Privacy Policy

person

pssper Support Team

Updated 2026-02-16

Your privacy is our top priority. This policy explains what data pssper collects, how we use it, and how we protect it.

1. Account Security

Phone Number Verification

  • pssper uses one-time password (OTP) verification via SMS — there are no passwords to remember or steal.
  • Each OTP is valid for 10 minutes and can only be used once.
  • One phone number can only be linked to one account (1 number = 1 account policy).

Bot Prevention

We use automated bot detection to prevent fake accounts from being created. No personal data is collected during this verification step.

Biometric App Lock

  • You can enable Face ID, Touch ID, or fingerprint authentication to lock the app.
  • Biometric data is stored only on your device and is never transmitted to our servers.

Session Management

  • Sessions are encrypted and expire automatically after a period of inactivity.
  • You can log out from all devices via Settings > Account > Sign Out.

Suspected Account Compromise

If you suspect unauthorized access to your account:

  1. Log out immediately from Settings > Account.
  2. Re-verify your phone number via OTP.
  3. Contact [email protected] — we respond to urgent security issues within 4 hours.

2. Data Collection

Required Information

  • Phone number — Account creation and identity verification
  • Date of birth — Age verification and age-based matching
  • Location — Distance-based recommendations and regional filtering

Optional Information

  • Profile photos, bio, interests/hobbies, occupation/education, SNS links
  • You can provide these optionally for a better matching experience.

Automatically Collected

  • Access logs (login times, device information)
  • Usage activity (Likes, Passes, match history, balance game responses)
  • Message metadata (send times, read status)
  • Appointment information (date, time, location when registered)
  • IP address and device information (security and performance)
  • Error logs (app diagnostics)

3. How We Use Data

  • Matching algorithm — Personality analysis, interest matching, trust score consideration, age and location filters
  • Profile suggestions — AI analyzes conversations to suggest profiles that reflect your true self
  • Post-match features — Balance game response analysis, date review insights, date plan optimization, appointment data
  • Safety analysis — Real-time content filtering, risk pattern detection, scam prevention
tips_and_updates

Pro Tip

While message content is analyzed for content filtering, this is used solely for safety purposes and never for marketing or profiling.

4. AI Conversation Data

Conversations with your AI friend are managed as follows:

  • Conversation history — All conversations are stored and can be deleted on request.
  • Keywords remembered by AI — Important things mentioned in conversations (e.g., trips, concerns, interests) are saved as short keywords so the AI can naturally continue past conversations. Deleted when your account is deleted.
  • Personality insights from AI — Personality, interests, and values identified through conversations. Used for better matching and personalized recommendations. Can be reset in Settings.

All conversations are protected with TLS 1.3 in transit and AES-256 at rest.

tips_and_updates

Pro Tip

You can delete your AI conversation history at any time from Settings > Data Management. You can also opt out of AI analysis entirely from Settings > AI Features.

5. Data Sharing

  • OpenAI — Used for AI features (conversations, profile suggestions, ice-breaking assist). Per API defaults, data is not used for training and is deleted after 30 days. You can opt out of third-party AI processing in Settings.
  • Resend — Used for transactional emails (payment confirmations, subscription notices). Only your email address and email content are shared.
  • RevenueCat — Used for in-app purchase processing via Apple App Store and Google Play Store.
  • Stripe (coming soon) — Web payment processing. PCI DSS Level 1 compliant. Your card information is tokenized and never stored on our servers.

We do not share data with advertisers, data brokers, social media platforms, or any other third parties. Legal requests require a court order or formal legal process, and we notify users when possible.

6. Data Retention

While Your Account Is Active

  • Basic information (name, date of birth, location) — Duration of account
  • AI conversation history — Duration of account
  • Keywords remembered by AI — Duration of account
  • Personality insights from AI — Duration of account (can be reset in Settings)
  • Login records — 90 days
  • Error logs — 30 days

After Account Deletion

  • Profile, AI conversations, match/chat history — Permanently deleted immediately
  • Phone number hash — Retained for 90 days to prevent re-registration abuse, then deleted
  • Payment/transaction records — Retained up to 7 years per legal requirements
  • Reports and sanctions — Retained up to 1 year for abuse prevention
  • Anonymized statistics — Retained indefinitely (non-identifiable)

7. Your Rights

You have the following rights regarding your data:

  1. Access — Download your data in JSON format via Settings > Data Management. We process requests within 7 days.
  2. Correction — Update incorrect information in Settings > Profile Management. Changes take effect immediately.
  3. Deletion — Delete AI conversations, messages, photos, and location data in Settings > Data Management
  4. Restriction — Opt out of specific data uses (marketing, AI training) in Settings > Privacy
  5. Portability — Export your data in JSON or CSV format via Settings > Data Management

All requests can be submitted via Settings > Support > "Privacy Request" or by emailing [email protected]. Requests are typically processed within 30 days (60 days for complex requests).

8. Account Deletion

Account deletion follows this process:

  1. Request deletion — Settings > Account Management > Delete Account
  2. Immediate permanent deletion — Your profile, AI conversations, and match/chat history are permanently deleted and cannot be recovered.
  • Payment/transaction records are retained for up to 7 years per legal requirements.
  • Phone number hashes are retained for 90 days to prevent abuse, then deleted.
  • You cannot re-register with the same number for 90 days after deletion.

9. Location Data

How We Use Location

  • Distance-based matching — Show people near you
  • Regional filters — Allow you to set preferred discovery areas
  • Fraud detection — Identify suspicious location patterns

Precision

Your location is intentionally stored at a regional level (district/neighborhood), not your precise address. This provides useful matching while protecting your privacy.

Disabling Location

  • You can disable location access in your device's OS settings or within the app.
  • pssper does not track your location in the background. Location is only accessed when you actively use the app with location permission granted.

10. Cookies & Tracking

We use cookies and similar technologies for the following purposes:

  • Essential cookies (required) — Login sessions, security tokens (CSRF protection). These cannot be disabled.
  • Analytics cookies (optional) — Usage patterns and feature popularity to improve the service. You can opt out in Settings > Privacy.
  • Marketing cookies (optional) — Used for advertising and promotions. You can opt out in Settings > Privacy.

How to Manage Tracking

  • Adjust cookie preferences in Settings > Privacy > Cookie Preferences
  • Use your browser's "Do Not Track" setting
  • Clear cookies through your browser or device settings

11. Children's Privacy

pssper is an adults-only service for users 18 and older.

  • Date of birth is required at sign-up. Users under 18 cannot create an account.
  • If a minor is found using the service, their account is immediately deleted and their parent/guardian may be contacted.
  • Parents/guardians can remove the app from their child's device and restrict app store downloads.

12. International Data Transfer

Server Locations

Your data may be processed on servers located in the United States and South Korea. All servers apply the same encryption and security standards.

Data Protection

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for all data at rest
  • Same privacy protections apply regardless of server location

GDPR Compliance

For users in the European Union, we comply with GDPR requirements including: data processing agreements, clear legal basis for processing, and a designated Data Protection Officer.

13. Data Breach Response

Our Response Timeline

  • Within 48 hours — Identify and contain the breach
  • Within 72 hours — Notify affected users
  • Immediately — Begin resolution and remediation

How You'll Be Notified

  • Email notification to your registered address
  • In-app popup notification
  • Public announcement if the breach is significant

Reporting a Security Concern

If you suspect a security issue, report it via Settings > Support > "Security Incident Report" or email [email protected]. You can also report to:

  • Personal Information Protection Commission (Korea)
  • Cyber Police (112)

14. Contact Information

This Privacy Policy is effective as of February 16, 2026. Material changes will be communicated at least 30 days in advance via email and in-app notifications. You can review the change history in Settings > Privacy Policy.

Was this article helpful?

arrow_backTerms of ServiceTroubleshootingarrow_forward