Privacy Policy
We only collect what we need, store it securely, and never sell personal data.
1. Who we are
WhoWereYou is a missed-connections and dating app operated by WhoWereYou LTD. We help people reconnect after brief real-world encounters while prioritising safety, anonymity, and privacy.
2. Information we collect
We collect: (a) account details such as your email address and basic profile information (name, age, gender, who you are interested in); (b) content you create, including sightings, claims, chats and optional photos; (c) approximate location information, such as the city or neighbourhood where a sighting took place, but not precise GPS coordinates unless you explicitly share them; (d) device and usage information such as IP address, browser or app version, and basic event logs for security and analytics; and (e) preferences and safety settings, including marketing opt-in, content preferences, and your choices around location and notifications.
3. How we use your information
We use your information to: (a) operate and improve the service; (b) connect sightings and potential matches; (c) enable chat and other communication features; (d) enforce our rules, prevent fraud and abuse, and keep the community safe; (e) analyse usage to improve reliability, performance, and the product experience; and (f) send important service messages (for example, changes to this policy or security alerts) and optional marketing where you have opted in. We do not sell your personal data.
4. Legal bases for processing
Where applicable (for example under UK GDPR or EU GDPR), we process your data under one or more of the following legal bases: (a) to perform our contract with you by providing the app and its core features; (b) with your consent, for example for marketing emails, certain cookies, or using approximate location; and (c) for our legitimate interests, such as keeping the service secure, preventing misuse, and improving the product, provided those interests are not overridden by your rights.
5. Data sharing and service providers
We use trusted service providers to run WhoWereYou, including Supabase (managed Postgres database and authentication), hosting providers (such as Vercel), and optional tools for analytics, logging, and content moderation. These providers process data on our behalf under contracts that require appropriate security and confidentiality. We may also share information if required by law, in response to valid legal requests, or to protect the rights, property, or safety of our users or the public. We do not sell or rent your personal information to third parties.
6. Storage, security and retention
Data is stored in Supabase's managed Postgres database with encryption at rest, and transmitted over secure HTTPS connections. Access is restricted to essential operations required to run and support the service. We retain your information for as long as your account is active and for a reasonable period afterwards to comply with legal obligations, resolve disputes, and enforce our agreements. When data is no longer needed, we take steps to delete or anonymise it.
7. Your choices and rights
Within the app, you can update your profile, change preferences, and manage marketing opt-in. You can request that we delete your account using the in-app “Delete account” option or by contacting support. Subject to local law, you may also have rights to access a copy of your data, correct inaccurate information, restrict or object to certain processing, or withdraw consent where processing is based on consent. We will respond to these requests in line with applicable laws.
8. Location and sensitive information
WhoWereYou is designed to prioritise anonymity and safety. Sightings should not include real names, phone numbers, email addresses, social media handles, or specific home or work addresses. Approximate locations are used to help users find relevant sightings but are not intended to reveal exact movements. We moderate user-generated content and may block or remove posts that include sensitive personal information or otherwise violate our Safety Centre guidelines.
9. Cookies and similar technologies
On the web, we may use cookies and similar technologies to keep you signed in, remember your preferences, improve performance, and understand how the app is used. Where required by law, we will ask for your consent before using non-essential cookies. You can adjust your browser settings to refuse some cookies, though certain features may not function correctly.
10. Children
WhoWereYou is not intended for anyone under 18. We do not knowingly allow minors to create accounts. If we learn that an under-18 has used the service, we will take steps to close the account and delete associated data where appropriate.
11. International transfers
Our service providers may process data in different countries. Where applicable, we take steps to ensure appropriate safeguards are in place for international data transfers, such as standard contractual clauses or equivalent protections required by law.
12. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in the law or how WhoWereYou works. When we make material changes, we will update the “last updated” date and, where appropriate, provide additional notice in the app or by email.
13. Contact us
If you have questions about this Privacy Policy, want to exercise your rights, or need help with your data, you can contact us at support@whowereyou.com. Please include enough information for us to identify your account and respond to your request.
Contact support@whowereyou.com to manage your data or exercise your privacy rights.