Skip to main content
Date Beyond Borders

Privacy Policy

Last updated: 11 January 2025

Data Controller

DateBeyondBorders is operated by Mr Harjinder Singh ("we", "us", "our").

Registered address: Available upon request for data protection inquiries. Please contact us at info@datebeyondborders.com if you require our registered address for a formal data subject request.

ICO registration: Registered with the Information Commissioner's Office (ICO). Registration number: ZC038711. Registered: 10 November 2025. View registration

Privacy contact: info@datebeyondborders.com
General contact: info@datebeyondborders.com

You can verify UK data protection registrations at the ICO public register: https://ico.org.uk/ESDWebPages/Search

Information We Collect

We only collect what we need to run the service:

Information you provide

  • Email address
  • Password (stored hashed)
  • Date of birth (18+ verification)
  • Gender and gender preference
  • Education level
  • City & country
  • Anonymous alias
  • Profile photo (stored privately; visible only after mutual reveal)
  • Optional: religion (special category data — processed only with your explicit consent)
  • Optional: occupation, "wants kids" preference
  • Optional (post-reveal): phone/email/social handles — shared only on mutual consent
  • Messages you send in the app
  • Payment metadata (via Stripe). We do not store card numbers.

Information collected automatically

  • Device and browser
  • IP address and coarse location
  • Usage logs and security events

Religion (Special Category Data)

Optional and consent-based. If you choose to add your religion, you give us explicit consent to process it for matching and visibility features. You can withdraw consent any time in Settings → Privacy; we will stop using it and remove it.

How We Use Your Information

  • Create and manage your account
  • Match you with other users and run anonymous chat
  • Operate the 5-day reveal and contact-exchange flow
  • Process payments and manage subscriptions
  • Keep the platform safe (detecting policy violations)
  • Send essential emails (verification, receipts, safety notices)
  • Improve performance and reliability

We do not sell your personal data.

Our Legal Bases (UK GDPR)

  • Contract: to provide the service you sign up for.
  • Consent: for religion and any optional contact details shared post-reveal; for marketing if you opt in.
  • Legitimate interests: safety, fraud/abuse prevention, service improvement.
  • Legal obligation: tax/financial record-keeping.
  • Vital interests: very rarely, to act on serious safety reports.

Data Sharing

We do not sell your personal data. We only share your data in the following limited circumstances:

  • With your matches: After the 5-day reveal period, your profile information (name, age, city, photos) is automatically shared with your match. Contact information is only shared if both parties consent.
  • With service providers: We use third-party services to operate the platform (see Sub-processors below). These providers only receive the minimum data necessary to perform their functions.
  • Legal requirements: We may disclose data if required by law, court order, or to protect our rights, property, or safety, or that of our users.
  • Safety reports: If you report a user for safety violations, we may share relevant information with law enforcement or safety organizations.

We do not share your data with advertisers, data brokers, or third parties for marketing purposes.

Sub-processors & International Transfers

We use trusted providers to run DateBeyondBorders. Each only receives the minimum data needed to perform their role.

  • Supabase (database, auth, storage; EU/UK region where configured). Stores user accounts, profiles, messages, and photos (private bucket).
  • Railway (hosting/CDN; global). Serves the web app and APIs.
  • Stripe (payments; EU/US). Processes subscriptions; we don't see your full card data.
  • Resend (transactional email; EU/US). Sends verification, reminders, and receipts.
  • Sentry (error monitoring; optional; EU/US). Application error logs without message contents.
  • Plausible (privacy-friendly analytics; optional; EU). Aggregate usage with no cookies by default.

Where data moves outside the UK/EEA, we use approved safeguards such as the UK International Data Transfer Agreement (IDTA) and/or EU Standard Contractual Clauses (SCCs), plus supplementary measures where appropriate.

You can request a list of our current sub-processors by contacting us at info@datebeyondborders.com.

How Long We Keep Your Data

  • Account data & messages: until you delete your account or 24 months of inactivity.
  • Payment records: up to 6 years (legal/tax).
  • Abuse reports & safety logs: 24 months.
  • System logs: up to 12 months.

Your Rights

You can request to:

  • Access a copy of your data
  • Correct inaccurate data
  • Delete your account and data
  • Restrict or object to certain processing
  • Port data you provided
  • Withdraw consent at any time (e.g., religion)

To exercise your rights, email info@datebeyondborders.com. We aim to respond within one month.

You can also complain to the UK Information Commissioner's Office (ICO): https://ico.org.uk/make-a-complaint/.

Security

We use encryption in transit, hashed passwords, private storage buckets, role-based access, and Row Level Security in our database. No method is perfect, but we actively monitor and improve our safeguards.

Cookies

We use essential cookies only for authentication and security purposes. These cookies are necessary for the website to function properly and cannot be disabled.

Types of cookies we use:

  • Authentication cookies: To keep you logged in and maintain your session
  • Security cookies: To protect against fraud and unauthorized access
  • Preference cookies: To remember your cookie consent preference

We do not use third-party tracking cookies, advertising cookies, or analytics cookies that track your behaviour across websites. We respect your privacy and do not sell your data to advertisers.

You can manage cookies through your browser settings, but disabling essential cookies may prevent the website from functioning properly.

Automated Decision-Making

We use automated systems to:

  • Match you with compatible users based on your preferences (location, age, gender, etc.)
  • Manage the match request queue and prioritize matches
  • Detect potential safety violations or policy breaches
  • Calculate daily limits and reset times

These automated processes do not produce legal or similarly significant effects about you. You have the right to request human review of any automated decision that affects you. If you believe an automated decision is incorrect, please contact us at info@datebeyondborders.com.

Children

Our service is for adults only (18+). We delete accounts believed to be under 18.

Changes to This Policy

We'll post updates here and adjust the "Last updated" date. Material changes may also be emailed to you.

Contact

Questions or requests? Email info@datebeyondborders.com. If you require our registered address for a rights request, we will provide it directly.