Privacy Policy
Invite-Only ("we," "us," or "our") operates the Invite-Only mobile application and website (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
1. Information We Collect
1.1 Account & Profile Information
- Full name, email address, and password
- Date of birth and age
- Gender and sexual orientation ("Interested in" preference)
- Nickname and display name preference
- Profile photos (minimum of 3 required)
- Bio, occupation, and interests
1.2 Contact & Social Media Information
- Phone number (optional)
- Social media handles: Instagram, Facebook, and/or LinkedIn
- Email address provided by non-registered visitors when contacting support
1.3 Location Data
- Location access is fully optional. The app is completely usable without granting location permission.
- Precise GPS location — collected only if you grant permission, and only while the app is in use, to surface nearby invites and help target invites you post. We do not track your location in the background.
- City-level location (entered manually or derived from a one-time geocode if you grant permission) stored on your profile for matching purposes
- Passport location (optional VIP feature for browsing invites in other cities)
- You may grant or revoke location permissions at any time through your device settings.
1.4 Biometric-Adjacent Data (Selfie Verification)
- Used solely to verify that you are the person in your profile photos
- Does not create or store biometric templates or facial geometry data
- Processed in real time and stored only as your profile photo
- May be deleted by deleting your account
1.5 Communication Data
- Messages exchanged between hosts and guests
- Support messages and inquiries (including from non-registered visitors)
- Reports and feedback submitted about other users
- Post-event ratings and comments submitted between hosts and guests
1.6 Payment & Transaction Data
- Subscription plan and status
- One-time purchase history such as Boost credits and unlocks
- Payment method details are processed by Braintree, a PayPal service
- In-app purchase transaction data processed through Apple StoreKit, including entitlements and subscription status managed via RevenueCat. RevenueCat receives transaction IDs, purchase history, and Apple's Identifier for Vendor (IDFV). We do not use Apple's IDFA.
- Referral codes and referral tracking data (referrer identity, referred email, referral status)
1.7 Usage & Device Data
- Device type, operating system platform, and app version (collected via standard user-agent inspection)
- First-party analytics events stored in our own database (screens viewed, features used, session identifiers) — not shared with third-party advertising networks
- Push notification device tokens and a OneSignal Player ID (a device-scoped identifier used solely to deliver push notifications you have opted into)
We do not currently collect crash logs, performance data, or third-party SDK analytics. If we add diagnostic tooling in the future, we will update this Privacy Policy and the App Store privacy disclosure before activation.
1.8 Camera & Microphone Access (Video Calls)
When you use the in-app video calling feature, we request access to your device's camera and microphone. Video and audio streams are transmitted peer-to-peer using WebRTC technology. We do not record, store, or monitor the content of video or audio calls. Call metadata (start time, end time, participant IDs, call status) is stored for service quality and safety purposes.
2. How We Use Your Information
- Provide, operate, and improve the Service
- Create and manage your account
- Match hosts with compatible guests
- Verify identity through selfie verification and social media review
- Process payments, subscriptions, and one-time purchases
- Send transactional notifications and reminders
- Send periodic digest emails summarizing activity relevant to you (e.g., weekly digests)
- Facilitate the referral program, including tracking referral codes and rewarding eligible referrals
- Enforce Community Guidelines and safety systems
- Detect and prevent fraud, abuse, and safety threats
- Respond to support requests and legal obligations
3. Information Sharing & Third-Party Services
We do not sell your personal information. We share your data only as needed to operate the Service.
3.2 Third-Party Service Providers
- Payment processing: Braintree (a PayPal service) for web-based payments
- In-app purchase management: RevenueCat for Apple App Store in-app purchases, subscriptions, and entitlements
- Authentication: Google OAuth (Google Sign-In) for optional social login
- AI verification: Google Gemini for selfie-to-photo comparison
- AI content moderation: Google Gemini for asynchronous review of user-generated text and images against our Community Guidelines
- Email delivery: SendGrid for transactional and digest emails
- SMS delivery: Twilio for phone verification and SMS notifications
- Push notifications: OneSignal for cross-platform push notification delivery (iOS via APNs, Android via FCM)
- Location services: Geocoding services for location verification
- Cloud infrastructure: Secure cloud hosting for data storage and backend operations
3.3 Legal & Safety
- When required by law or legal process
- To protect rights, safety, or property of Invite-Only, users, or the public
- In connection with a merger, acquisition, or sale of assets
4. Data Security
We use industry-standard security measures including encryption in transit, secure cloud infrastructure, and access controls. No method of transmission or storage is 100% secure.
5. Your Rights & Choices
- Access, correct, or delete your information
- Request a portable copy of your data
- Manage push, email, and SMS notification preferences
- Revoke location permissions through device settings
- Withdraw consent where processing is based on consent
For privacy requests, contact support@invite-only.club.
6. Data Retention
Account data is retained while your account is active. After deletion, personal data is removed within 30 days except where retention is required by law or safety obligations.
7. Cookies & Tracking Technologies
We use cookies, local storage, and similar technologies to maintain sessions, remember preferences, and collect analytics information.
No cross-app or cross-site tracking: We do not track your activity across other companies' apps or websites, and we do not participate in advertising networks or cross-app tracking frameworks. We do not use Apple's IDFA for tracking purposes.
8. International Data Transfers
Your information may be processed in countries other than your own with appropriate safeguards.
9. Children's Privacy
Our Service is strictly for users aged 18 and older.
10. California Privacy Rights (CCPA)
California residents may have additional rights to know, delete, and access personal information.
11. European Privacy Rights (GDPR)
Users in the EEA, UK, and Switzerland may have additional GDPR rights.
12. Changes to This Policy
We may update this Privacy Policy from time to time and will update the effective date above.
13. Contact Us
If you have questions, contact support@invite-only.club.