Privacy Policy

Zodiacsensitivity is a dating app built around astrological compatibility. To produce a chart and match you with someone, we need accurate birth information and a way to contact you. We collect the minimum needed to deliver the service and we don't sell your data.

• Account identifiers: phone number or email, Firebase Auth UID, signup IP, device tokens for push.
• Profile: display name, gender, photos, bio, interests, looking-for / meet-pref preferences.
• Birth data: date, time (optional), place name, latitude, longitude, IANA timezone.
• Matching state: candidate pool, your decisions on weekly matches, mutual-continue contact exchanges.
• Chat messages: stored only for the lifetime of a match (≤ 7 days unless mutual continue).
• Subscription state: product id, price, status from RevenueCat. We never see card numbers.
• Diagnostic data: error reports (Sentry), product analytics (PostHog), authentication audit (login IPs).

• To compute your natal chart, synastry, and per-day Cosmic Pulse.
• To find candidate matches in your city according to your preferences.
• To verify your identity when you sign in (phone or email OTP, optional 2FA).
• To send transactional emails (welcome, contact exchanged after mutual continue, refund confirmation, account deletion confirmation).
• To deliver push notifications for matches, messages, and your daily pulse — opt out per category in Settings.
• To moderate chat content (OpenAI Moderation) and photo uploads (Sightengine) before publication.
• To diagnose crashes, investigate abuse reports, and improve the product.

We use the following service providers. Each is bound by a Data Processing Agreement and processes data only on our instructions.

• Render — application hosting, Postgres database, Redis cache (Frankfurt region).
• Cloudflare — DNS, CDN, R2 object storage for photos.
• Firebase Authentication — phone + email OTP delivery and verification.
• RevenueCat — subscription management; mirrors Apple/Google purchases.
• Resend — transactional email delivery.
• Mapbox — birthplace geocoding (place name → lat/lng + IANA timezone).
• OpenAI — automated chat-message moderation (text only).
• Sightengine — automated photo moderation.
• Sentry — error reporting.
• PostHog — product analytics + feature flags.
• Apple Push Notification service / Firebase Cloud Messaging — push delivery.

Active accounts retain data for as long as the account exists. When you delete your account, we start a 14-day grace period — sign back in during that window and your account is fully restored. After 14 days, all personal data is permanently erased: profile, photos, birth data, matches, chat history, notifications. Anonymized audit logs (login event timestamps without identifying details) are kept for 12 months for fraud prevention. Backups are retained for 30 days and rotate out automatically.

Depending on your jurisdiction you have the right to:

• Access — download a complete copy of your data (in-app: Settings → Export my data).
• Rectification — edit profile fields any time in the app.
• Erasure — delete your account from Settings.
• Portability — the export is a structured JSON file you can take elsewhere.
• Objection / restriction — contact us at the address below.
• Withdraw consent — disable notification categories in Settings; revoke contact-sharing by ending mutual continue.

EU/UK residents also have the right to lodge a complaint with their local data protection authority. CA residents have the rights described in the California Consumer Privacy Act, including the right to know what we collect and to opt out of any "sale" of personal information — we don't sell personal information.

Zodiacsensitivity is for adults. You must be at least 18 years old to use the service. We enforce this at signup by computing age from birth date; under-18 birthdays cannot complete onboarding. If we learn an account belongs to someone under 18 we will delete it.

All traffic is encrypted in transit via TLS. Birth data is encrypted at rest. Photos are served only via short-lived signed URLs. JWT sessions can be invalidated server-side (force-logout). We monitor authentication for suspicious activity and rate-limit sensitive endpoints.

We'll post any material change to this policy here and notify active users by email or in-app banner. Continued use after the effective date of changes constitutes acceptance.

Privacy questions, data requests, or complaints: privacy@zodiacsens.com.