Privacy Policy
1. What we collect
Account data (email, username, display name), content you post, profile customization (avatar, bio, status), and basic analytics (page views, device type, referrer). We do not track you across the web.
2. How we use it
To operate fl1p — authenticate sessions, deliver content to the right audience, prevent abuse, improve the product, send transactional emails. We do not sell your data.
3. Third-party services
We use: Supabase (database, auth), Cloudflare (hosting, CDN), Resend (transactional email), Stripe / Creem (payments where applicable). Each operates under their own privacy terms.
4. Cookies & local storage
We use local storage for: session tokens, theme preference, composer drafts, and dismissed banners. We do not use third-party tracking cookies.
5. Your data, your control
You can export your data, edit your profile, or request account deletion from settings. Deletions are permanent and processed within 30 days.
6. Direct messages
DMs are gated by the follower graph — cold outreach to non-followers is blocked by default. Messages are stored encrypted at rest. We do not read your DMs except when required by law or for safety/abuse investigations.
7. Public content
Posts, comments, profile bios, and community pages are public by default and indexable by search engines unless you mark your profile or community private.
8. Children
fl1p is not intended for users under 18. We do not knowingly collect data from minors.
9. Changes to this policy
Material changes will be announced via in-app notification. The "last updated" date above reflects the most recent revision.
10. Contact
Privacy questions? Contact support or email [email protected].