Simply Meet — Privacy Policy

Effective Date: LEGAL-REVIEW: set when published
Last Updated: May 1, 2026

Simply Meet ("Simply Meet," "we," "us," or "our") is operated by LEGAL-REVIEW: Legal entity name, e.g. Fulcrologic, LLC, a LEGAL-REVIEW: state and entity type. This Privacy Policy describes how we collect, use, share, and protect information when you use the Simply Meet application, website, and related services (together, the "Service").

This policy is written in plain language. If anything here is unclear, email us: privacy@simplymeet.world.

The short version

We do not share your information with any other company except the operational service providers listed in §6 (hosting, payments, push delivery, moderation), each of which is bound by a data-processing agreement.
We share your profile information only with other Simply Meet members who are seeking the same things you are seeking.
We do not use your information for external marketing, advertising, ad targeting, or to train third-party AI models.
We do use aggregate, anonymous statistics about our user base (e.g., the general regions where members live) to decide where to place real-world advertising for the app. This is purely population-level data — never user-specific detail.
If you delete your account from inside the app, all information you have ever submitted to us will be completely deleted within 7 business days. Once that window passes, the deletion is permanent and irreversible. (Anonymised safety records related to reports filed against you may be retained for audit as required by law.)

1. Who this policy covers

This policy covers:

The Simply Meet mobile app on iOS and Android.
The Simply Meet website (simplymeet.world).
Back-end services we operate (API server, push delivery, moderation tools).

This policy does not cover:

Third-party services integrated in the product (Stripe, Apple, Google, Firebase, Amazon Web Services). These are described in §6 below.
Any external link a user may visit from inside the app.

2. Who can use Simply Meet

The Service is for adults 18 and older. We do not knowingly collect information from anyone under 18. If you believe a child under 18 has provided us information, contact privacy@simplymeet.world and we will delete it.

3. What we collect

3.1 Information you give us

Data	Purpose	Required?
Email address	Account sign-in; receipts; safety notices	Yes
Password (hashed)	Sign-in	Yes (unless using Apple/Google sign-in)
Display name	Shown to other members on your profile	Yes
Date of birth	Age gate (18+ only) and age filters	Yes
Gender, orientation	Shown on profile; used for matching filters	Optional
Height, interests	Shown on profile; used for matching filters	Optional
Profile photos	Shown on profile after moderation	Yes (at least one)
Written profile content	Shown on profile	Optional
Introduction messages	Delivered to the recipient	Generated by you
Chat messages	Delivered to the other party	Generated by you
Event RSVPs	Recorded so event hosts can see attendance	Generated by you
Complaints / reports	Reviewed by our moderation team	Generated by you

3.2 Information we collect automatically

Data	Purpose
Approximate location (city / region)	Show nearby members and events
Device info (model, OS version)	Diagnostics; crash reporting
IP address	Security (rate-limiting, fraud detection)
Device push token (APNs / FCM)	Deliver push notifications
App crash logs	Diagnostics — see §6 third parties
Timestamps of app usage	Security auditing
Session/auth token (cookie / JWT)	Keep you signed in

We do not collect:

Exact GPS coordinates. We compute approximate distance on your device and only transmit the distance band used for matching.
Contacts. We never read your address book.
SMS, call logs, microphone, or camera without your explicit action (e.g., tapping "Take photo").
Health, financial, or biometric data.
Tracking identifiers across other apps or websites.

3.3 Information we compute on your behalf

Derived data	How it's used
Credit balance (tied to your email)	Determines how many introductions you can send
Safety score per message (moderation)	Routes risky messages to admin review
Show-up rate and reputation score	Displayed as a reputation indicator to members

4. Why we collect it (lawful bases)

Performance of a contract: to run your account, deliver introductions and chats, and process payments.
Legitimate interests: to detect fraud, moderate harmful content, and keep members safe.
Legal obligation: to comply with law-enforcement requests, AML rules for payout processing, and to retain transaction records for the period required by tax and consumer-protection law.
Consent: for optional processing such as marketing emails, where you can withdraw consent any time.

For users in the EU / UK, the above map to GDPR Articles 6(1)(b), 6(1)(f), 6(1)(c), and 6(1)(a) respectively.

5. How we use your information

Account operation: sign-in, password reset, sending you critical notices about your account.
Matching and discovery: showing you other members and events that match your declared filters, and showing you to members who match yours.
Communication: delivering introductions, chat messages, and event notifications.
Payments: processing in-app credit purchases via Apple, Google, and Stripe. We do not see your full card number.
Moderation and safety: automated safety screening of messages and photos, review by our admin team, handling of reports.
Customer support: responding when you contact us.
Security: rate-limiting, bot detection, account-takeover protection.
Product improvement: diagnosing crashes and bugs. Crash logs do not include your message contents.

5.1 Aggregate, anonymous statistics

We compute aggregate statistics over our user base — for example, the general regions where our members live — to decide where to place real-world advertising (such as physical or geographic ad buys) to make more people aware of the app. This is completely anonymous: counts and trends across the population, never user-specific detail. No individual user's identity, profile, or activity is shared with any advertising platform or third party.

5.2 What we do NOT use your information for

Targeted (per-user) advertising.
Selling your data to third parties.
Training third-party AI models.

6. Third parties we share with

We share only the minimum needed for each third party to do its job. We have signed data-processing agreements with each processor below as required under GDPR / UK GDPR. We do not sell personal information, and we do not "share" personal information for cross-context behavioural advertising under the CCPA definition.

Third party	What we share	Why	Their policy
Apple	Purchase tokens; APNs push tokens	In-app credit purchases; push delivery	link
Google	Purchase tokens; FCM push tokens; Google Sign-In identifier (if you use it)	Same, plus sign-in	link
Stripe	Email, payout account info (for referral earnings)	Referral/payout processing	link
Amazon Web Services	All app data (encrypted at rest)	Hosting of our servers and storage	link
Firebase (Google)	Device tokens; message metadata	Push notifications for Android	link
Sentry	Crash stack traces; exception type/message; device OS + SDK version; release build ID; scrubbed request path. No email, name, message text, chat content, auth tokens, or request body is sent. PII keys are replaced with `[scrubbed]` before transmission.	Crash and performance diagnostics	link
Moderation LLM (Z.AI GLM)	Message and profile content at the moment of a safety check	Safety screening	LEGAL-REVIEW: confirm Z.AI policy link

7. Data we show to other members

Other Simply Meet members can see, on your profile: display name, photos, age, gender, orientation, height (if set), interests, written profile content, approximate distance from them, and your reputation score.

Other members cannot see: your email, phone, exact location, date of birth (only age), message contents with anyone other than them, or purchase history.

8. Your rights

Regardless of where you live, you have these rights:

Access — see the data we hold about you.
Correction — fix inaccurate data (most fields are editable in the app; email us for others).
Deletion — delete your account and associated personal data.
Portability — receive an export of your data in a machine-readable format.
Object / restrict — tell us to stop processing for a specific purpose.
Withdraw consent — where processing is based on consent, withdraw it any time.

For users in California, the CCPA/CPRA additionally gives you the right to opt out of the sale or sharing of personal information. We do not sell or share your personal information for cross-context behavioural advertising, so this right is already honoured by default.

To exercise any right, use the in-app controls where available, or email privacy@simplymeet.world from the email address on your account. We respond within 30 days (EEA / UK) or 45 days (California), as required by law.

9. Account deletion

You can delete your account from inside the app: Profile → Delete Account. On confirmation:

Your profile is immediately removed from search and discovery.
Your messages stop being delivered.
Within 7 business days, all information you have ever submitted to us — profile, photos, messages, RSVPs, and any other personal data — is completely purged from our systems, including backups. This deletion is permanent and irreversible after the 7-business-day window.
Purchase credits tied to your email are preserved (intentional) — if you ever come back with the same email, they are restored. If you also wish your purchase records deleted, say so in your deletion request and we will purge them subject to mandatory tax-record retention (§10).
Safety records related to reports filed against you are anonymised and retained for audit purposes as required by law.

10. Data retention

Category	Retention
Account profile and photos	Until deletion, then purged within 7 business days
Chat messages	For the duration of the conversation; purged within 7 business days after account deletion
Payment transaction records	7 years (tax and consumer-protection law)
Moderation reports filed against you	Retained pseudonymously for up to 3 years for safety audit
Push tokens	Deleted immediately when FCM/APNs returns "unregistered"
Session/auth tokens	Deleted on sign-out or after 30 days of inactivity
Backups	Rotated within the 7-business-day deletion window
Credit balance (by email)	Indefinite — intentional, see §9

LEGAL-REVIEW: Confirm 7-year payment-record retention against the jurisdictions in which you operate. Some EU member states require 10 years.

11. International data transfers

Our infrastructure is hosted on Amazon Web Services. If you are in the European Economic Area, the United Kingdom, or Switzerland, your data may be transferred to the United States. When it is, we rely on Standard Contractual Clauses approved by the European Commission and UK ICO as our transfer mechanism. LEGAL-REVIEW: If the AWS region is an EU region, say so here.

12. Security

All traffic between the app and our servers uses TLS 1.2 or higher.
Passwords are hashed using a salted bcrypt-class algorithm.
Data at rest is encrypted (AWS-managed keys).
Access to production systems is limited to a small on-call rotation, requires MFA, and is audit-logged.
We run regular dependency-vulnerability scans.

No system is perfectly secure. If you become aware of a security issue, email security@simplymeet.world.

13. Children

Simply Meet is for adults 18 and older. We do not knowingly collect information from children. If we learn that we have collected information from someone under 18, we delete it.

14. Changes to this policy

We will post material changes here and, for significant changes, email active accounts. Continued use after a change means you accept the updated policy. The "Last Updated" date at the top of this document always reflects the most recent change.

15. Contact

General privacy questions: privacy@simplymeet.world
Security reports: security@simplymeet.world
EU Representative under GDPR Article 27: LEGAL-REVIEW
UK Representative under UK GDPR: LEGAL-REVIEW
Data Protection Officer (if appointed): LEGAL-REVIEW

Postal address: LEGAL-REVIEW: Registered business address