Last updated: May 14, 2026
When you create an account, we collect your name, email, and password. Your profile includes photos, bio, intent, gender, age, and location (city-level only). We also collect the preferences you set — who you're looking for and how far you want to discover.
Messages you send to matches are stored temporarily on our servers. Swipe history (likes, passes) and match records are kept to power the app.
Your data is stored in an isolated PostgreSQL database with encrypted connections. Passwords are hashed — never stored in plain text. OAuth tokens for connected services (if any) are encrypted at rest.
We use AES-256-GCM encryption for sensitive credential storage. Database access is restricted to application-layer queries with parameterized statements — no raw SQL from user input.
Location data for Lock In is ephemeral and proximity-only. When you activate Lock In, we broadcast your presence (within a chosen vibe category) to nearby users — we do not store or share your exact location. Other users see an approximate distance (in km or miles), not an address or GPS coordinate.
Lock In sessions expire after 2 hours. Location is never permanently stored after a Lock In session ends. We do not track your location continuously.
Photo verification uses AI-based face comparison — no human review of your selfie occurs. Your verification selfie is compared against your profile photos and discarded after comparison. It is never displayed to other users or stored beyond the verification process.
When you use Share My Date, a safety link is generated and sent to the trusted contact you designate. The link includes your meetup time and location (entered by you), your name, and a check-in reminder. Only your chosen trusted contact receives this information. We do not share this data with third parties.
We do not sell your personal data to third parties. We do not share your profile, photos, messages, or location data with advertisers or data brokers. Anonymized, aggregated analytics (page views, signup events, conversion events) may be used for product improvement and Meta Pixel tracking for advertising attribution only.
Service providers (cloud infrastructure, payment processing) receive only the minimum data required to deliver their service, under strict data handling agreements.
Messages between matched users are private. Only you and your match can read them. We do not read, scan, or analyze message content for any purpose. Automated systems may detect spam or abuse patterns at the metadata level (not content) to enforce our acceptable use policy.
You can delete your account and all associated data at any time from the app settings. Deleting your account removes:
Analytics events may be retained in aggregated, anonymized form for up to 90 days post-deletion. To request immediate deletion of all data, contact us at support@polsia.com.
We use essential cookies for session management and authentication. Analytics cookies help us understand how you use the app (pages visited, feature usage) — this data is aggregated and anonymized. No personal data is stored in cookies.
Meta Pixel (advertising) may fire on key events (PageView, Lead, Purchase). This data is controlled by Meta's privacy policy.
For privacy-related questions or to report a concern, contact us at support@polsia.com.