Privacy Policy

// last updated · April 2026

1. Information We Collect

1.1 Information You Provide Directly

When you create an account and use Pairify, we collect information that you voluntarily provide, including:

• Account information: your name, email address, and password (or authentication credentials via Google or Apple Sign-In).
• Profile information: your age, school or company affiliation, biographical description, and skills.
• External links: GitHub profile URL, LinkedIn profile URL, and portfolio or personal website URL.
• Profile photos: images you upload to represent yourself on the platform.
• Communications: messages you send through the in-app chat feature to other users.
• User-generated content: project descriptions, collaboration preferences, and other content you create within the App.

1.2 Information Collected Automatically

When you access or use the App, we may automatically collect certain information, including:

• Device information: device type, operating system version, and unique device identifiers.
• Usage data: interactions with the App, features used, screens viewed, and timestamps of activity.
• Log data: IP address, browser type (if applicable), and crash reports.

1.3 Information from Third-Party Services

If you choose to sign in using Google OAuth or Apple Sign-In, we receive certain profile information from these services, including your name and email address, as permitted by your account settings with those providers. We do not receive or store your Google or Apple password.

2. How We Use Your Information

We use the information we collect for the following purposes:

• To create, maintain, and secure your account.
• To provide and operate the collaboration matching service, including generating match recommendations based on your profile, skills, and preferences.
• To facilitate communication between matched users through in-app messaging.
• To display your profile to other users for the purpose of collaboration matching.
• To improve, personalize, and optimize the App and user experience.
• To respond to your inquiries, support requests, and feedback.
• To detect, prevent, and address fraud, abuse, security incidents, and technical issues.
• To comply with applicable legal obligations and enforce our Terms of Service.

3. How We Store Your Information

Your information is stored securely using Supabase, a cloud-based infrastructure platform. Our database is hosted on cloud servers with industry-standard encryption at rest and in transit. We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit using TLS/SSL.
• Encryption of data at rest in our database.
• Secure authentication using industry-standard protocols (OAuth 2.0, JWT tokens).
• Server-side validation and authorization on all API endpoints.
• Rate limiting and input sanitization to prevent abuse.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We do not share your data with third-party advertisers or marketing companies.

We may disclose your information only in the following limited circumstances:

• With other users: Your profile information (name, bio, skills, photos, and external links) is visible to other users of the App as part of the collaboration matching feature. Chat messages are visible only to the participants of that conversation.
• Service providers: We use the following third-party processors to operate the App. Each processes data on our behalf and is contractually obligated to protect your information:
  • Supabase (supabase.com) — database hosting and authentication services.
  • Sentry (sentry.io) — error tracking and stability monitoring. Sentry receives crash reports, error data, device information, and app state to help us diagnose and resolve technical issues.
  • Expo (expo.dev) — push notification delivery and over-the-air app updates. Expo receives push notification tokens to deliver notifications to your device and facilitates the distribution of app updates.
  • Resend (resend.com) — transactional email delivery, including account verification emails, password reset emails, and school/company email verification codes. Resend receives email addresses to deliver these messages.
• Legal compliance: We may disclose your information if required to do so by law, regulation, legal process, or governmental request.
• Safety and rights: We may disclose information when we believe it is necessary to protect the safety, rights, or property of Pairify, our users, or the public.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the App's services. If you request account deletion, we will delete your personal data within 30 days of the request, except where we are required to retain certain data for legal, regulatory, or legitimate business purposes (such as fraud prevention or legal compliance). Anonymized or aggregated data that can no longer be associated with you may be retained indefinitely for analytical purposes.

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal data:

• Access: You may request a copy of the personal data we hold about you.
• Correction: You may update or correct inaccurate information through the Edit Profile feature in the App.
• Deletion: You may request deletion of your account and associated data through the Data Deletion feature in Settings, or by contacting us directly.
• Data portability: You may request a machine-readable copy of your personal data.
• Withdraw consent: Where processing is based on consent, you may withdraw your consent at any time.
• Restriction: You may request that we restrict the processing of your personal data under certain conditions.

To exercise any of these rights, please contact us at privacy@pairify.app. We will respond to your request within 30 days.

7. GDPR Compliance (European Economic Area Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

Legal Bases for Processing

We process your personal data on the following legal bases:

• Contractual necessity: Processing necessary to provide the App's services to you (account creation, matching, messaging).
• Consent: Processing based on your explicit consent (e.g., optional profile information, marketing communications).
• Legitimate interests: Processing necessary for our legitimate interests (e.g., security, fraud prevention, service improvement), balanced against your rights.
• Legal obligation: Processing necessary to comply with applicable laws.

International Data Transfers

Your data may be transferred to and processed in countries outside the EEA. When such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your data in accordance with GDPR requirements.

Data Protection Officer

For GDPR-related inquiries, you may contact us at dpo@pairify.app. You also have the right to lodge a complaint with your local data protection supervisory authority.

8. CCPA Compliance (California Residents)

If you are a California resident, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) provide you with additional rights:

• Right to know: You have the right to request that we disclose what personal information we have collected, used, disclosed, and sold about you in the preceding 12 months.
• Right to delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
• Right to opt out of sale: We do not sell your personal information. If this practice changes in the future, we will provide a "Do Not Sell My Personal Information" mechanism.
• Right to non-discrimination: We will not discriminate against you for exercising your CCPA rights.

Categories of personal information we collect include: identifiers (name, email), professional information (skills, school/company), internet activity (usage data), and user-generated content (profile, messages). We collect this information for the business purposes described in Section 2. To exercise your CCPA rights, contact us at privacy@pairify.app or use the in-app Data Deletion feature.

9. Cookies and Tracking Technologies

As a mobile application, Pairify does not use traditional browser cookies. However, we may use similar technologies, such as local storage and device identifiers, to maintain your session, remember your preferences, and improve the App experience. We do not use third-party tracking cookies or advertising trackers. We do not participate in cross-app tracking or targeted advertising networks.

10. Children's Privacy

Pairify is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take immediate steps to delete such information. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at privacy@pairify.app so we can take appropriate action. Users between the ages of 13 and 16 may use the App only with the consent of a parent or legal guardian.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this Privacy Policy and, where appropriate, providing additional notice through the App (such as an in-app notification). Your continued use of the App after any changes constitutes your acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at: