastructure)
- Stripe (payment processing)
- Resend (email communications)
- Mapbox (maps and geolocation features)
- Analytics providers (only when consent exists)
All processors are bound by contractual obligations to protect personal data.
9. International data transfers
As a global platform, personal data may be processed outside your country of residence.
When necessary, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) to ensure an adequate level of protection.
10. Data retention
We retain personal data only for as long as necessary:
- Active accounts: while the account remains active
- Deleted accounts: personal data is deleted or anonymized without undue delay
- Legal obligations: certain data may be retained in a restricted and blocked state (e.g., billing, accounting, fraud prevention) for legally required periods
Retained data is not used for commercial purposes.
11. Account deletion
Users may request account deletion at any time.
When an account is deleted:
- Service access ends immediately
- Active subscriptions are canceled without refund for unused periods
- Personal data is deleted or anonymized, except where legal retention obligations exist
12. User rights
Depending on your place of residence, you may have certain rights regarding your personal data, including:
- Access to your personal data
- Rectification of inaccurate or incomplete data
- Deletion of your personal data
- Restriction of or objection to processing
- Data portability
- Withdrawal of consent at any time (when processing is based on consent)
We apply these rights in accordance with applicable data protection laws and, where required, in accordance with the EU General Data Protection Regulation (GDPR).
Requests can be sent to hello@fullmoonrunning.com.
We will respond within legally established timeframes and, in any case, no later than 30 days from receipt of the request.
EU users have the right to file a complaint with the Cyprus Data Protection Authority or their local supervisory authority.
13. Users outside the EU
Our goal is to apply consistent privacy standards globally.
Users located in jurisdictions such as the United States, LATAM, United Kingdom, or Australia may have additional rights under their local laws. We will honor such rights when applicable.
14. Security measures
We implement appropriate technical and organizational measures to protect personal data, including secure authentication, access controls, and infrastructure monitoring.
No system is completely secure, but we take reasonable measures to protect your data.
15. Changes to this policy
We may update this Privacy Policy periodically.
Any changes will be published on this page and will be effective from their publication.
16. Contact
For any questions about this Privacy Policy or the processing of your personal data, contact:
hello@fullmoonrunning.com