TherianDate Commitment: We understand that your therian or otherkin identity is intimate and personal information. We treat it with the utmost discretion, we never sell it, and we apply reinforced security measures. This policy explains exactly what we do with your data.
1 Data Controller
TherianDate is responsible for the processing of the personal data you provide us.
- Name: TherianDate
- Contact email: early@theriandate.com
- DPO / Data Protection Officer: early@theriandate.com
2 Data we collect
2.1 Waitlist (current phase)
During the waitlist phase, we only collect:
- Email address — to notify you of the launch
- Date and time of registration — to manage early access order
- UTM parameters (if any) — for traffic source analytics
2.2 App usage (after launch)
When the app is available, we may additionally collect:
| Category | Examples | Mandatory |
|---|---|---|
| Identity | Username, profile photo, age | Yes |
| Therian identity | Therioside, kintypes, pronouns | No (optional) |
| Preferences | Type of connection sought, interests | No |
| Messages | Private conversations between users | Generated by use |
| Technical | IP, device, operating system, logs | Automatic |
| Location | Country/city (never precise GPS without permission) | No |
3 Purpose and legal basis
| Purpose | Legal basis (GDPR) |
|---|---|
| Notify you of the app launch | Consent (art. 6.1.a) |
| Provision of matchmaking service | Performance of a contract (art. 6.1.b) |
| Security and fraud prevention | Legitimate interest (art. 6.1.f) |
| Compliance with legal obligations | Legal obligation (art. 6.1.c) |
| Service improvement and analytics | Legitimate interest (art. 6.1.f) |
| Marketing communications (opt-in) | Consent (art. 6.1.a) |
4 Specially sensitive data
Attention: Therian and otherkin identity can be considered data concerning philosophical beliefs or the intimate life of the user, a specially protected category under the GDPR (art. 9). We apply specific additional safeguards for this data.
For therian/otherkin identity data we apply:
- Explicit consent and separate before collecting them
- Encryption at rest with independent keys
- Restricted access — only strictly necessary technical staff
- No sharing with third parties under any circumstances
- Guaranteed deletion when you request cancellation
We will never use your therian identity for advertising targeting or share it with any third party.
5 Data retention
- Waitlist email: until the app launch or until you request to unsubscribe, whichever comes first
- User account: while the account is active, plus 30 days after the deletion request
- Messages: while both users keep their account active; deleted 30 days after either one deletes their account
- Technical logs: maximum 90 days for security reasons
- Billing data: 5 years due to legal obligation
6 Sharing with third parties
We do not sell your personal data under any circumstances.
We may share data with the following third parties, only to the extent necessary:
- Infrastructure providers (hosting, databases) — under data processing agreements (DPA)
- Email provider (for sending notifications) — only your email address
- Analytics tools (aggregated and anonymized data, with no personal identification)
- Competent authorities — only when there is a legal obligation or a judicial requirement
All our providers are subject to contractual agreements that oblige them to protect your data with standards equivalent to ours.
7 International transfers
We prioritize the use of providers with servers in the European Union. When it is necessary to use services outside the EEA, we ensure that adequate safeguards are in place in accordance with the GDPR:
- Adequacy decision of the European Commission
- Standard contractual clauses (SCC) approved by the Commission
- Binding corporate rules (BCR)
8 Your rights
Under the GDPR you have the following rights regarding your data:
To exercise any of these rights, write to us at early@theriandate.com with the subject "Exercise of GDPR rights". We will reply within a maximum of 30 days.
If you consider that we have violated your rights, you can file a claim with the corresponding Data Protection Authority in your country.
9 Minors
TherianDate is an exclusive service for people over 18 years of age. We do not knowingly collect data from minors. If we detect that a user is a minor, we will delete all their data immediately.
If you are a parent or guardian and believe that a minor has provided their data, contact us at early@theriandate.com.
10 Security
We apply technical and organizational measures to protect your data, including:
- Encryption in transit (TLS 1.3) and at rest (AES-256)
- Restricted data access with the principle of least privilege
- Multifactor authentication for employee access to internal systems
- Periodic security reviews and penetration testing
- Security breach response plan
In the event of a security breach that affects your rights and freedoms, we will notify you within a maximum of 72 hours after becoming aware, in accordance with art. 34 of the GDPR.
11 Changes to this policy
When we make material changes to this Privacy Policy, we will notify you by email at least 15 days in advance. The "last updated" date at the beginning of the document always reflects the current version.
12 Contact and DPO
For any questions about privacy or exercise of rights:
- General privacy email: early@theriandate.com
- Data Protection Officer (DPO): early@theriandate.com