Privacy Policy

Last updated: 2026-04-21. Version: 0.4 (pre-launch draft — not yet reviewed by counsel).

This policy describes how SuperCala LLC ("SuperCala") collects, uses, and protects the personal information you provide to MeetCute. By using MeetCute you agree to the collection and use of information in accordance with this policy.

1. What we collect

• Account data: email address, display name, and the SuperCala account identifier, via the SuperCala identity provider (auth.supercala.ai).
• Demographics: gender, which genders you're open to meeting, date of birth (used to compute your age and enforce the 18+ requirement), US ZIP code (used to enforce your distance preference), and an optional city.
• Location (optional home address): if you provide a home address, we do not store it — on save it is converted to an approximate, block-level coordinate (rounded so it is not a precise pin of your home) and the address itself is immediately discarded. We use that approximate coordinate only to suggest a meeting point fair and central to you and a match. It is never shown to any match, never shared, and never sold, and the coordinate is deleted when you delete your account. If you don't provide an address, your ZIP code is used instead, less precisely.
• Questionnaire responses: your answers to the personality and preference questions, including four open-ended narrative answers, and computed scores per instrument (Big Five, attachment, Schwartz values, conflict style, humour style, sociosexuality).
• Narrative embeddings: your four open-ended answers are sent to OpenAI's text-embedding-3-small model and a numerical vector is stored alongside the text. The vector is used for matching only; we do not train third-party models on your data.
• Meeting data: when a meeting is arranged, scheduled time, location, and your confirmation status. After a meeting, your private feedback (whether you'd see the person again, how accurate our score felt, an optional note).
• Safety reports: if you report another user for safety, harassment, dishonesty, or no-show, we retain the report and any detail you provided.
• Usage data: access timestamps, IP addresses, device type, response-time signals on the questionnaire (used to flag careless responses), and interaction events for security, fraud prevention, and service improvement.
• Payment data: processed by Stripe. We never store your card number or bank account; we only store Stripe's customer and charge references.
• Photos: three required photos captured live in the browser (full-body front, full-body side, face front), plus up to five optional photos you upload from your device. Stored on our servers; never publicly served. See section 2 for what we do with them.

2. Photos

MeetCute uses photos in a deliberately narrow way:

• Three live captures. When you reach the photo step, we ask you to take three photos directly in the browser using your device camera. We do this in-browser (not file-uploaded) so we know they're really you.
• Up to five optional uploads. You can add up to five additional photos from your device — group shots, hobbies, scenery, anything you want a match to see. Each one is automatically reviewed by an OpenAI vision model before it's published, to filter obvious policy violations (nudity, weapons, minors as the subject, hate imagery, screenshots / non-photographic content). The model's decision is logged; the original image is sent to OpenAI for the review and is not retained by them under our API agreement.
• Visibility. Your photos are visible to (1) you, and (2) any user who has algorithmically matched with you. They are never publicly served, never shown to anyone outside an active match, and never used to train models.
• Deletion. Delete any photo at any time from the photos page; the file is removed from our disks immediately. Deleting your account removes all of your photos.

We do not algorithmically score, rank, or classify your appearance. Photos are not an input to your compatibility score.

3. What we do with your data

• Matching: compute compatibility scores between users using demographics, questionnaire responses, and narrative embeddings.
• Meeting coordination: when two users match, we propose and arrange a public-venue meeting and send each side a confirmation-and-pay link.
• Safety: review reports of harmful conduct; trained personnel may read reports during a safety review.
• Service improvement: post-meeting feedback drives calibration of our matching weights. We do not train generative AI models on your personal data.

4. What we never do

• We do not sell your data.
• We do not show your name, questionnaire answers, or photos to anyone except a user you have algorithmically matched with.
• We do not use your data to target you with ads.
• We do not use your photos to score, rank, or classify your appearance, and we do not use them as an input to the compatibility match.
• We do not use your data to train generative AI models.

5. Sharing

We share limited data with:

• Our identity provider (auth.supercala.ai), which handles sign-in and password management across SuperCala products.
• Our payment processor (Stripe), for fee processing and refunds.
• Our embedding provider (OpenAI), for embedding your four narrative responses. OpenAI's API policy prohibits training on API inputs without opt-in.
• Our email provider (SendGrid), for account + meeting emails.
• Booking-platform partners (OpenTable, Resy, Yelp Reservations, and similar) only when you click a booking link we included in an email. We may earn a small referral fee from these partners when you complete a reservation. This never affects which venue we recommend — our recommendation algorithm has no access to our commercial relationships (see our Product decisions log for how this is enforced in code).
• Infrastructure providers (Railway, Google Cloud), who store data on our behalf under standard data-processing agreements.
• Law enforcement, when legally required via subpoena or equivalent, or when we reasonably believe disclosure is necessary to protect someone's safety.

6. Retention

See Data Retention Policy for details. In summary:

• Questionnaire responses + narrative embeddings: retained while your account is active; deleted on account deletion within 30 days.
• Payment records: retained for 7 years to meet tax / accounting / dispute obligations, even after account deletion.
• Safety reports: retained indefinitely in anonymised or pseudonymised form for pattern detection and potential legal response, even after account deletion.
• Meeting feedback: aggregated anonymously for matching calibration; raw feedback deleted when both parties' accounts are deleted.

7. Your rights

Depending on your jurisdiction you may have the right to:

• Access a copy of your personal data
• Request correction of inaccurate data
• Request deletion of your data ("right to be forgotten")
• Port your data to another service
• Opt out of certain processing

To exercise any of these rights, email privacy@supercala.ai. We respond within 30 days.

8. Children

MeetCute is not directed at anyone under 18. We enforce an 18+ gate at signup based on the date of birth you provide. If you believe we have collected data from a minor, contact privacy@supercala.ai and we will delete it immediately.

9. Security

We use TLS for data in transit, encryption at rest for sensitive fields, access controls that restrict employee access to what's needed for operations, and regular audits. No system is perfectly secure; in the event of a breach we will notify affected users consistent with applicable law.

10. Changes

Material changes will be announced by email and posted here at least 14 days before they take effect.

11. Contact

Privacy questions: privacy@supercala.ai. Mailing address: SuperCala LLC, 2006 Napa Valley Dr, Waxhaw NC 28173.