Privacy Policy
Last updated: March 2025
The short version: Dipity never sells your data, never shows ads, and you control exactly what each friend can see. Your location is used only to detect what city you're in — never your street address — and only so your friends can know you're nearby.
1. Who we are
Dipity ("we," "our," or "us") is a social discovery app for iOS. Our website is getdipity.app. You can contact us at privacy@getdipity.app.
2. What data we collect
We collect only what's necessary to make Dipity work:
- Account data: Your name, phone number, and profile photo — used to identify you to friends.
- Home city: The city you set as your home base. Never your precise street address or GPS coordinates.
- Current city (optional): Dipity uses your device location only to detect what city you're in — for example, "San Francisco" or "London." This lets your friends know you're nearby without revealing where you are within that city. No GPS coordinates are stored on our servers. You can disable this at any time.
- Precise location (optional): If you opt in to share your precise location with a specific friend (e.g. to meet up), that data is used in the moment and never stored on our servers.
- Travel plans: Dates and cities for future trips you choose to add.
- Contacts: To find which of your contacts are already on Dipity, your contacts' phone numbers are converted to irreversible one-way hashes (SHA-256) on your device and compared against our server. No contact names, emails, addresses, or any other contact fields are ever sent to or stored on our servers. Only the hash is transmitted, and only to check for a match.
- Push notification tokens: To deliver travel overlap alerts.
3. How we use your data
- To let your friends know when you're in the same city — for example, to suggest a meetup
- To send you notifications about travel overlaps with friends
- To maintain your account and friend connections
- To improve app reliability and performance (crash reporting only)
We never use your data for advertising, and we never sell or share your data with third parties for their commercial purposes.
4. Your privacy controls
Dipity gives you granular control over what each friend can see:
- Toggle home city, current city, precise location, travel plans, and travelogue independently per friend
- Mute notifications from specific friends
- Lock contacts behind a passcode so they don't appear in any views
- Remove a friend or contact at any time
5. Data storage and security
Your data is stored in Google Firebase (Firestore and Firebase Storage), hosted in the United States. We use Firebase Authentication for secure sign-in. Data in transit is encrypted via HTTPS/TLS.
6. Data retention and deletion
You can delete your account at any time from within the Dipity app (Account → Delete Account). When you delete your account, all your personal data is permanently removed from our servers within 30 days. Individual contacts and friends can be removed at any time without deleting your account.
7. Children's privacy
Dipity is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13.
8. Third-party services
We use the following third-party services, each with their own privacy policies:
- Google Firebase — database, authentication, storage, push notifications
- Apple Push Notification Service (APNs) — push notifications on iOS
9. Changes to this policy
We may update this policy from time to time. We'll notify you of significant changes via the app. Continued use of Dipity after changes constitutes acceptance of the updated policy.
10. Contact us
Questions about this policy? Email us at privacy@getdipity.app.