Privacy Policy
Last updated: 1 July 2026
What we collect
Account: email, display name, city, bio, avatar/photos, social links.
Identity: Stripe Identity processes your ID and selfie. We receive only the verification outcome (approved / requires input / rejected), never the document itself.
Payments: Stripe processes all card data. We store the Stripe customer ID and subscription state.
Bookings & chat: hangout requests, messages, and moderation flags.
Telemetry: minimal logs for security, abuse prevention, and uptime.
Why
To run the service, verify identities, take payments, prevent abuse, and meet legal obligations (KYC, tax, fraud).
Who we share with
Stripe (payments + identity), Supabase (database + auth), Mailgun (transactional email), Cloudflare (hosting/CDN). All are GDPR-compliant sub-processors bound by data processing agreements. We never sell your data.
How long we keep it
Account data until you delete the account. Booking records: 24 months for safety and dispute resolution. Payment records: 7 years for tax. Verification outcomes: lifetime of the account.
Your rights (GDPR/CCPA)
Access, correction, deletion, export, and objection. Email privacy@irlmeet.com and we'll respond within 30 days. You can unsubscribe from marketing in any email; transactional messages (receipts, booking confirmations) can't be opted out.
Cookies
Strictly necessary cookies for session/auth only. No advertising trackers.
Children
18+ only. We do not knowingly collect data from minors.
Contact
privacy@irlmeet.com · See also Terms.