Privacy Policy

Last updated: March 2026

1. Information We Collect

Account information: email address, username, date of birth, gender, city, country, and referral code.

Profile information: photos, bio, interests, height, education, job title, lifestyle preferences (drinking, smoking, exercise), personality type, love language, communication style, and profile prompts.

Usage data: swipe activity, match history, messages, compatibility scores, identity reveal requests, icebreaker game participation, and feature usage.

Device data: IP address (used for anti-abuse and referral fraud prevention), browser type, device type, and push notification tokens.

Location data: approximate location based on city or GPS coordinates (with your permission) for distance-based matching and travel mode.

Referral data: if you signed up via a referral link, we store who referred you to grant both parties the referral reward.

2. How We Use Your Information

  • Provide and personalize the matching experience, including blind anonymous matching and identity reveal
  • Compute compatibility scores to improve match quality
  • Show you relevant profiles based on your preferences
  • Deliver messages and notifications (including push notifications when your browser tab is inactive)
  • Process payments for premium features
  • Track and reward referrals with premium benefits
  • Ensure safety through content moderation, abuse prevention, and IP-based fraud detection
  • Improve the service through anonymized analytics
  • Send transactional emails (verification, password reset)
  • Send optional engagement emails (you can opt out anytime)

3. Data Sharing

We do not sell your personal data. We share information only:

  • With other users: your profile information is visible to potential matches. In anonymous (blind) mode, your identity is hidden until you mutually agree to reveal
  • Service providers: payment processing (Stripe), email delivery (Resend), file storage (Cloudflare R2), video calls (LiveKit)
  • Legal requirements: when required by law or to protect safety

4. Data Retention

Messages: All messages are automatically deleted after 3 days. This applies equally to free and premium users.

Notifications: Read notifications are automatically deleted after 30 days. Unread notifications are retained until read or until your account is deleted.

Anonymous matches: When an anonymous chat ends, the match record is deleted. If identities are revealed, a new match is created and the anonymous chat history is not carried over.

Account data: retained for as long as your account is active. When you delete your account, we permanently remove all your data including profile, photos, messages, matches, and referral records.

Data exports: available for download for 7 days after generation, then automatically deleted.

5. Your Rights (GDPR)

If you are in the EU/EEA, you have the right to:

  • Access: request a copy of your data via the "Download My Data" feature in your profile
  • Rectification: update your profile information at any time
  • Erasure: delete your account and all associated data
  • Portability: download your data in a machine-readable format (JSON)
  • Objection: opt out of marketing emails via email preferences
  • Restriction: snooze your profile to temporarily stop processing

6. Security

We protect your data with:

  • Encrypted passwords (bcrypt hashing)
  • HTTPS encryption for all data in transit (TLS 1.2/1.3)
  • HTTP Strict Transport Security (HSTS)
  • Two-factor authentication (optional TOTP)
  • Rate limiting and brute-force protection on all sensitive endpoints
  • Content Security Policy and security headers
  • SSRF protection on external URL fetching
  • Regular security audits

7. Cookies & Analytics

We use essential cookies for authentication. We use Google Analytics for anonymized usage statistics. You can disable analytics via your browser settings.

8. Children's Privacy

BlindCrush is not intended for users under 18. We do not knowingly collect information from minors.

9. Changes to This Policy

We may update this privacy policy. We will notify you of significant changes via email or in-app notification.

10. Contact

For privacy inquiries or to exercise your rights, contact us at [email protected].