Privacy Policy

1. Information We Collect

Account information:

Email address (required to create an account) and password (hashed and stored securely by Supabase Auth — we never see or store your password in plain text).

Profile and preferences:

Relationship stage (early dating, long-term, married), community preference (Modern Orthodox, Yeshivish, Chassidish), location data you enter (cities, zip codes, or addresses for date planning — we do not access your device’s GPS location without your action), and partner link codes if you choose to link with a partner.

App usage data:

Dates you plan, their status, and feedback you provide; venues you mark as visited, skipped, or favorited; notification preferences; and crash reports and error logs (via Sentry — see Section 4).

2. How We Use Your Data

We use your data to provide venue recommendations matched to your stage, community, and location; generate date itineraries and meeting-point suggestions; send date reminders and weather-based outfit tips if enabled; allow you to sync plans with a linked partner; diagnose and fix crashes or errors in the App; and generate AI-assisted date ideas if you use the AI Planner (see Section 5).

We do NOT:

• Sell your data to any third party
• Share your data with advertisers for targeted advertising
• Use your data for any purpose beyond operating and improving DateDerech

3. Data Storage and Security

Your data is stored using Supabase, a cloud database provider. Data is encrypted in transit (HTTPS/TLS) and at rest. We use Row Level Security so that, by default, users can only access their own data. Database access is restricted and audited.

4. Third-Party Services

DateDerech relies on the following third-party services, each governed by their own privacy practices:

• Supabase (database, authentication, file storage)
• Google Places API (venue information and location data, used to look up details such as hours and photos)
• Sentry (error and crash monitoring — receives technical error reports including device type, app version, and the screen where an error occurred, but never your password or payment information)
• Apple Push Notification Service / Firebase Cloud Messaging (used to deliver push notifications if you enable them)

5. AI-Assisted Planner

If you use the AI Date Planner feature, the preferences you select (vibe, budget, time of day, city, relationship stage) are sent to an AI service to generate date ideas. We do not send your name, email, or account identifiers as part of this request. AI-generated suggestions are not stored unless you choose to save them as a planned date.

6. Cookies and Tracking (Website)

Our website (datederech.com) may use minimal cookies for basic site functionality, such as remembering your cookie consent choice. We do not use third-party advertising trackers on our website.

7. Data Retention and Deletion

We retain your data for as long as your account is active. You may delete your account at any time from the Account screen in the App. Deleting your account immediately and permanently removes your profile, preferences, planned dates, feedback, and partner links from our database, revokes all active login sessions, and cannot be undone. Crash and error logs in Sentry are retained for up to 90 days and are not linked to your account identity beyond a randomly generated device/session identifier.

8. Children's Privacy

DateDerech is intended for users 18 years of age and older. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected data from a user under 18, we will delete it promptly.

9. Your Rights

Depending on your location, you may have the right to access the personal data we hold about you, request correction of inaccurate data, request deletion of your account and associated data (available directly in the App), object to or restrict certain processing of your data, and receive a copy of your data in a portable format.

California residents have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected and the right to request deletion. We do not sell personal information.

EU/UK residents, if applicable, have rights under the General Data Protection Regulation (GDPR), including the rights listed above and the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, contact us at support@datederech.com. We will respond within a reasonable timeframe.

10. Partner Sync Data Sharing

If you link your account with a partner using a sync code, your linked partner will be able to view your shared planned dates and calendar information for the purpose of joint planning. You can unlink at any time from the Account screen, which stops future data sharing but does not retroactively delete data already viewed by your partner.

11. International Data Transfers

Our service providers, including Supabase and Sentry, may process data in the United States or other countries. By using DateDerech, you consent to this transfer and processing in accordance with this policy.

12. Changes to This Policy

We may update this policy as the App evolves. Material changes will be communicated via email or in-app notice. The "Last updated" date at the top of this page reflects the most recent revision.

13. Contact

For privacy questions, data access, or deletion requests, contact us at support@datederech.com. See also our Terms of Service at datederech.com/terms.