Privacy Policy

Last updated: 1 July 2026

What we collect

Account: email, display name, city, bio, avatar/photos, social links.
Identity: Stripe Identity processes your ID and selfie. We receive only the verification outcome (approved / requires input / rejected), never the document itself.
Payments: Stripe processes all card data. We store the Stripe customer ID and subscription state.
Bookings & chat: hangout requests, messages, and moderation flags.
Telemetry: minimal logs for security, abuse prevention, and uptime.

Why

To run the service, verify identities, take payments, prevent abuse, and meet legal obligations (KYC, tax, fraud).

Who we share with

Stripe (payments + identity), Supabase (database + auth), Mailgun (transactional email), Cloudflare (hosting/CDN). All are GDPR-compliant sub-processors bound by data processing agreements. We never sell your data.

How long we keep it

Account data until you delete the account. Booking records: 24 months for safety and dispute resolution. Payment records: 7 years for tax. Verification outcomes: lifetime of the account.

Your rights (GDPR/CCPA)

Access, correction, deletion, export, and objection. Email privacy@irlmeet.com and we'll respond within 30 days. You can unsubscribe from marketing in any email; transactional messages (receipts, booking confirmations) can't be opted out.

Cookies

Strictly necessary cookies for session/auth only. No advertising trackers.

Children

18+ only. We do not knowingly collect data from minors.

Contact

privacy@irlmeet.com · See also Terms.