Privacy Policy

This Policy applies to personal information we process as a controller (where we decide why and how data is processed) through the Services. If you interact with another user or organization through Idiscovr, that party may also process your information as an independent controller or processor—we are not responsible for their privacy practices, which are governed by their own policies.

Our public website is https://idiscovr.app. You may contact us at info.idiscovr@gmail.com.

2.1 Information you provide

• Account and profile: name, username, email address, password or authentication tokens, biography, creative discipline, location (if you choose to provide it), links, portfolio descriptions, and similar profile fields.
• User Content: media, audio, video, text, messages, comments, and other materials you upload or send through the Services.
• Waitlist and communications: email address and optional details you submit when joining a waitlist, subscribing to updates, or contacting support.
• Transactions: billing address, payment method details (processed by payment processors—we generally do not store full card numbers on our servers), and purchase history where applicable.
• Surveys and feedback: responses you voluntarily provide.

2.2 Information collected automatically

• Device and log data: IP address, approximate location derived from IP, browser type, operating system, device identifiers, language settings, referring URLs, pages viewed, and timestamps.
• Usage data: interactions with features (for example, matches, swipes, saves, messages sent), session duration, crash logs, and diagnostic data.
• Cookies and similar technologies: cookies, local storage, pixels, and SDKs used for authentication, preferences, analytics, and (where permitted) marketing. See Section 6.

2.3 Information from third parties

We may receive information from authentication providers (if you sign in with a third-party account), analytics partners, advertising networks (where applicable), data enrichment vendors (subject to their terms and applicable law), and publicly available sources.

We use personal information for the following purposes:

• Provide and operate the Services: create and secure accounts, host content, enable discovery and matching, deliver notifications, process transactions, and provide customer support.
• Improve and develop: troubleshoot, analyze usage patterns, conduct research and development, and build new features.
• Safety and integrity: detect, prevent, and respond to abuse, fraud, security incidents, and violations of our Terms of Service.
• Communications: send service-related messages, waitlist or launch updates, and (where permitted) marketing. You may opt out of marketing as described in Section 9.
• Legal and compliance: comply with law, respond to lawful requests, enforce our terms, and protect rights, privacy, safety, and property.
• Aggregation and de-identification: create aggregated or de-identified data that cannot reasonably be linked to you, which we may use for analytics, benchmarking, and business purposes without further notice.

Where the GDPR, UK GDPR, or similar laws apply, we rely on one or more of the following legal bases:

• Contract: processing necessary to perform our contract with you or to take steps at your request before entering a contract.
• Legitimate interests: operating and improving the Services, securing our platform, understanding aggregate usage, marketing to business users where appropriate, and internal administration—balanced against your rights.
• Consent: where required for certain cookies, marketing, or optional features—we will obtain consent where mandated.
• Legal obligation: where we must process data to comply with the law.

We do not sell your personal information in the traditional sense of selling lists for cash. We may share information as follows:

• Service providers: vendors that host infrastructure, send email (for example, email delivery providers used for waitlist and transactional messages), process payments, provide analytics, customer support tooling, security monitoring, and similar functions—bound by contractual obligations to protect data and use it only on our instructions.
• Other users: profile information and User Content you choose to make visible will be shared according to your settings and the nature of the Services (for example, to facilitate matching and collaboration).
• Business transfers: in connection with a merger, acquisition, financing, or sale of assets, personal information may be transferred as a business asset, subject to appropriate safeguards.
• Legal and safety: when we believe disclosure is required by law, legal process, or government request, or necessary to protect rights, safety, and security.
• With your direction: when you integrate a third-party service or explicitly ask us to share data.

We use cookies and similar technologies to remember sessions, maintain security, understand how the Services are used, and (where allowed) measure marketing effectiveness. You can control cookies through browser settings; disabling cookies may impair certain features.

Where required by law, we will obtain consent before using non-essential cookies and provide a consent mechanism.

We retain personal information for as long as necessary to fulfill the purposes described in this Policy, including satisfying legal, accounting, and reporting requirements. Criteria used to determine retention include the nature of the data, the risk of harm from unauthorized use, whether we can achieve purposes through other means, and legal obligations. When retention ends, we delete or de-identify information, subject to backup and archival practices.

We implement technical and organizational measures designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

9.1 Account settings

You may review and update certain profile information through your account settings where available.

9.2 Marketing opt-out

You may unsubscribe from marketing emails using the link in those messages or by contacting us. Transactional and service-related messages may continue.

9.3 Rights under GDPR / UK GDPR

If you are in the EEA, UK, or Switzerland, you may have the right to access, rectify, erase, restrict processing, object to processing, data portability, and withdraw consent where processing is consent-based. You may lodge a complaint with a supervisory authority. To exercise rights, contact info.idiscovr@gmail.com. We may need to verify your identity.

9.4 U.S. state privacy rights

Residents of certain U.S. states may have rights to access, delete, or opt out of certain processing (including “sale,” “sharing,” or targeted advertising as defined by local law). We describe collection and sharing in this Policy. To submit a request, contact info.idiscovr@gmail.com. We will not discriminate against you for exercising rights. You may designate an authorized agent where permitted by law, subject to verification.

We may process personal information in the United States and other countries where we or our service providers operate. Those countries may have different data protection laws than your country. Where required, we implement appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms.

The Services are not directed to children under sixteen (16), or the age of digital consent in your jurisdiction if higher. We do not knowingly collect personal information from children in violation of applicable law. If you believe we have collected such information, contact us and we will take appropriate steps to delete it.

We may use automated systems—including ranking, recommendations, or matching algorithms—to personalize the Services. Where required by law, we will provide meaningful information about the logic involved and your rights, including the right to human review of decisions that produce legal or similarly significant effects.

We may update this Privacy Policy from time to time. We will post the revised Policy on the Services and update the "Last updated" date. If changes are material, we will provide additional notice as appropriate (for example, email or in-product banner).

For privacy questions or requests, contact info.idiscovr@gmail.com.