Privacy Policy

Last updated: May 11, 2026

At Gumme, your privacy isn't a checkbox — it's the whole point. We built this app to help you find your people, and that only works if you can trust us with your information. This policy explains, in plain English, what we collect, why we collect it, and what we'll never do with it.

The short version

  • We collect only what we need to match you with activities and people nearby.
  • We never sell your data. Ever.
  • We don't share your data with advertisers or third-party marketers.
  • You can delete your account and your data at any time.

Information we collect

When you use Gumme, we collect the following:

  • Account info: name, email, password (hashed), date of birth, and (optionally) a profile photo.
  • Location: approximate location to suggest activities near you. Precise location is only used when you actively pick a spot for an event you're creating.
  • Activity & preference data: the interest tags you select, events you RSVP to, events you host, your personality archetype quiz results, and your notification preferences.
  • Social data: friend connections, group chat messages, friend requests, and blocks.
  • Identity verification (optional): if you opt into verification, we work with Persona to verify your identity. We receive a pass/fail signal — we don't store your government ID.
  • Device & usage data: basic technical info like device type, OS version, app version, and crash logs to help us fix bugs.

How we use it

  • To show you events and people near you.
  • To send push notifications when there's a match or a chat message you should know about.
  • To operate features like group chat, RSVPs, and friend requests.
  • To keep the platform safe — detect spam, abuse, and bad actors.
  • To fix bugs and improve the product.

What we share, and with whom

We share information only in three narrow situations:

  • With other Gumme users: your profile (name, photo, age range, interests) is visible to people you connect with — that's the whole point of the app.
  • With service providers we depend on: Supabase (database & auth), Apple (push notifications), Persona (ID verification, optional). These providers are bound by contracts that limit how they can use your data.
  • When legally required: if we get a valid legal request (subpoena, warrant), we'll comply — but we'll push back on overreach and notify you when permitted.

We do not sell your data. We do not share it with advertisers or data brokers.

Your choices

  • Access & download: email us to get a copy of your data.
  • Correct or update: edit your profile, interests, location, and notification preferences from the app at any time.
  • Delete: you can delete your account from Profile → Manage Account. We'll delete your personal data within 30 days, except where we're legally required to retain something (e.g. anti-abuse records).
  • Permissions: location, camera, photos, and notifications are controlled by iOS — toggle them in iOS Settings any time.

Age requirement

Gumme is for adults 18 and older. We don't knowingly collect information from anyone under 18. If we learn we've received data from a minor, we'll delete it.

Security

We use industry-standard practices to protect your data — encryption in transit and at rest, hashed passwords, server-side access controls. No system is bulletproof, but we take this seriously.

Changes to this policy

If we make material changes, we'll update the date at the top of this page and let you know in the app before the changes take effect.

Contact us

Questions, requests, or concerns? Email hello@gumme.io.