As a CyclePlanet user, I enter my profile data for specific purposes inside the platform, not to sign them away to anyone on the web.
It should be impossible for anyone who is not logged in on CyclePlanet to read user profile data.
This means we'll have to update the security rules for RTDB and trawl through all app functionalities to make sure no functionalities for non-logged-in users currently rely on user data.
Of course, non personally identifiable aggregate data about users (like "there are 50 potential hosts in The Netherlands") can and should remain available to non logged in users even when we fix this issue.
As a CyclePlanet user, I enter my profile data for specific purposes inside the platform, not to sign them away to anyone on the web.
It should be impossible for anyone who is not logged in on CyclePlanet to read user profile data.
This means we'll have to update the security rules for RTDB and trawl through all app functionalities to make sure no functionalities for non-logged-in users currently rely on user data.
Of course, non personally identifiable aggregate data about users (like "there are 50 potential hosts in The Netherlands") can and should remain available to non logged in users even when we fix this issue.