Vibz — Privacy Policy

[LEGAL REVIEW PENDING] Version: 1.0.0 Effective date: to be set on launch

This Privacy Policy explains how Vibz ("we", "us") collects, uses, and shares information when you use the Vibz mobile apps, website, and related services (the "Service").

1. Information we collect

1.1 Information you give us

Account info: phone number, display name, profile photo, status, date of birth (used to enforce minimum age), the friend code you choose.
Your content: posts, comments, captions, messages, photos, videos, voice / video call participation, livestream broadcasts, stickers you create, channel subscriptions.
Support: the contents of any email or in-app form you send us.

1.2 Information collected automatically

Device + technical: device model, OS, app version, locale, timezone, language, network type, push token, anonymous device identifiers.
Usage: which screens you visit, what content you view or interact with (likes, comments, follows, watch time on a feed video), session timing, in-app errors and crashes.
Approximate location (city/region) derived from IP — never precise GPS unless you grant a permission for a feature that needs it.

1.3 Information from third parties

Phone-number verification results from our SMS provider.
Crash reports from Apple and Google diagnostics (if you opt in).
Sign-in providers (Apple, Google, Facebook) when you choose social sign-in: we receive a stable identifier and email; we do not receive your password.

We do not sell your personal information.

2. How we use your information

Provide, secure, and improve the Service.
Personalize content and recommendations in the feed.
Rank, recommend, limit, or age-gate content based on signals such as watch time, follows, likes, reports, content labels, account safety settings, and whether an account is under 18.
Authenticate you and protect against fraud, spam, and abuse.
Moderate content and enforce our Terms of Service.
Comply with law, respond to legal process, and prevent harm (including reporting CSAM to NCMEC as required by US 18 USC §2258A).
Send you transactional messages (security alerts, account notices) and, only if you opt in, marketing messages.

We rely on the following legal bases under GDPR / UK-GDPR: contract performance (operating your account), legitimate interests (security, abuse prevention, product improvement), legal obligation, and your consent (for tracking, marketing, optional integrations).

3. Sharing

We share information with:

Other users, in the way the Service is designed to display it (your posts, comments, profile, etc.).
Service providers that process data on our behalf under contract: hosting, storage, push notifications, SMS verification, crash reporting, content moderation classifiers, CSAM hash matching, support tooling, analytics. A list of current categories appears in §10.
Law enforcement / legal requests, where required by valid process or to prevent imminent harm.
Business transfers (acquisition, merger, sale) — we will tell you in advance if your data would move to a different controller.

We do not share your contact list or message contents with third parties for advertising.

4. Encryption

All traffic between the app and our servers uses HTTPS (TLS 1.2+).
Direct messages between users are end-to-end encrypted (E2EE) using the Signal protocol. We hold ciphertext only; we cannot read your messages.
Media you send in DMs — photos, videos, voice notes, and file attachments — is also E2EE: the bytes are encrypted on your device before upload and only the recipient can decrypt them.
Group chats come in two visibilities, chosen at creation time and immutable thereafter:

- Private groups are end-to-end encrypted and are not discoverable in search, discovery, or recommendations. The per-message content key is wrapped to each eligible current member's device so only those members can decrypt; Vibz holds ciphertext only. Restricted accounts (under 18) cannot join or access private groups. - Public groups (and public groups that require admin approval to join) are encrypted in transit (HTTPS / TLS 1.2+) but are not end-to-end encrypted. Vibz stores public-group content in server-readable form so we can moderate it (CSAM detection, abuse review, copyright takedowns), support discovery and search, enforce the Community Guidelines, and keep the Service safe. Anyone may join public groups, including restricted accounts, subject to our safety rules.

Custom personal stickers that you send in DMs and PRIVATE groups are end-to-end encrypted at rest, the same way as photos, videos, voice notes, and files. Stickers from our built-in catalog (default and downloadable packs we host) are public content by design and are not E2EE; everyone who has access to the catalog gets the same files.
Public posts and live streams are not end-to-end encrypted because the Service must be able to display them to other users and to moderate them.

5. Retention

We keep your information only for as long as we need it. Indicative retention:

Category	Retention
Active account	Until you delete the account
Deleted account	Anonymized within ~30 days; full purge of derived data within 90 days
Direct messages and private-group messages (E2EE ciphertext)	Deleted from active servers within 24 hours after delivery and recipient-device sync, unless reported or preserved for legal, safety, or security reasons
Message metadata and tombstones	Up to 13 months where needed for delivery, abuse prevention, edits, reactions, deletions, safety, and legal compliance
Encrypted message key-delivery records for private groups	Kept with message metadata/tombstones where needed to deliver, sync, recover, or troubleshoot encrypted group messages; these records are wrapped to recipient devices and do not contain plaintext message content
Signal device public keys and one-time prekeys	Kept while the device/account is active; claimed one-time prekeys are pruned after about 90 days by default; old signed prekeys may be kept in limited history so delayed messages can still decrypt
Optional encrypted key-recovery backup	Kept until you replace it or delete your account; the backup is encrypted before upload and is used to restore access to encrypted messages still available to your account
Public posts	Until you delete or your account is deleted
Public-group messages	Until deleted by the sender, removed by moderation, or the account/group is deleted
Moderation reports + decisions	90 days after action; CSAM evidence as required by law
Server access logs	30 days
Security audit logs	13 months
Backups	35 days rolling

Important encryption-retention note: deleting an encrypted message body from active servers does not immediately delete every supporting key or device record. Vibz keeps some encrypted key-delivery records, device public keys, prekey history, and optional encrypted key-recovery backups longer than 24 hours so the Service can deliver delayed messages, support multi-device sync, recover encrypted messages that are still available to an account, prevent abuse, and troubleshoot encryption failures. These records are not plaintext message content.

Your device may keep decrypted message bodies, media files, and media decryption keys in local app storage after the server copy is purged. You can remove that local copy by deleting the message, deleting the conversation, deleting your account, or clearing/removing the app data from your device.

6. Your rights

Depending on where you live (GDPR/UK-GDPR, CCPA/CPRA, etc.), you may have the right to:

Access the personal data we hold about you.
Correct inaccurate data.
Delete your account and associated data (you can do this from inside the app).
Export your data ("data portability") — request a copy under Settings → Privacy → Download my data.
Object to or restrict certain processing.
Withdraw consent for processing that relies on consent.
Lodge a complaint with your local data protection authority.

To exercise any right not directly available in the app, email privacy@marketvibz.com.

7. Children

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn we have collected such information without verifiable parental consent, we will delete it. Some jurisdictions set a higher minimum age (e.g. 14, 15, or 16) — those minimums are enforced where they apply.

For users between 13 and 17, we apply additional safety defaults: private profile by default, restricted DM and calling, limited discoverability, no private-group access, public-group access only where allowed by our safety rules, no public livestreaming, no token / subscription purchases, no paid subscription channels, and no view-once or time-expiring secure media. Teen accounts do not receive adult-oriented recommendations.

Adults may enable Filter messages from strangers so direct messages from people they do not follow land in a separate Message Requests inbox without a notification or badge. From there, the adult can accept the conversation into the main inbox or decline it and delete the request.

8. International transfers

We are based in the United States. If you use the Service from outside the US, your information will be transferred to and processed in the US (and possibly other countries where our service providers operate). Where required, we use the European Commission's Standard Contractual Clauses or the EU-US Data Privacy Framework.

9. Security

We use industry-standard administrative, technical, and physical safeguards. No system is 100% secure; we encourage you to use a strong, unique password (or biometric / phone-based authentication) and to enable two-factor authentication when we offer it.

If we discover a security incident affecting your information, we will notify you and the appropriate regulators as required by law.

10. Service providers (categories)

The current categories of third parties that process data on our behalf include:

Cloud hosting and storage (US-based providers)
SMS phone verification (Twilio or equivalent)
Push notification delivery (Apple APNs, Google FCM)
Real-time voice / video infrastructure (LiveKit / Cloudflare Calls)
Crash and error reporting (Firebase Crashlytics)
Content moderation classifiers (Google Perspective API, AWS Rekognition Content Moderation)
CSAM hash matching (Cloudflare CSAM Scanning Tool, which uses NCMEC + Microsoft PhotoDNA hash sets)
App attestation (Apple App Attest, Google Play Integrity)
Customer support tooling

A list of specific named subprocessors will be published at https://app.marketvibz.com/legal/subprocessors before launch.

11. Changes

We may update this Policy. When we do, we will bump the version, post the updated version at this URL, and notify you in-app. For material changes affecting your rights, we will require you to accept the new policy before continuing to use the Service.

12. Contact

Privacy: privacy@marketvibz.com
Data protection officer (EU/UK): dpo@marketvibz.com
Postal: [Your registered office address]

This is a v1 draft modeled on best-practice social-media privacy policies (TikTok, Snapchat) customized to Vibz's data flows. The retention table, list of subprocessors, legal bases and dispute clauses must be reviewed and finalized before public launch.