Privacy Policy

Introduction

Effective Date: February 27, 2026

This Privacy Policy explains how Vetted (“Vetted,” “we,” “us,” “our”) collects, uses, shares, and protects information about you when you use the Vetted dating app and related services (collectively, the “Service”). Vetted is a dating app where women rate men after dates across five categories: Respect, Effort, Conversation, Honesty, and Appearance Accuracy. Date with confidence.

Who we are: Vetted is operated by Rez Schaefer (sole developer/operator), based in the United States. If you have questions or want to exercise privacy rights, contact us at vetted@rezschaefer.com.

What this policy covers

This Privacy Policy covers information we process in connection with:

• the Vetted iOS and Android mobile applications (built with Expo/React Native);
• our websites and pages that link to this Privacy Policy (including any support site);
• our communications with you (for example, customer support emails, safety-related messages, and verification); and
• other interactions you have with the Service (including reporting, safety features, and subscription status checks).

Relationship to other documents

This Privacy Policy is part of how we operate the Service and should be read together with our Terms of Service, Community Guidelines, and Safety Notice. If you do not agree with this Privacy Policy, please do not use the Service.

Acceptance

By creating an account, accessing, or using the Service, you acknowledge that you have read and understood this Privacy Policy. Where we rely on consent for specific processing (for example, device GPS location), you can withdraw that consent at any time by changing your device settings or in-app settings, as described below.

High-level privacy commitments

• We do not sell your personal data.
• We limit sharing to what is needed to run the Service, keep the community safe, and comply with law.
• We use location for matching but do not share your precise coordinates with other users; we display approximate distance instead.
• Private Photos are consent-gated and revocable; we design for user control and safety.

Definitions

These definitions are intended to make this Privacy Policy easier to read. Some terms may have specific meanings in certain laws; where required, we apply those legal meanings.

• “Account Data” means information associated with your Vetted account, such as your account identifiers, email, phone number, date of birth, and settings.
• “Aggregated Data” means data combined across many users so it no longer identifies an individual (for example, “active users per region per day”).
• “Controller” means the entity that determines the purposes and means of processing personal data. For the Service, Vetted is generally the Controller.
• “Device Data” means information about the device you use to access the Service, such as operating system, device model, app version, language settings, and certain device identifiers.
• “Location Data” means information about your location, including precise GPS coordinates (if you permit), approximate location derived from IP address, and derived data such as distance or region classification.
• “Personal Data” (or “Personal Information”) means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked to you. Personal Data does not include aggregated or deidentified information that cannot reasonably be linked to you.
• “Private Photos” means photos you choose to store in consent-gated albums that are not publicly visible and require explicit request and approval to view; access can be revoked at any time.
• “Processing” means any operation performed on Personal Data, such as collecting, storing, using, analyzing, disclosing, or deleting.
• “Processor” (or “Service Provider”) means a vendor that processes Personal Data on behalf of the Controller under contract (for example, cloud hosting or error tracking providers).
• “Profile Data” means information you choose to include in your public profile, such as profile photos (up to 6), bio text, prompt answers, interest tags, languages spoken, height, dating intent, and location.
• “Sensitive Personal Information” means certain categories of Personal Data treated as sensitive under some laws. For Vetted this may include precise geolocation, date of birth, and information that may reveal aspects of your dating preferences, depending on your jurisdiction.
• “Usage Data” means information about how you use the Service, such as swipes, likes/passes, matches, messaging activity (for example, counts and timestamps), feature usage (for example, Super Like or Boost usage), and session duration.
• “Verification Selfie” means the selfie image you submit for Photo Verification (a liveness check), which is used to help reduce catfishing.
• “Service” means the Vetted mobile apps and related websites, services, features, and communications.
• “You” means the person using the Service.

When we say “including,” we mean “including without limitation.”

Information We Collect

We collect information in three main ways: (a) information you provide directly, (b) information collected automatically when you use the Service, and (c) information from third parties. We collect and use information to provide a location-based dating experience and to maintain community safety.

Information you provide directly

When you create an account and use the Service, you may provide us with the following types of information:

Registration and account information

• Name (or a display name, depending on the feature design).
• Email address (if you provide it and where required for the Service).
• Phone number and verification status (we require phone verification to reduce spam and abuse).
• Date of birth (used to enforce our 18+ requirement and to provide age-related features where applicable).
• Account settings such as notification preferences, privacy settings, and safety settings.

Profile information

You can customize what you share on your Profile. Depending on the features available, Profile Data may include:

• Profile photos (up to 6) and related metadata (such as upload time).
• Bio text and prompt answers (from a curated catalog).
• Dating intent (Serious, Casual, Friends, Activity Partner).
• Interest tags and other self-described tags or labels.
• Languages spoken.
• Height (if you choose to provide it).

Some of the above information may be considered sensitive in certain jurisdictions (for example, dating intent may relate to personal life; location is sensitive when precise).

Content you create and share

The Service is based on interactions between users. We collect the content you submit and the actions you take, including:

• Messages you send and receive, and associated metadata (for example, timestamps, delivery status, read receipts, and participant identifiers).
• Chat media (photos or other media you choose to share in messages).
• Private Photos you upload and store in consent-gated albums.
• Reports you submit about other users or content, including the report reason and any free-text description.
• Block actions (who you have blocked, and when).
• Safety feature inputs such as Safety Check-In timers you set (for example, timer duration, status, and dismissal).

Verification and safety-related submissions

• Verification selfie and information needed to conduct liveness checks for Photo Verification.
• Support inquiries and communications you send to us (for example, emails to support and the content of your request).
• Appeals or disputes related to moderation actions (for example, your explanation and any evidence you provide).

Waitlist, early access, or interest forms

If we offer a waitlist or early access form (for example, on a support website), we may collect information such as your email address, phone number, or other details you submit so we can contact you about access and updates. You can request removal from such lists by contacting vetted@rezschaefer.com.

Information collected automatically

When you use the Service, we automatically collect certain information for purposes such as security, performance, reliability, product improvement, and safety.

Device and network information

• Device information such as operating system (iOS/Android), device model, device language, time zone, and app version.
• Network information such as IP address and approximate location derived from IP address (for example, for fraud and security signals).
• App identifiers and session identifiers used to maintain secure connections and provide real-time features (for example, WebSocket chat).

Location information

If you grant location permissions, we collect GPS-based location to support distance-based matching and related features. Our location features are described in more detail in Location Data. If you do not grant location permission, we may still infer an approximate location (for example, from IP address) for security and basic functionality, but your matching experience may be limited.

Usage and interaction data

We collect Usage Data about how you use the Service, such as:

• swipes (likes, passes, and premium actions where applicable);
• matches created and ended (including through blocks or moderation actions);
• messages sent and received (including delivery events);
• profile views and feature usage (for example, filters used, Private Photos requests, and safety feature usage);
• session duration, screens viewed, and general navigation patterns.

We use this data to operate the Service (for example, to deliver messaging), reduce abuse, and improve the product (for example, to understand what features are used and where users experience friction).

Crash reports and error diagnostics

We use Sentry for error tracking and diagnostics. Crash reports may include device type, OS version, app state at the time of crash, timestamps, and technical logs. Depending on configuration and the error, crash reports may also include identifiers (such as a user ID) and limited in-app context needed to reproduce or fix issues. We strive to minimize the personal content included in crash data.

Performance telemetry and observability

We use OpenTelemetry and related observability tools to monitor performance and reliability (for example, request timing, error rates, and service health). Telemetry may include technical metadata such as timestamps, request identifiers, route names, latency measures, and aggregated performance statistics. Where possible, we avoid collecting message content in telemetry. Some telemetry may be linked to an account or session to diagnose specific issues.

Information from third parties

We receive certain information from third parties to provide core functions such as subscriptions and authentication.

Apple In-App Purchase and Google Play Billing

If you purchase Vetted+ through Apple or Google, we receive information needed to validate purchases and manage subscription status, which may include:

• purchase receipts or receipt tokens;
• subscription status (active, expired, canceled);
• subscription duration and renewal information;
• product identifiers and transaction metadata.

We do not receive your full payment card number from Apple or Google. Apple and Google process payment information according to their own privacy policies and terms.

Authentication and identity provider data

We use an authentication system (Keycloak OIDC) to manage sign-in and secure access. This may involve processing:

• authentication tokens and sessions;
• login timestamps and security events (for example, failed login attempts);
• account identifiers that link authentication to your Vetted account.

Other third-party data

We may receive information from other vendors that support the Service (for example, delivery receipts for push notifications or anti-abuse signals). When we do, we use it only for the purposes described in this Privacy Policy.

How We Use Your Information

We use Personal Data to provide, secure, and improve the Service. The specific purposes below may overlap. Where required, we rely on an appropriate legal basis as described in Legal Basis for Processing.

To provide the Service and perform our contract with you

• Create and manage your account, including phone verification, login sessions, and account settings.
• Build and display your profile, including showing your Profile Data (such as photos, bio, prompts, tags, and intent) to other users consistent with your privacy settings.
• Enable matching by processing signals such as location, dating intent, and preferences.
• Enable messaging between mutual matches, including delivery, read receipts, presence indicators, and media sharing.
• Manage Private Photos requests and access controls (request, grant, revoke) and enforce consent-gated visibility.
• Provide Photo Verification and display a verification badge when approved (without guaranteeing identity).
• Provide premium features for Vetted+ subscribers, including validating receipts, maintaining entitlement status, and enabling premium feature access.

To support community safety, moderation, and enforcement

• Review and act on reports, including investigating reported profiles, messages, and media.
• Detect and prevent harmful behavior such as harassment, spam, bots, fraud, and ban evasion.
• Scan media and content for safety signals, such as potentially explicit content in areas where it is not allowed, or signals of abuse and exploitation. We may use automated systems to flag content for review.
• Enforce our rules under the Terms of Service and Community Guidelines, including applying account statuses such as Active, Suspended, Banned, or Shadow Banned.
• Operate safety features such as block/report tools and Safety Check-In timers; help you manage your own safety choices.

To prevent fraud and protect the Service

• Protect against unauthorized access, account takeover attempts, and abusive usage patterns.
• Maintain security logs, audit trails, and rate limiting signals.
• Verify subscription and purchase status to prevent payment fraud.
• Maintain banned identifiers (in a limited form) to prevent re-registration and repeat harm.

To communicate with you

• Send service messages related to account verification, security, policy updates, and important notices.
• Send push notifications if you enable them (for example, new match, new message, Private Photos request, or safety-related notices). You can control notifications in your device settings and, where available, in the app.
• Respond to your support requests and handle complaints or disputes.

To analyze, improve, and develop the Service

• Understand usage trends, such as how often features are used across different regions.
• Fix bugs and improve reliability using crash reporting (Sentry) and performance telemetry (OpenTelemetry).
• Test and improve features (for example, matching filters, safety prompts, or onboarding flows), including through experiments and A/B testing where appropriate.
• Measure and improve safety (for example, understanding report rates and outcomes, and improving detection of spam and abuse).

When possible, we use aggregated or deidentified data for analytics and research. For example, we may analyze aggregated match rates by region or feature adoption without identifying individuals.

To comply with legal obligations and protect vital interests

• Comply with lawful requests from public authorities, including law enforcement requests, subpoenas, and court orders.
• Respond to safety emergencies where disclosure may be necessary to protect someone’s life or physical safety.
• Maintain records required for tax, accounting, or legal compliance (for example, limited subscription records).
• Protect our rights and the rights of users (for example, responding to claims and preserving evidence for dispute resolution).

Legal Basis for Processing

Privacy laws in some jurisdictions (including certain international laws) require us to explain the legal bases we rely on to process Personal Data. The legal bases below may not apply in every jurisdiction, but we provide them for transparency and future compatibility.

Consent

We rely on your consent where appropriate, especially for data you control through device permissions. Examples include:

• Precise GPS location used for distance-based matching (you can withdraw consent by disabling location permission on your device).
• Push notifications (you can disable notifications through your device settings and, where available, in-app settings).
• Optional profile fields or features you choose to use (for example, uploading Private Photos or submitting a Verification Selfie).

Withdrawing consent does not affect processing that occurred before you withdrew consent, and it may limit our ability to provide certain features.

Performance of a contract

We process many categories of Personal Data because it is necessary to provide the Service you request under the Terms of Service. This includes:

• account creation, verification, authentication, and session security;
• displaying your profile and enabling matching;
• enabling messaging between matches and delivering media;
• processing subscription status and entitlements for Vetted+; and
• providing customer support and managing your account settings.

Legitimate interests

We may process Personal Data when it is necessary for our legitimate interests and those interests are not overridden by your rights. Examples include:

• Safety and abuse prevention (for example, detecting spam, fraud, and harmful behavior; investigating reports; and enforcing bans).
• Service reliability (for example, debugging, crash reporting, and performance monitoring).
• Product improvement (for example, analyzing how features work, testing improvements, and measuring community health and safety outcomes).
• Security (for example, securing infrastructure, preventing account takeover, and maintaining audit logs).

When we rely on legitimate interests, we consider the nature of the data, the context of collection, user expectations, and the impact on privacy. We strive to use privacy-preserving approaches (such as aggregation) when possible.

Legal obligations

We may process and retain Personal Data to comply with legal obligations, such as responding to valid legal process, maintaining records required for tax/accounting, and meeting mandatory reporting obligations. When we receive a request for data, we assess it and disclose only what we believe is required or legally permitted.

Vital interests

In rare cases, we may process or disclose Personal Data to protect someone’s vital interests, such as when there is a credible threat to life or physical safety. We take such disclosures seriously and limit them to what is necessary for the emergency.

How We Share Your Information

We share information as described below. We do not sell your Personal Data, and we do not share Personal Data for cross-context behavioral advertising.

Sharing with other users

The Service is social by design. You control some sharing through what you put on your profile, your privacy settings, and your actions on the Service.

• Profile display: Other users can see your Profile Data that you choose to make public on Vetted (such as profile photos, bio, prompts, tags, dating intent, and languages spoken). Some profile fields may be optional.
• Approximate distance: Other users may see an approximate distance to you (for example, a rounded distance). We do not share your precise coordinates with other users.
• Location: Other users may see your general area or region based on your location settings.
• Matching status: When you match with another user, you and that user can generally message each other, and your profiles may appear as connected within the Service.
• Messages: The content you send in messages is shared with message recipients (generally mutual matches). Chat media is shared with conversation participants.
• Private Photos: Private Photos are visible only to users you explicitly grant access to and remain revocable at any time.

If you post or share content you should assume it may be saved or captured by others (for example, via screenshots), even if doing so violates our Terms of Service and Community Guidelines. We encourage users to be cautious about what they share.

Sharing with service providers (processors)

We use vendors to help operate the Service. These vendors process Personal Data on our behalf under contractual obligations (such as confidentiality and data protection terms) to provide services like hosting, storage, content delivery, and error tracking. Examples include:

• Cloud hosting and databases: We use AWS infrastructure to run the Service (for example, app hosting, databases, and storage).
• Media storage and delivery: Photos and media are stored in AWS S3 and delivered via a CDN for performance.
• Error tracking: We use Sentry to diagnose crashes and errors, which may include technical logs and device/app metadata.
• Observability and performance monitoring: We use OpenTelemetry-based tooling to monitor performance and reliability.
• Network and security providers: We may use infrastructure providers (such as DNS and security services) that necessarily process limited network data (like IP addresses) to deliver and protect the Service.

We authorize service providers to use Personal Data only as necessary to provide services to us and to comply with legal requirements. We do not allow them to use your Personal Data for their own marketing or advertising purposes related to this Service.

Sharing with billing platforms

If you purchase Vetted+ or other in-app purchases, the billing transaction is processed by Apple (iOS) or Google (Android). We share and receive information necessary to validate purchases and maintain subscription status, such as receipt tokens and subscription state. Apple and Google process your personal information according to their own privacy practices.

Sharing with law enforcement and to comply with law

We may disclose Personal Data if we believe in good faith that disclosure is necessary to:

• comply with a legal obligation, lawful request, subpoena, court order, or other legal process;
• protect the rights, property, or safety of Vetted, our users, or the public;
• prevent or investigate possible wrongdoing, fraud, security issues, or safety incidents; or
• respond to an emergency involving danger of death or serious physical injury.

CSAM reporting: Vetted does not allow content involving minors. If we become aware of content that appears to involve child sexual abuse material (CSAM) or exploitation of minors, we may preserve evidence and report it to appropriate authorities, including the National Center for Missing & Exploited Children (NCMEC), and cooperate with law enforcement as required or permitted by law.

Sharing in connection with business transfers

If Vetted is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will provide notice of any material change in ownership or use of your Personal Data, consistent with applicable law and as practical given the circumstances.

Aggregated or deidentified data

We may share aggregated or deidentified data that cannot reasonably identify you (for example, statistics about usage across regions or feature adoption). Such data is not subject to the same restrictions as Personal Data.

No sale of personal data

We do not sell Personal Data, and we do not share Personal Data for cross-context behavioral advertising. We do not provide Personal Data to data brokers.

Location Data

What location data we collect

Location is central to Vetted’s matching. Depending on your settings and device permissions, we may collect:

• Precise GPS location (latitude/longitude) from your device if you grant location permission.
• Approximate location derived from IP address or other network signals, primarily for security, fraud detection, and basic functionality.
• Derived location data such as: approximate distance to other users, region classification, and location consistency signals (for example, to detect spoofing or impossible travel patterns).

How we use location data

We use location data to:

• support distance-based discovery and matching (for example, showing profiles near you);
• support region-based experiences and filters;
• help prevent abuse (for example, detecting location spoofing or suspicious account behavior); and
• support safety features and investigations where location context is relevant (for example, consistent abuse patterns across accounts).

How location is stored

If you provide GPS location, we store location coordinates in our database (PostgreSQL with PostGIS) to enable geospatial matching and distance calculations. We store location in a way designed for functional matching; we do not need (and do not attempt) to continuously track you in the background beyond what is necessary for the Service features you use and what your device permissions allow.

What we show to other users

We show other users approximate distance or similar proximity indicators. We do not display your precise GPS coordinates to other users. While approximate distance can still carry privacy risk (especially in low-density areas), we design the Service to avoid sharing exact coordinates and to reduce the chance of pinpointing a user.

Your controls and choices

You have meaningful control over location collection:

• Device permissions: You can grant or deny location permissions at the OS level at any time.
• Location accuracy settings: Some devices allow you to choose approximate location instead of precise location. If you choose approximate, matching accuracy may be reduced.
• Turning off location: If you turn off location permissions, certain features (especially distance-based matching) may not work well or may be unavailable.

Retention of location data

We retain location data as described in Data Retention. In general, we keep location data while your account is active so we can provide matching. When you delete your account, we remove or deidentify location data as part of the deletion process, subject to limited exceptions for safety and legal obligations.

Location spoofing and integrity signals

Because location-based services can be abused, we may process additional integrity signals to detect spoofing (for example, inconsistent location signals, impossible travel, or patterns associated with automation). These checks help protect users and the integrity of matching. If we suspect spoofing, we may restrict features or take enforcement action under the Terms of Service.

Photos and Media

Photos and media are core to self-expression on Vetted and also carry higher privacy and safety risk. This section explains how we store, share, scan, and delete media, including profile photos, Private Photos, verification selfies, and chat media.

Where media is stored

Media is stored in AWS S3 and delivered via a CDN for reliability and performance. Media access is controlled through application authorization. We design the system so that only authorized users can access media appropriate to their relationship with you (for example, only a match can access chat media in that conversation; only approved users can access Private Photos).

Profile photos

Profile photos are visible in discovery and other profile views. Profile photos are generally accessible to any user who can view your profile. You choose which photos to upload, subject to our Community Guidelines.

• Visibility: broadly visible to other users in the Service as part of profile discovery.
• Purpose: self-expression, authenticity, and helping users decide who to connect with.
• Scanning: profile photos may be scanned using automated systems for safety and policy enforcement (for example, nudity detection where nudity is not allowed in public areas, and detection of potentially exploitative content).
• Metadata: we may store upload time and technical metadata required for serving the image.

Private Photos

Private Photos are designed to support consent and privacy. They are not publicly visible and require explicit access approval.

• Visibility: only visible to users you explicitly grant access to; access is revocable at any time.
• Consent model: another user must request access; you must affirmatively grant access; granting access is not required to use the Service and is not implied by matching or messaging.
• Revocation: you can revoke access at any time. The revocation is intended to take effect promptly, but technical delays may occur (for example, caching).
• Scanning: Private Photos are subject to automated safety scanning and may be reviewed if reported or if scanning indicates potential policy issues (for example, exploitation or content involving minors).
• Safety restrictions: users are prohibited from redistributing or capturing Private Photos; violations may lead to bans and may be reported to authorities where required.

Verification selfies

Verification selfies (liveness checks) are used to reduce catfishing and to help confirm that a real person is behind an account. Verification selfies are treated differently from profile photos:

• Visibility: verification selfies are not displayed to other users as profile photos.
• Use: used for liveness checks and to determine whether to show a verification badge.
• Access controls: access is restricted to systems and personnel involved in verification and safety enforcement.
• Retention: we retain verification records for a limited period as described in Data Retention, unless longer retention is necessary for fraud prevention, safety investigations, or legal obligations.

Verification reduces some risks but is not identity verification and is not a guarantee of safety. Learn more in our Safety Notice.

Chat media

Chat media (such as photos shared in messages) is visible only to the participants in the conversation (generally mutual matches). Chat media may be reportable and reviewable when there is a report or safety concern.

• Visibility: limited to conversation participants while the conversation exists and the accounts remain in good standing.
• Scanning: chat media may be scanned for policy enforcement and anti-abuse purposes (for example, detection of CSAM, exploitation, or harassment-related content).
• Moderation: if chat media is reported, we may review it to enforce our rules.

Automated scanning and when humans may review media

We use automated systems to help detect policy violations and reduce harm. Automated scanning may:

• flag potentially explicit content in areas where it is not allowed (for example, public profile photos);
• detect signs of exploitation or content that may involve minors;
• identify spam or bot-like patterns in media sharing; and
• help prioritize reports for review.

Automated systems may make mistakes. Human review may occur when:

• you or another user submits a report;
• automated scanning flags media as potentially violating policy;
• we investigate fraud, impersonation, or other safety issues; or
• we are required to comply with law or respond to credible safety threats.

Media deletion and removal

Media deletion depends on context:

• When you remove a photo from your profile: we stop displaying it in the Service, and we remove or de-reference it from active storage as part of our normal operations, subject to caching and backup retention.
• When you revoke Private Photos access: authorized access is removed going forward; recipients should no longer be able to view the Private Photos via the Service.
• When a conversation ends (for example, due to block or ban): chat media may become inaccessible as part of conversation access restrictions, but we may retain it for a period for compliance, safety, and investigation as described in Data Retention.
• When you delete your account: we remove your profile media and other account content according to our deletion schedule; some information may be retained for safety and legal reasons (for example, to prevent ban evasion or to preserve evidence of serious abuse).

Data Retention

We retain Personal Data for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, enforce our agreements, and maintain community safety. Retention varies by data type and the reasons described below. Where possible, we delete, deidentify, or anonymize data when it is no longer needed.

Active accounts

While your account is active, we generally retain the information associated with your account so we can provide the Service. This includes Account Data, Profile Data, location needed for matching, and your settings.

Deleted accounts and deletion schedule

When you delete your account (or request deletion), we place your account into a deletion workflow. Our systems are designed so that:

• your profile becomes unavailable to other users within a reasonable time (often quickly);
• data is queued for deletion by an automated “worker” process that performs deletions in batches; and
• deletion is completed within a reasonable period, typically within 30 days, unless we must retain data for safety, fraud prevention, legal obligations, or a valid legal hold.

Deletion timelines can vary due to technical constraints, abuse investigations, security needs, or legal requirements. If you have questions about deletion status, contact vetted@rezschaefer.com.

Backups

Like most services, we maintain backups for disaster recovery and security. Backups may contain some account data for a limited time after deletion. We store backups securely and restrict access. Backup retention typically ranges from 14 to 35 days, after which backups are overwritten or expired, subject to operational requirements.

Retention by category

Account and profile data

• Account identifiers, phone verification status, and core profile fields: retained while your account is active; deleted according to the deletion schedule upon account deletion.
• Optional profile fields (tags, prompts, preferences): retained while active; deleted upon account deletion.
• Location and profile settings: retained while active; deleted upon account deletion, unless needed for safety investigations (for example, repeated fraud patterns).

Location data

• Current or recent GPS coordinates: retained while active to provide matching; deleted upon account deletion according to the deletion schedule.
• Derived distance/region indicators: retained while active; typically deleted upon account deletion.
• Security location signals (e.g., IP-derived approximate location): retained for security and fraud prevention, typically up to 90 days, unless longer retention is needed for investigations.

Messaging and chat media

• Message content and metadata: retained while the conversation exists and accounts remain active, and may be retained for a limited period after account deletion or conversation termination where necessary for safety, enforcement, or legal obligations.
• Reported messages/media: if content is reported, we may retain it longer (typically up to 2 years) to investigate and enforce rules, establish patterns of harm, and respond to legal requests.

Private Photos

• Private Photos files: retained while your account is active and you keep the photos; if you delete Private Photos or delete your account, they are deleted according to the deletion schedule, subject to caching/backups and exceptions for serious abuse reports.
• Access control records (requests, grants, revocations): retained to provide the feature and for auditability and safety, typically while active and for up to 12 months after deletion or revocation, unless needed for investigations.

Verification selfies

• Verification selfie and related verification records: retained for verification integrity and fraud prevention, typically for up to 12 months after verification (or after account deletion), unless a longer period is needed for safety investigations, appeals, or legal obligations.
• Verification badge status: retained while active; removed upon account deletion.

Reports, blocks, and enforcement records

• Reports and investigation records: retained as long as necessary for safety and enforcement, typically up to 2 years, and longer if required for serious incidents or legal holds.
• Block records: retained while accounts are active to maintain block boundaries; may be retained after deletion in limited form to prevent immediate re-contact through rapid re-registration patterns.
• Moderation outcomes and enforcement status: retained as needed for safety, consistency, and appeals, and to prevent repeat harm.

Banned identifiers

If an account is banned for serious violations, we may retain limited information to prevent re-registration and protect users, such as hashed phone numbers and other identifiers. We retain these identifiers for as long as necessary for safety and abuse prevention, which may be indefinite depending on the severity and risk.

Subscription and billing records

• Receipt tokens and subscription status: retained while you have an active subscription and for a period afterward for auditability and dispute handling, typically up to 2 years.
• Financial and accounting records: to the extent we maintain any records for compliance, they may be retained for up to 7 years as required for tax and legal compliance. Apple/Google remain the primary processors of payment details.

Crash logs, security logs, and telemetry

• Crash/error reports (Sentry): typically retained for 30 to 180 days, depending on operational needs and the nature of the issue.
• Performance telemetry (OpenTelemetry): typically retained for 30 to 180 days for detailed traces, and longer for aggregated metrics.
• Security logs and access logs: typically retained for up to 12 months, and longer where necessary to investigate abuse or respond to legal obligations.

Legal holds

We may retain information longer than described above if we are required to do so by law, if we receive valid legal process, or if we reasonably believe retention is necessary to prevent harm or to protect rights in an actual or anticipated dispute. When a legal hold ends, we resume deletion processes where feasible.

Data Security

We take security seriously and implement technical and organizational measures designed to protect Personal Data. However, no system can be guaranteed 100% secure, and we cannot promise absolute security.

Encryption in transit and at rest

• Encryption in transit: We use HTTPS/TLS to encrypt data transmitted between your device and our servers.
• Encryption at rest: We rely on encryption-at-rest features provided by our cloud infrastructure for databases and storage (including media storage).

Access controls and least privilege

We limit access to Personal Data to what is needed to operate and secure the Service. Access is restricted through authentication, authorization, and role-based controls. We design systems to limit access to sensitive content such as Private Photos and verification selfies.

Authentication architecture

We use an OIDC-based authentication system and token-based security for API access. We validate JWTs (including issuer and audience) to help ensure that only authorized requests access user data.

Infrastructure security and monitoring

• Cloud security: The Service is hosted on AWS infrastructure, which includes secure data centers and platform security controls.
• Network protections: We use infrastructure-level protections including secure networking, firewalling, and rate limiting.
• Monitoring and observability: We monitor errors and performance (including through Sentry and OpenTelemetry) to detect operational issues, potential abuse, and security anomalies.

Application security practices

• Secure coding practices: We use parameterized SQL queries and safe database access patterns to reduce injection risks.
• Rate limiting and abuse prevention: We apply rate limits and anti-automation measures to reduce scraping and abuse.
• Web security headers: For our web properties and APIs where applicable, we use protections such as CORS restrictions and Content-Security-Policy headers to reduce common web attacks.
• Media access controls: Media is served with authorization mechanisms designed to limit access to appropriate users.

Incident response

If we become aware of a security incident that affects Personal Data, we will take steps designed to contain, investigate, and remediate the incident. Where required by law and where feasible, we will notify affected users and/or authorities.

Your role in security

You can help protect your account by keeping your device secure, not sharing verification codes, and contacting us immediately if you suspect unauthorized access. You are responsible for maintaining the confidentiality of access to your device and your account.

Your Privacy Rights and Choices

Depending on where you live, you may have legal rights regarding your Personal Data. We provide the rights below to the extent required by applicable law and, in many cases, as a matter of our privacy practices.

Access and data download

You may request access to Personal Data we hold about you and request a copy of your data in a portable format, where feasible. This may include profile fields, account information, and certain activity records. Some data (for example, data about other users) may be redacted to protect their privacy.

Correction

You can correct many profile fields directly in the app. You may also request that we correct inaccurate Personal Data that you cannot readily update yourself.

Deletion

You can request deletion of your account and Personal Data. Account deletion is typically available in-app, and you can also request deletion by contacting vetted@rezschaefer.com. We process deletion requests according to Data Retention, including a deletion schedule and limited exceptions for safety and legal compliance.

Restriction of processing

In some jurisdictions, you may request that we restrict processing of your Personal Data. Restrictions may apply in limited circumstances (for example, while we verify a correction request or evaluate an objection).

Data portability

Where required, you may request data portability. We will provide Personal Data you have provided to us in a structured, commonly used, machine-readable format where feasible and where doing so does not infringe on the rights of others.

Withdraw consent

Where we rely on your consent (for example, precise GPS location or push notifications), you can withdraw consent at any time:

• Location: disable location permission in your device settings.
• Notifications: disable notifications in your device settings and, where available, in-app settings.
• Optional profile fields: remove or edit the information in your profile.

Object to processing

In some jurisdictions, you may object to certain processing based on legitimate interests. If you object, we will evaluate your request and either comply or explain why we must continue processing for compelling legitimate grounds or legal reasons.

Choices related to marketing

Vetted is not built around marketing spam. If we ever send product updates or optional communications, we will provide opt-out mechanisms where required. We may still send essential service communications (for example, security alerts or policy updates).

How to exercise your rights

You can exercise your rights in-app (where available) or by contacting us at vetted@rezschaefer.com. To help protect your privacy and prevent fraud, we may need to verify your identity before fulfilling a request. Verification may require:

• confirming control of the phone number or email associated with your account;
• requesting additional information to match your request to our records; and
• asking follow-up questions to prevent unauthorized access to someone else’s data.

Response timelines

We aim to respond to verified privacy requests within a reasonable time. Where laws specify timelines (for example, California consumer requests), we follow those timelines. If we need more time, we will inform you of the reason and the extension where required by law.

Right to lodge a complaint

If you believe we have violated applicable privacy law, you may have a right to lodge a complaint with a supervisory authority or your state attorney general, depending on your jurisdiction. We encourage you to contact us first so we can address concerns directly.

Cookies and Tracking Technologies

Support website cookies

Our support website (if any) may use minimal cookies and similar technologies to provide essential functionality and basic preferences. Examples may include:

• Essential cookies needed for security, site functionality, and load balancing.
• Preference cookies such as theme or language settings.

We do not intentionally run third-party advertising trackers on our support site, and we do not use cookies for cross-site behavioral advertising related to Vetted.

Mobile app analytics and identifiers

The mobile app uses standard platform capabilities and diagnostics for reliability and performance. We collect device and usage information as described in Information We Collect, including crash reports (Sentry) and performance telemetry (OpenTelemetry).

No advertising ID for behavioral ads: We do not collect or use the mobile advertising identifier (such as IDFA on iOS or the Google Advertising ID) for cross-app behavioral advertising for Vetted. We do not sell or share personal data for targeted advertising based on activity across other companies’ apps or websites.

Do Not Track

Some browsers offer “Do Not Track” signals. Because there is no uniform industry standard for responding to these signals, our support website may not respond to them. We still limit tracking as described above.

Push notifications

If you enable push notifications, your device platform may issue a device token used to deliver notifications. We use that token only to send you notifications you have enabled (for example, messages, matches, Private Photos requests, and safety-related alerts). You can disable notifications at any time in your device settings.

Children’s Privacy

The Service is not directed to anyone under 18 and is intended for adults only. We do not knowingly collect Personal Data from anyone under 18.

Age enforcement

We use measures intended to enforce the 18+ requirement, including application-level validation and server-side constraints related to date of birth. If we learn that a user is under 18, we will take steps to remove the account and associated data, subject to safety and legal retention requirements.

Reporting suspected underage users

If you believe someone is using Vetted and may be under 18, please report them through the in-app report tool and/or email us at vetted@rezschaefer.com. Provide as much context as possible so we can investigate and take appropriate action.

California Privacy Rights (CCPA/CPRA)

This section provides disclosures and explains rights for California residents under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (the “CCPA/CPRA”). This section applies only to California residents and only to the extent the CCPA/CPRA applies to Vetted.

Categories of personal information we collect

In the last 12 months, we may have collected the following categories of personal information (as defined by the CCPA/CPRA), depending on how you use the Service:

• Identifiers: name, email, phone number, account IDs, device identifiers, IP address.
• Customer records: account information such as date of birth and profile details you provide.
• Characteristics of protected classifications: we do not require you to provide protected classification data; however, some profile information you choose to provide may relate to such characteristics.
• Commercial information: in-app purchase/subscription status, receipt tokens, and transaction metadata associated with Vetted+.
• Internet or network information: usage data, logs, device data, app performance data.
• Geolocation data: precise GPS location if you grant permission; approximate location derived from IP address; derived distance.
• Audio/visual information: profile photos, Private Photos, chat media, verification selfies.
• Inferences: inferences drawn from your usage to improve matching and safety (for example, feature usage patterns or likely spam signals). We do not use these inferences for cross-context advertising.
• Sensitive personal information: precise geolocation; date of birth; and profile fields that may reveal aspects of dating preferences, to the extent they qualify as sensitive under the CPRA.

Sources of personal information

We collect personal information from:

• You (directly, such as your profile and messages);
• Your device (automatically, such as device data, logs, and location if permitted); and
• Third parties (Apple/Google billing information for subscription status; authentication and infrastructure-related providers as described in this Privacy Policy).

Purposes for collection and use

We collect and use personal information for the purposes described in How We Use Your Information, including:

• providing and operating the Service (account management, matching, messaging, subscription features);
• community safety and moderation;
• fraud prevention and security;
• debugging and service improvement;
• customer support and communications; and
• legal compliance and protection of rights and safety.

Disclosures of personal information

In the last 12 months, we may have disclosed personal information for business purposes to the categories of recipients described in How We Share Your Information, including:

• Service providers (such as cloud hosting, storage, CDNs, and error tracking);
• Billing platforms (Apple/Google for subscription processing and validation);
• Law enforcement and authorities (when legally required or in safety emergencies); and
• Business transferees (as part of a merger, acquisition, or sale of assets, with notice as appropriate).

We also disclose information to other users as part of the core social features (for example, your profile and approximate distance), as described in How We Share Your Information.

No sale or sharing for cross-context behavioral advertising

We do not sell personal information as the term “sell” is defined by the CCPA/CPRA. We also do not “share” personal information for cross-context behavioral advertising. Because we do not sell or share in this way, we do not provide a “Do Not Sell or Share My Personal Information” link specific to this Service.

Sensitive personal information

We collect and use sensitive personal information only as necessary to provide the Service and maintain safety and security (for example, precise geolocation for matching when you permit it, and certain profile fields you choose to provide). We do not use sensitive personal information to infer characteristics for advertising. Where applicable, you may have rights to limit the use and disclosure of sensitive personal information under California law; you can exercise relevant controls primarily through in-app settings (for example, by disabling location permissions) or by contacting us.

Your California rights

Subject to certain exceptions, California residents may have the right to:

• Right to know/access: request information about categories and specific pieces of personal information we collected, used, disclosed, and the purposes of processing.
• Right to delete: request deletion of personal information we collected from you.
• Right to correct: request correction of inaccurate personal information.
• Right to opt out of sale/share: opt out of the sale or sharing of personal information (not applicable in the typical sense because we do not sell or share for cross-context behavioral advertising).
• Right to non-discrimination: not receive discriminatory treatment for exercising privacy rights.

How to exercise California rights

To submit a California consumer request, contact us at vetted@rezschaefer.com with the subject line “California Privacy Request.” Please describe the request (access/know, delete, correct) and provide information needed to verify your identity and locate your account. We may ask you to confirm control of the phone number or email associated with your account.

Authorized agents

California residents may use an authorized agent to submit requests. We may require proof that the agent is authorized to act on your behalf and may require you to verify your identity directly with us.

Verification and response timing

We will verify your request using reasonable methods appropriate to the sensitivity of the information requested. We aim to respond within the timeframes required by California law (typically within 45 days, with an extension of up to 45 additional days when reasonably necessary and with notice).

Non-discrimination

We will not discriminate against you for exercising your CCPA/CPRA rights. However, certain features require certain data (for example, matching requires location). If you request deletion or disable required permissions, the Service may not function as intended.

Other US State Privacy Rights

Several US states have enacted privacy laws that provide residents with certain rights and require disclosures. This section provides a general summary for residents of states such as Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and Utah (UCPA), to the extent these laws apply to Vetted. These laws differ, and not all rights apply in all states.

Common rights

Depending on your state, you may have rights to:

• Access your personal data;
• Correct inaccuracies in your personal data;
• Delete personal data you provided or that we obtained about you;
• Obtain a copy of your personal data in a portable format;
• Opt out of certain processing, such as targeted advertising, sale of personal data, and certain profiling.

Targeted advertising, sale, and profiling

Vetted does not sell personal data and does not share personal data for cross-context behavioral advertising. We also do not use personal data to make decisions with legal or similarly significant effects typical of credit, employment, housing, or insurance decisions. We do use algorithms for matching and safety, which may be considered “profiling” in a general sense, but it is intended to provide a dating service and reduce abuse.

Appeals (where required)

Some state laws (for example, in Virginia, Colorado, and Connecticut) require an appeals process if we deny a consumer request. If your request is denied and you believe it was incorrectly denied, you may request an appeal by replying to our denial email or contacting vetted@rezschaefer.com with the subject line “Privacy Appeal.” We will review and respond within a reasonable time consistent with applicable law.

How to exercise state privacy rights

To exercise applicable state privacy rights, contact vetted@rezschaefer.com with the subject line “State Privacy Request.” Include the state you reside in, the phone number or email associated with your account, and the request type (access, delete, correct, portability, opt out). We may verify your identity before fulfilling the request.

Response timelines

We aim to respond within the timeframes required by applicable state law (often within 45 days, with an extension where allowed). If we need additional time, we will inform you where required.

International Users

Vetted is operated from the United States. Our infrastructure is hosted in the United States (AWS US regions). If you access the Service from outside the United States, you understand and agree that your information will be processed and stored in the United States and may be subject to US laws.

No EU/EEA-specific infrastructure

At this time, Vetted does not operate EU/EEA-specific data centers or region-specific infrastructure designed to keep EU/EEA data within the EU/EEA. If we expand international operations, we may update this Privacy Policy and implement additional measures as appropriate.

International rights

If you are located in a jurisdiction with data protection laws that apply to you (for example, laws that provide access or deletion rights), you can contact us to exercise those rights. We will evaluate requests and comply where required and feasible.

Third-Party Links and Services

The Service may include links to third-party sites or services, such as Apple App Store and Google Play pages, and external crisis resources referenced in our Safety Center or Safety Notice. We do not control third-party privacy practices.

App store and billing platforms

Apple and Google handle transactions and certain device-level data according to their own privacy policies. If you have questions about how Apple or Google process your information, please review their privacy policies directly.

External crisis resources

We may provide links to crisis resources or safety information as part of the Safety Center. Those organizations’ privacy policies govern how they collect and use information when you contact them.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in the Service, legal requirements, or our practices. When we update the policy, we will revise the Effective Date at the top of the policy.

How we notify you

We may notify you of updates by:

• posting the updated policy on our website or within the app;
• sending an in-app notice; and/or
• sending an email or other message where appropriate.

Material changes

If we make a material change, we will make reasonable efforts to provide prominent notice. Your continued use of the Service after the updated policy becomes effective indicates your acknowledgment of the updated practices, subject to any rights you may have under applicable law.

Contact

If you have questions about this Privacy Policy, want to exercise privacy rights, or want to report a privacy or safety concern, contact us at: vetted@rezschaefer.com.

Submitting privacy requests

For privacy requests, please include:

• the phone number and/or email associated with your Vetted account,
• your request type (access, delete, correct, portability, restrict, object),
• your jurisdiction (for example, California, Virginia, or another location), and
• any details that help us locate the relevant records.

Response expectations

We aim to respond to verified requests within a reasonable timeframe and in accordance with applicable law. We may ask for additional information to verify your identity and protect your account. If we cannot fulfill a request, we will explain the reason to the extent permitted by law.

Operator

Vetted is operated by Rez Schaefer, based in the United States.