Privacy Policy

The operator of yoummee is the data controller for your personal data under the EU General Data Protection Regulation (GDPR). You can reach us using the contact details at the end of this policy.

We collect only what is necessary to run the service:

• Account data: email, chosen handle, display name, hashed password, and date of birth (for age verification).
• Profile data you provide: optional gender, sexual preferences, mood, bio, avatar, language, timezone.
• Content you and your partner create: messages, posts, photos, videos, stories, polls, games, calendar events, stories — stored end-to-end encrypted where technically possible.
• Technical logs limited to what is needed for security: a consent record containing a truncated IP (IPv4 /24, IPv6 /64) and user-agent; rate-limit counters; moderation events.
• Push subscription tokens, if and only if you opt in to push notifications.

Messages, post captions, bios and similar content are encrypted in your browser with a key derived from your password. The server only sees ciphertext. If you lose both your password and your recovery code, nobody — including us — can recover that content. This is a deliberate design choice, not a bug.

Your data lives on servers we own and operate directly. We control the hardware, the network, and every layer of access. We do not share your data with any third-party analytics, advertising, profiling or tracking service. We do not sell data. We do not use it to train AI models for anyone else.

We use an SMTP mail server strictly for two transactional purposes: (1) password-reset emails you explicitly request, and (2) a one-time "your partner has joined" notification. We never send marketing, and we do not share email data beyond what's necessary to deliver those two messages.

If you enable push, we send only generic notices such as "@handle sent you a message." Message bodies, photos and other content are never placed in a push payload. You can disable push at any time from Settings.

Your content stays until you delete it, or until you unpair from your partner (which deletes all shared content automatically), or until you delete your account (which removes everything). Short-lived data has shorter lives: password-reset tokens expire after 1 hour, stories after 24 hours, moderation logs after 90 days, auth sessions after 30 days.

Under GDPR you have the following rights, which you can exercise directly from Settings or by contacting us:

• Access — download everything we hold about you.
• Rectification — correct inaccurate data from your profile page.
• Erasure — delete your account and all associated data at any time.
• Portability — the export is provided in machine-readable JSON, including your encryption keys.
• Withdraw consent — withdrawing essential consent means deleting your account, since the app cannot function without it.
• Complain to a supervisory authority — you have the right to lodge a complaint with your national data-protection authority.

The service is strictly for adults aged 18 and over. We verify age at registration and will delete any account found to belong to a minor.

Questions about this policy or about your data? Contact the operator using the details in the footer or on the contact page.