Mia - Din Personliga AI Matchmaker

How it works

FAQ

Effective date: 10 Nov 2025

Controller: Mia Labs AB, org.nr 559552-1518, Upplandsgatan 68, hello@matchmakinglabs.com.

Effective date: 10 Nov 2025

Controller: Mia Labs AB, org.nr 559552-1518, Upplandsgatan 68, hello@matchmakinglabs.com.

1) What we do

We run an introduction service for adults (18+). We create profiles, assess compatibility, and introduce users one at a time. When both users accept an introduction, you can spend one Date Credit to receive a date, time, and a well-known public meetup address. We do not book venues or host the date, and we’re not responsible for what happens during or after the meetup.

1) What we do

2) Data we collect

•

Account & identifiers: name, age, city, email, phone, login data.

•

Account & identifiers: name, age, city, email, phone, login data.

•

Account & identifiers: name, age, city, email, phone, login data.

•

Profile & compatibility: personality, values, lifestyle, interests, profile photos, compatibility scores, brief “why you match” explanation.

•

Profile & compatibility: personality, values, lifestyle, interests, profile photos, compatibility scores, brief “why you match” explanation.

•

Profile & compatibility: personality, values, lifestyle, interests, profile photos, compatibility scores, brief “why you match” explanation.

•

Scheduling & status: accept/decline decisions, availability windows, meetup details, post-date feedback.

•

Scheduling & status: accept/decline decisions, availability windows, meetup details, post-date feedback.

•

Scheduling & status: accept/decline decisions, availability windows, meetup details, post-date feedback.

•

Comms with our AI assistants: messages/voice interactions for onboarding and feedback.

•

Comms with our AI assistants: messages/voice interactions for onboarding and feedback.

•

Comms with our AI assistants: messages/voice interactions for onboarding and feedback.

•

Payments: tokenised payment/id, purchase timestamps (via Stripe).

•

Payments: tokenised payment/id, purchase timestamps (via Stripe).

•

Payments: tokenised payment/id, purchase timestamps (via Stripe).

•

Device/usage: app version, device type, basic analytics and logs (BETA: strictly necessary + optional analytics only).

•

Device/usage: app version, device type, basic analytics and logs (BETA: strictly necessary + optional analytics only).

•

Device/usage: app version, device type, basic analytics and logs (BETA: strictly necessary + optional analytics only).

•

Sensitive data (optional): you may choose to share traits like religion, sexual orientation, or health; we only process these with your explicit consent.

•

Sensitive data (optional): you may choose to share traits like religion, sexual orientation, or health; we only process these with your explicit consent.

•

Sensitive data (optional): you may choose to share traits like religion, sexual orientation, or health; we only process these with your explicit consent.

Sources: you (directly), our verification (manual during BETA; BankID at launch), and our processors (e.g., payments, hosting, analytics where enabled).

3) Purposes & legal bases

Purpose

What we do

Legal basis

Account setup & access

Create/manage your account, verify age/identity

Contract; Legitimate interests (fraud/security)

Matching & introductions

Build your profile, compute compatibility, show one introduction at a time, provide meetup details after Date Credit

Contract; Explicit consent for any sensitive data used

Payments

Process Date Credit purchases, prevent fraud

Contract; Legal obligation (accounting)

Safety & misuse

Prevent spam/fraud/no-shows; moderate reports; bench/suspend where needed

Legitimate interests

Analytics (BETA)

Improve reliability and UX; no advertising cookies

Consent (off by default)

Marketing

Email/SMS/push marketing

Consent (opt-in; withdraw anytime)

Model training (optional)

Improve our AI models using anonymised content

Consent (opt-in; withdraw anytime)

Legal & compliance

Handle requests/claims; bookkeeping

Legal obligation; Legitimate interests

4) Automated decisions & profiling

We use automated compatibility scoring with human review before showing introductions. We do not make decisions that produce legal or similarly significant effects solely by automation. You may ask for more information, express your view, or contest an automated assessment.

4) Automated decisions & profiling

5) Sharing & recipients

•

Processors (EU/EEA): hosting, analytics (if enabled), support tools.

•

Processors (EU/EEA): hosting, analytics (if enabled), support tools.

•

Processors (EU/EEA): hosting, analytics (if enabled), support tools.

•

Payments: Stripe Technology Europe (and related Stripe entities) for processing.

•

Payments: Stripe Technology Europe (and related Stripe entities) for processing.

•

Payments: Stripe Technology Europe (and related Stripe entities) for processing.

•

Verification: manual checks.

•

Verification: manual checks.

•

Verification: manual checks.

•

Other users: limited profile elements are shown only to compatible introductions, one at a time.

•

Other users: limited profile elements are shown only to compatible introductions, one at a time.

•

Other users: limited profile elements are shown only to compatible introductions, one at a time.

•

Legal & corporate: authorities when legally required; professional advisors; business transfers.

•

Legal & corporate: authorities when legally required; professional advisors; business transfers.

•

Legal & corporate: authorities when legally required; professional advisors; business transfers.

6) International transfers

We aim to use EU/EEA providers. If any transfer outside the EEA is necessary, we rely on Standard Contractual Clauses and appropriate safeguards.

6) International transfers

We aim to use EU/EEA providers. If any transfer outside the EEA is necessary, we rely on Standard Contractual Clauses and appropriate safeguards.

7) Retention

•

Account & profile: deleted or anonymised within 30 days after account closure or inactivity, unless needed longer for security or legal reasons.

•

Account & profile: deleted or anonymised within 30 days after account closure or inactivity, unless needed longer for security or legal reasons.

•

Account & profile: deleted or anonymised within 30 days after account closure or inactivity, unless needed longer for security or legal reasons.

•

Reports/safety logs: kept as needed to investigate/mitigate abuse (typically up to 12 months).

•

Reports/safety logs: kept as needed to investigate/mitigate abuse (typically up to 12 months).

•

Reports/safety logs: kept as needed to investigate/mitigate abuse (typically up to 12 months).

•

Payments & bookkeeping: retained as required by law (e.g., up to 7 years under Swedish accounting rules).

•

Payments & bookkeeping: retained as required by law (e.g., up to 7 years under Swedish accounting rules).

•

Payments & bookkeeping: retained as required by law (e.g., up to 7 years under Swedish accounting rules).

•

Model-training data: only if you opt in; kept until you withdraw consent or we no longer need it.

•

Model-training data: only if you opt in; kept until you withdraw consent or we no longer need it.

•

Model-training data: only if you opt in; kept until you withdraw consent or we no longer need it.

8) Your choices

•

Sensitive data: optional and processed only with your explicit consent

•

Sensitive data: optional and processed only with your explicit consent

•

Sensitive data: optional and processed only with your explicit consent

•

Marketing: opt in or out anytime; each message has an unsubscribe option (SMS: reply STOP).

•

Marketing: opt in or out anytime; each message has an unsubscribe option (SMS: reply STOP).

•

Marketing: opt in or out anytime; each message has an unsubscribe option (SMS: reply STOP).

•

Cookies/SDKs: consent banner for non-essential analytics; you can change choices anytime in the app.

•

Cookies/SDKs: consent banner for non-essential analytics; you can change choices anytime in the app.

•

Cookies/SDKs: consent banner for non-essential analytics; you can change choices anytime in the app.

9) Your rights (GDPR)

You can access, correct, delete, or port your data, and object or restrict processing. You can withdraw consent at any time (this doesn’t affect past lawful processing).

Contact: hello@matchbymia.com

9) Your rights (GDPR)

You can access, correct, delete, or port your data, and object or restrict processing. You can withdraw consent at any time (this doesn’t affect past lawful processing).

Contact: hello@matchbymia.com

10) Security

We use technical and organisational measures to protect your data. No online service is 100% secure; we monitor and improve our safeguards continuously.

10) Security

We use technical and organisational measures to protect your data. No online service is 100% secure; we monitor and improve our safeguards continuously.

11) Children

Our service is for 18+ only. We delete under-age accounts when detected.

11) Children

Our service is for 18+ only. We delete under-age accounts when detected.

12) Changes to this policy

We may update this policy. For material changes that negatively affect you, we’ll give 30 days’ notice in-app or by email before they take effect.

12) Changes to this policy

We may update this policy. For material changes that negatively affect you, we’ll give 30 days’ notice in-app or by email before they take effect.

13) Contact

Mia Labs AB, org.nr 559552-1518, Upplandsgatan 68.

Privacy contact: hello@matchmakinglabs.com.

13) Contact