Privacy Policy
Working draft — not yet reviewed by counsel. Structured to support Apple App Privacy labels and Google Play Data Safety disclosures. Last updated July 6, 2026.
What we collect
- Account: email, display name, birth year, pronouns (optional).
- Profile: systems, availability, playstyle sliders, content limits, bio, and city-level location. We never collect precise GPS location.
- Activity: listings, applications, messages, RSVPs, attendance, ratings you give and receive, and purchases (processed by Apple or Google — we never see your card number).
- Device and usage data: app version, device type, crash logs, feature usage.
- Age verification (only if you unlock in-person features): our identity verification partner confirms you are 18+ and tells us only the result. We store a yes/no and a reference number — never your ID document or selfie. [Counsel: finalize once the verification vendor is chosen.]
How we use it
- Matchmaking: your preferences, availability, and city power match scores and search. This is the core of the service.
- Age gating: your birth year determines whether in-person features and 18+ tables are available to you. Under-18 accounts are online-only. Your age and birth year are never shown to other users.
- Safety: automated systems scan listings and messages for likely Guideline violations such as scams, harassment, and child-safety signals. Flagged content is reviewed by trained staff. Reports you file are read by humans.
- Operations: running the service, support, receipts, and service announcements.
- We do not sell your personal information, and we do not target ads based on your messages.
What other users see
Your profile, reputation and attendance stats, your listings, and the messages you send them. Your content limits are shared with a DM when you apply to their table. Your city is visible; your precise location never is.
When we share
Service providers under contract (hosting, analytics, payment platforms); law enforcement when legally required; child-safety authorities as described in our Guidelines; and a successor in a merger or acquisition, with notice to you.
Your choices and rights
- Edit or delete profile fields at any time.
- Delete your account in-app (Profile → Delete account); we remove or de-identify personal data within [30] days, except records we must keep for safety or legal reasons.
- Request a copy of your data: privacy@thetavernapp.com.
- Residents of the EU/UK, California, Colorado, and similar jurisdictions have additional rights (access, correction, deletion, portability); we extend them to everyone regardless of location. [Counsel: GDPR/CCPA representative details.]
Children
The Tavern is not for children under 13. If we learn we have collected data from a child under 13, we delete it. Users 13–17 get additional protections by design: their accounts are online-only (no in-person features), 18+ tables are hidden from them entirely, and our safety systems treat any signal of an adult seeking offline contact with a minor as highest-priority for human review and, where required, reporting to authorities.
Security and retention
Data is encrypted in transit, access is limited by role, and we keep data only as long as needed for the purposes above. [Counsel: retention schedule.]
Changes and contact
Material changes are announced in-app. Questions: privacy@thetavernapp.com.