How Endear handles personal data
This policy explains what Endear collects, why we use it, who helps us process it, how long we keep it, and how users can make privacy requests.
1. Scope
This policy applies to Endear mobile apps, public websites at joinendear.com, waitlist flows, support communications, safety operations, and related services. It does not apply to third-party websites, app stores, payment processors, or platforms that have their own privacy policies.
2. Data we collect
| Category | Examples | Purpose |
|---|---|---|
| Identifiers and contact data | Phone number, email address, account IDs, app user IDs | Authentication, account recovery, support, fraud prevention, legal notices |
| Profile and dating data | Name, age, DOB, gender, relationship intent, preferences, basics, profile answers, compatibility responses | Profile creation, matching, compatibility, eligibility, safety, product operation |
| Photos and media | Profile photos, moderation metadata, image hashes, storage keys | Profile display, media safety, abuse prevention, account deletion cleanup |
| Voice, transcript, and AI data | Voice recordings, transcripts, prompts, generated drafts, extracted compatibility signals | Onboarding, transcription, profile drafting, safety screening, quality control |
| Location data | Approximate city, matching area, device location permission result, coordinates when needed for matching | Local matching, market eligibility, fraud prevention, user controls |
| Interaction data | Likes, passes, matches, candidate views, contact unlocks, contact-sharing choices | Core product flows, delivery, safety gates, analytics, entitlement checks |
| Safety and moderation data | Reports, blocks, report detail, restriction status, appeals, moderation decisions, audit events | Safety review, enforcement, fraud prevention, legal compliance, abuse prevention |
| Payment and entitlement data | RevenueCat subscriber ID, product IDs, transaction hashes, Letters balance, purchase/restore events | Paid feature delivery, entitlement proof, refunds/restores, fraud and accounting |
| Device, analytics, and diagnostics | Platform, app version, event metadata, crash/error diagnostics, request IDs, push tokens | Security, debugging, observability, product analytics, notifications |
| Waitlist and support data | Email, city, intent, age range, gender, referral, messages to support | Prelaunch demand, support responses, privacy requests, launch planning |
3. Sensitive data
Dating services may involve sensitive information or inferences, including age, gender, relationship preferences, location, compatibility, safety reports, photos, voice, and information that may relate to personal life, sexual orientation, or relationship status. Endear uses this data only for product, safety, support, legal, analytics, and operational purposes described in this policy.
4. How we collect data
We collect data directly from you, automatically from your device and use of the service, from other users who interact with or report you, from vendors that help operate Endear, and from app stores or payment infrastructure when you make purchases or restore entitlements.
5. How we use data
- Provide authentication, onboarding, profile creation, matching, likes, matches, contact unlocks, Letters, and support.
- Personalize compatibility, local delivery, and profile review.
- Detect, investigate, prevent, and respond to spam, scams, harassment, impersonation, underage use, exploitation, fraud, policy violations, and security issues.
- Process reports, blocks, appeals, account deletion, privacy requests, law-enforcement requests, and legal obligations.
- Debug, secure, measure, and improve Endear using privacy-minimized analytics and observability.
6. What other users can see
Other users may see approved public profile information, approved photos, age or approximate location where shown, compatibility-facing content, and app interactions that the product intentionally exposes, such as likes or matches. Other users do not receive your raw DOB, exact coordinates, private contact methods, raw phone number, raw email address, private report text, payment history, internal moderation notes, or raw backend identifiers from normal product surfaces.
7. Vendors and processors
Endear may use Supabase or managed PostgreSQL, Vercel, Cloudflare, Twilio, Resend, OpenAI, RevenueCat, PostHog, Sentry, Expo, Apple, Google, Google Maps, OpenStreetMap/Nominatim, object storage, and other vendors needed for hosting, storage, authentication, SMS, email, AI, maps, payments, analytics, observability, app distribution, and safety operations. Endear does not intentionally store raw payment card numbers; app-store and payment infrastructure process payments.
8. Data sharing
We may disclose data to service providers, app stores, payment processors, safety vendors, legal or law-enforcement recipients, professional advisors, business-transfer recipients, or other users as part of product functionality. We do not sell personal information for money. Endear does not currently use third-party cross-context behavioral advertising. If that changes, this policy and required opt-out controls must be updated first.
9. Retention
| Data | Operational retention target | Notes |
|---|---|---|
| Active account, profile, preference, matching, and contact-sharing data | For the life of the account | Removed or anonymized after account deletion unless retention is needed for safety, legal, fraud, payment, backup, or audit reasons. |
| Photos and media objects | For the life of the account; queued for deletion after account deletion | Moderation metadata may be retained where needed for safety or audit records. |
| Voice recordings and transcripts | Only as long as needed for onboarding, generation, safety, quality, or account lifecycle | Removed during account deletion unless needed for safety, legal, fraud, or audit reasons. |
| Reports, blocks, moderation actions, appeals, and admin audit logs | Up to 7 years or longer if legally required | May be retained after account deletion to protect users and enforce policies. |
| Payment, entitlement, tax, and accounting records | Up to 7 years or longer if legally required | Includes RevenueCat or app-store event metadata, not raw card numbers. |
| Analytics metadata | Up to 25 months | Designed to avoid raw sensitive content, exact coordinates, contact values, transcripts, or media payloads. |
| Crash/error diagnostics | Up to 90 days | Configured to avoid user context, screenshots, raw request payloads, and sensitive content where supported. |
| Backups | Up to 90 days | Deleted data may persist in encrypted backups until backup rotation completes. |
| Waitlist records | Until launch conversion, removal request, or periodic cleanup | Waitlist users may request removal through support or privacy requests. |
| Legal preservation holds | As required by the hold or legal process | Overrides ordinary deletion while the hold is active. |
10. Account deletion
You may start deletion in the app or through account-deletion.html. Deletion blocks product access and removes or anonymizes many profile, onboarding, matching, and contact records. Some records may remain without public profile or contact details for safety, fraud, legal, financial, backup, or audit reasons.
11. Privacy rights
Depending on where you live, you may have rights to know, access, correct, delete, port, opt out of certain processing, limit sensitive-data use, appeal a decision, or use an authorized agent. Endear provides a request path at privacy-requests.html and support@joinendear.com.
Endear does not currently respond to Do Not Track browser signals because there is no uniform industry standard. If Global Privacy Control or similar opt-out signals apply to Endear's future practices, Endear must honor them as required by law before enabling covered sale, sharing, or targeted advertising activity.
12. California and state privacy notices
Endear publishes this policy for CalOPPA-style transparency. If Endear becomes subject to CCPA/CPRA or similar state laws, Endear will honor applicable rights for eligible users, including access, deletion, correction, portability, opt-out, sensitive-data limitation, non-discrimination, and appeal rights where required.
13. Children
Endear is not for children or minors. Users must be 18 or older. If you believe a minor is using Endear, contact support@joinendear.com.
14. Security
Endear uses technical, administrative, and organizational safeguards designed to protect personal data. No system is perfectly secure. Contact support@joinendear.com for responsible security reports.
15. Changes and contact
We may update this policy when data practices, vendors, laws, or product features change. Contact Endear at support@joinendear.com.