Skip to main content

Data Safety

What we collect, why, and how it's protected.

This page mirrors the Data Safety form we submit to Google Play. Data is encrypted in transit (HTTPS) and at rest, and users can request deletion at any time from Account.

CategoryDataPurposeOptionalShared
Personal infoName, emailAccount creation & sign-inNoNo
Personal infoPhone numberOptional 2FA and provider bookingsYesOnly with providers you book
Personal infoPreferred language, countryLocalisation & recommendationsYesNo
DocumentsCV, cover letter, certificates, passport scansJob, visa & scholarship applications you initiateYesOnly with employers/universities you apply to
PhotosProfile picture, uploaded ID photoProfile display & verification you initiateYesOnly with recipients you apply to
MessagesIn-app messages, community postsCommunication & moderationYesWith the recipient; moderators see reported content
Payment infoTransaction amount, currency, statusBilling, invoicing, fraud checksNoWith payment processor (Paddle/Stripe/Google Play)
LocationApproximate location (IP-derived)Local jobs & travel suggestionsNoNo
App activityPages visited, features usedService improvement & securityNoNo
Device infoDevice model, OS, crash logsDiagnostics & securityNoNo
ContactsNot collectedโ€”Yesโ€”
Financial infoCard / bank detailsNot stored โ€” handled by payment processorYesProcessor only
Health & fitnessNot collectedโ€”Yesโ€”

Security practices

  • All traffic is served over HTTPS/TLS.
  • Data at rest is encrypted by the database provider.
  • Row-level security restricts users to their own data.
  • Service-role secrets never ship to the client bundle.
  • Administrative access is audit-logged.

Deletion

Use Account โ†’ Delete data to remove uploaded documents, or Delete account to remove your account and all associated personal data within 30 days.