← Back to Home
Privacy Policy
Last Updated: February 25, 2026
1. Introduction
Welcome to OPEN/Secret ("we," "our," or "us"). We operate the OPEN/Secret mobile application (the "App"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains what data we collect, how we use it, who we share it with, and your rights regarding your data.
2. Data We Collect
Information You Provide
- Account information: Email address, password, date of birth
- Profile information: Display name, photos, bio, gender identity, sexual orientation, relationship style, preferences, and other profile fields you choose to fill in
- Content: Messages you send to other users, reports you submit, feedback you provide
- Payment information: Subscription purchases are processed by Google Play and RevenueCat. We do not directly store your credit card or payment card details.
Information Collected Automatically
- Location data: When you enable location services, we collect your GPS coordinates (latitude and longitude) to calculate distances between you and potential matches. Your exact coordinates are stored in our database but are never displayed to other users — only your approximate city or area is shown. You can switch to "Travel Mode" to set a manual location instead.
- Device information: Device type, operating system version, unique device identifiers for push notifications
- Usage data: How you interact with the App, including swipes, matches, feature usage, and session timestamps
📍 About Your Location: We store your coordinates to calculate distances for match discovery. Other users only see your approximate area (e.g., "New York, NY"), never your exact location. You can disable location services at any time through your device settings or use Travel Mode to set a location manually.
3. How We Use Your Data
- Provide the service: Show you potential matches, enable messaging, manage your profile and preferences
- Safety and moderation: Review uploaded photos for explicit or inappropriate content using automated AI analysis, process user reports, enforce community guidelines, block and remove harmful accounts
- Push notifications: Send you alerts about new matches, messages, and important account updates
- Improve the App: Understand how features are used, fix bugs, improve matching quality
- Legal compliance: Comply with applicable laws, respond to legal requests, enforce our Terms of Service
4. Photo Moderation
When you upload a photo, it is automatically analyzed for explicit or inappropriate content using Clarifai's image recognition service. This analysis happens before the photo is published to your profile. The analysis checks for NSFW content and returns a safety score. We do not use your photos for any purpose other than providing the App's services and enforcing our content guidelines.
5. Third-Party Services
We use the following third-party services to operate the App. Each processes certain data on our behalf:
| Service |
Purpose |
Data Shared |
| Supabase |
Database, authentication, file storage |
All account and profile data, photos, messages |
| RevenueCat |
Subscription management |
User ID, subscription status, purchase history |
| Google Play |
Payment processing, app distribution |
Payment details (handled by Google), app usage |
| Firebase (Google) |
Push notifications, crash reporting |
Device token, crash logs, device info |
| Clarifai |
Photo content moderation |
Uploaded photos (analyzed for safety, not stored by Clarifai) |
| Resend |
Admin email notifications |
Admin email addresses only |
Each third-party service operates under its own privacy policy. We encourage you to review their policies for details on how they handle data.
6. Data Security
We implement appropriate security measures to protect your personal data:
- Encryption in transit: All data transmitted between the App and our servers is encrypted using TLS (Transport Layer Security)
- Row Level Security: Database-level access controls ensure users can only access their own data
- Secure storage: Data is stored on Supabase's infrastructure with industry-standard security practices
- Access controls: Administrative access is restricted and protected
While we take reasonable measures to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
7. Data Sharing
We do not sell your personal data. We share data only in the following circumstances:
- With other users: Your public profile information (display name, photos, bio, preferences) is visible to other users through the discovery and matching features
- With service providers: As described in Section 5, to operate the App
- For safety: If we believe disclosure is necessary to protect the safety of any person, prevent fraud, or address security issues
- Legal requirements: When required by law, regulation, legal process, or governmental request
8. Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate data through your profile settings
- Delete your account and associated data
- Object to certain data processing
- Export your data (data portability)
- Withdraw consent for optional features like location services
To exercise any of these rights, contact us at privacy@opensecretapp.co or use the in-app Help & Support feature. We will respond within 30 days.
9. Data Retention
We retain your data for as long as your account is active. When you delete your account:
- Your profile, photos, and messages are permanently deleted within 30 days
- Anonymized usage data may be retained for analytics purposes
- Data required by law (e.g., transaction records) is retained for the legally required period
- Reports you have filed or that have been filed against you may be retained for safety purposes
10. Cookies and Tracking
The App does not use cookies. We do not use advertising trackers or share data with ad networks. Firebase may collect standard analytics data as described in Google's privacy policy.
11. Children's Privacy
OPEN/Secret is strictly for users aged 18 and over. We enforce age verification during signup and do not knowingly collect personal data from anyone under 18. If we discover that a user is under 18, we will immediately terminate their account and delete their data.
12. California Residents (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- The right to know what personal information we collect and how it is used
- The right to request deletion of your personal information
- The right to opt out of the sale of personal information (we do not sell your data)
- The right to non-discrimination for exercising your CCPA rights
13. European Users (GDPR)
If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local data protection authority. Our legal basis for processing your data is your consent (for optional features like location) and legitimate interest (for providing the service and ensuring safety).
14. Changes to This Policy
We may update this privacy policy from time to time. We will notify you of material changes by posting the updated policy in the App and updating the "Last Updated" date. Continued use of the App after changes constitutes acceptance of the updated policy.
15. Contact Us
If you have questions about this privacy policy or your data, contact us:
- Email: privacy@opensecretapp.co
- In-app: Help & Support