Effective Date: [2025.07.22]
Your privacy matters to us. CosmoSoul (“the Platform”) is committed to protecting your personal information in compliance with applicable data protection laws (such as the GDPR and CCPA). This Privacy Policy explains what information we collect, how we use it, and how we protect it.
Depending on how you use our services, we may collect the following types of information:
1.1 Account & Registration Info • Username, profile photo, birthdate, gender, email address, phone number, language preferences • Login credentials (encrypted; passwords are never stored in plain text)
1.2 Identity Verification (Optional) • Government-issued ID, driver’s license, selfies, or other documentation • World ID or other Web3 authentication data
1.3 User-Generated Content • Experience posts, wish requests, comments, likes, language preferences • Chat messages (used for service delivery and abuse prevention)
1.4 Usage Behavior • Session duration, page flows, tap/click behavior, read/unread status • Settings like language and dark mode
1.5 Device & Technical Data • IP address, device type, OS version, geo-location (if permitted) • Firebase ID, push notification token, browser version
1.6 Cookies & Similar Technologies (Web Only) • Session tracking, visit frequency, UX optimization • Tools like Google Analytics or similar
We use your data to: • Provide and operate the platform’s core features (experience matching, wish requests, messaging) • Personalize recommendations and multilingual content • Verify identity and enhance trust ratings • Ensure safety, prevent fraud, and enforce community standards • Send system updates, promotional messages, or surveys (only with your consent) • Conduct analytics and product improvement research
We do not sell your personal data. We may share data only under the following circumstances:
3.1 Service Providers
We use third-party vendors to support operations, including: • Cloud hosting (Firebase, Google Cloud) • Identity verification and payments (Worldcoin, Stripe) • Analytics and debugging (Sentry, Amplitude)
3.2 Legal Requirements • When required by law, subpoena, or court order • To prevent harm or protect vital interests (yours or others’)
• All data is securely stored on encrypted cloud servers • Messages and interaction records are retained for up to 24 months unless deleted by the user • You may request export or deletion of your data at any time