Back to home
Privacy Policy
Plain-language information about what Just1One collects, why, who helps us run the service, how long we keep it, and how to exercise your rights.
01
Before we dive in
Hey, thanks for opening Just1One’s Privacy Policy. We know this isn’t everyone’s idea of a good time, so we wrote it to be clear and human: what we collect to run a dating app with time-limited matches and progressive profile reveal, how we keep the community safer, and what choices you have. Use the outline on desktop to jump to what matters to you. This version reflects our practices as of May 6, 2026. If we make material changes, we’ll update this page and, where appropriate, let you know in the app or by email.
02
Regional notices (United States)
California: additional disclosures required by the CPRA may be added over time. Until we publish a dedicated “California” page, you can already reach us through the Contact form or the Personal data request flow. Washington and Nevada: some state laws refer to “consumer health data.” Just1One is not a health or fitness app; we process the categories described in this Policy (profile, conversations, technical data, App Store and Google Play purchase events). If you have questions about how state law applies to you, contact us.
03
Who we are
The publisher of Just1One is identified in the Legal notice. For GDPR-related questions you can contact our Data Protection Officer (DPO) at the address shown at the bottom of this page. For general privacy questions: [email protected] or the Contact form on just1one.app.
04
Where this Privacy Policy applies
It covers the Just1One mobile app, the marketing website just1one.app, our secure forms (Contact, account deletion, GDPR requests), and support interactions. If a specific feature ever needs its own policy, we’ll present it separately.
05
Data we collect
Data you give us • Account: email address; sign-in with email and password, Sign in with Apple, or Google (passwords and sessions are handled by Clerk, our authentication provider). • Profile: first name, age, city, gradually revealed photos, preferences shown in the app. • Content: messages, reports, attachments the product allows, and Untold community text posts (display name and preset avatar style, moderated automatically and by staff). • Purchases: in-app purchase events from Apple (iOS) and Google (Android) for WAIT, FAST, INSTANT, INSTANT YEARLY, Super Match, and +1,000 characters: card data stays with the store that processed the payment. • Support: what you submit through the Contact form. Data generated or technical • Usage: match windows, in-app actions, conversation history kept for a limited time. • Technical: device, language, app version, logs needed for security and debugging. • Product analytics: PostHog (EU region) to understand and improve the product. We do not sell your personal information to data brokers, and the app does not show third-party ads based on this profiling.
06
Why and how we use your data
Mainly to: create and secure your account; operate matching and progressive reveal; show your profile to other members as part of the service; send useful notifications and emails (OneSignal, Resend); process purchases through Apple and Google’s stores; detect abuse and fraud; moderate content and handle reports; improve reliability (Sentry) and the product (PostHog); comply with the law. Legal bases depend on the processing (contract, legitimate interests for security and improvement, legal obligation, consent where required, for example some notifications or analytics settings).
07
How we share data
With other members: information you choose to display in the normal flow of the service (profile, chats). With service providers who help us host and operate: Clerk (auth), Supabase (database), Cloudflare R2 (photos), OneSignal (push), Resend (email), Sentry (errors), PostHog (EU analytics), Apple and Google (payments via their stores). They only receive what they need for their role. With authorities: when required by law (valid legal process) or to protect people from imminent harm. There is no “Match Group–style” family of brands here: we do not automatically share your data with unrelated dating brands; sharing stays within Just1One and the providers listed above.
08
Cross-border data transfers
We may use providers in the EU, the United States, or elsewhere. When personal data leaves the European Economic Area, we rely on recognized mechanisms (adequacy decisions, Standard Contractual Clauses, supplementary measures where appropriate). Ask us for more detail through Contact if you need it.
09
Your rights and choices
Depending on your country you may have rights such as access, rectification, erasure, restriction, portability, objection, and withdrawal of consent. In the app: account settings and GDPR area. On the website: “Personal data” (structured GDPR request), “Account deletion” (email + code), Contact form. Marketing site cookies: see /en/cookies. We may verify your identity before fulfilling a request so someone else cannot take over your data.
10
How long we retain your data
Conversation history: about 7 days in the app under the current product rules. Active account: data kept while the account exists; deletion on request following the flow on our deletion page. After closure: limited retention for safety (for example to reduce banned users immediately reopening) and longer retention where the law requires it (for example tax rules on transactions). Moderation data: as long as needed to handle reports and meet legal duties.
11
Children’s privacy
Just1One is for adults only (18+, or the higher age of majority where you live). We do not allow minors on the platform. If you believe a profile involves a minor, report it from the app or the Contact page. More detail: our Minor safety / CSAE page.
12
Changes to this Privacy Policy
We may update this text when the product, the law, or our practices change. For material updates we’ll give reasonable notice (dated page, in-app message, or email when needed).
13
How to contact us
Secure form: Contact page on just1one.app. Privacy inbox: [email protected] DPO: see the box at the bottom of this page. Structured GDPR requests: “Personal data” page. Web account deletion: “Account deletion” page. Thanks for reading: now go make a conversation that actually matters.
For privacy or GDPR requests, you can email us at the dedicated address below. You may also use the Contact form; we reply by email.
Data Protection Officer (DPO), questions about how we process your personal data:
[email protected]