Privacy Policy

Last updated: April 19, 2026

UpDate ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your information when you use the UpDate app ("the App") or the UpDate website.

Information We Collect

We collect the following types of information:

• Account information: Your email address when you create an account. Your password is hashed and stored by our authentication provider; we never see it in plaintext.
• Profile data: Information you enter into the App, including your self-profile ratings, your standards (priorities, preferences, dealbreakers), and information about the people you rate (names, ratings across factors, relationship type and duration you specify, and optional notes).
• Payment records: If you purchase the App on our website via Stripe, we store a record that you purchased (linked to your user ID). We do not store or process your card details — Stripe handles payment processing. If you purchase on iOS via the App Store, Apple handles payment entirely and we receive only purchase confirmation.
• Technical data: Standard web server data (IP address, device type, timestamps, app version) collected automatically by our infrastructure providers for security and operational purposes.

How We Use Your Information

We use your information to:

• Provide and operate the App's features, including AI-powered analysis and strategy generation
• Store your data so it persists across sessions and devices
• Process payments and verify purchases
• Respond to support requests
• Maintain security and prevent abuse
• Improve the App over time

AI Processing

UpDate uses Anthropic's Claude AI to generate personalized dating strategies, pattern analyses, and profile content. When you use these features, relevant portions of your profile and ratings data are sent to Anthropic's API for processing. This includes the first names you enter for people you rate (used in the generated output) and the rating data itself, but not your account email or any government identifiers.

Anthropic retains API inputs and outputs for up to 7 days for abuse prevention purposes, after which they are automatically deleted. Anthropic does not use your data to train its AI models. For complete details, see Anthropic's privacy policy.

Data Storage and Retention

Your data is stored using Supabase, a cloud database provider, with encryption in transit and at rest.

We retain your data:

• While your account is active: as long as you use the App
• After account deletion: within 24 hours of deletion, your data is removed from active databases. Residual copies may persist in encrypted system backups for up to 30 days, after which they are permanently purged.
• Payment records: retained as required by applicable tax and financial regulations (typically 7 years in the US)

Deleting Your Account

You can delete your account and all associated data at any time from within the App: tap the menu icon on the home screen, select "Delete Account," and follow the confirmation steps. Deletion is permanent and cannot be undone.

You may also request deletion by emailing support@outsmartyourheart.com. We will process such requests within 30 days.

We Do Not Sell Your Data

We do not sell, rent, or share your personal information with third parties for advertising or marketing purposes. We do not use your data to train AI models or any other machine learning system.

Third-Party Services

The App and website use the following third-party services, each under their own privacy policy:

• Supabase — secure database storage and user authentication
• Anthropic — AI processing for strategy, analysis, and profile features
• Apple — payment processing and app distribution on iOS
• Stripe — payment processing on the web
• Cloudflare — infrastructure and API request routing

Your Rights

Regardless of where you live, you have the right to:

• Access the data we hold about you
• Correct inaccurate data by editing it in the App or contacting us
• Delete your account and all associated data (see "Deleting Your Account" above)
• Export a copy of your data in machine-readable format — email us to request this
• Withdraw consent at any time by deleting your account

California Residents (CCPA / CPRA)

California residents have the following rights under the California Consumer Privacy Act and California Privacy Rights Act:

• Right to know: what personal information we collect, use, and disclose
• Right to delete: personal information we hold about you
• Right to correct: inaccurate personal information
• Right to opt out: of the sale or sharing of personal information

We do not sell or share personal information as those terms are defined under CCPA/CPRA. To exercise any of these rights, contact us at support@outsmartyourheart.com. We will not discriminate against you for exercising your rights.

European Economic Area, United Kingdom, and Switzerland (GDPR)

If you are located in the EEA, UK, or Switzerland, the General Data Protection Regulation (and equivalent UK/Swiss laws) applies to our processing of your personal data.

• Legal basis for processing: we process your data on the basis of your consent (which you give by creating an account and using the App), the necessity of providing our services to you, and our legitimate interest in maintaining security and improving the App.
• Data controller: UpDate (contact: support@outsmartyourheart.com) is the data controller for data you enter into the App.
• Your rights: in addition to the rights listed above, you have the right to object to processing, restrict processing, and data portability.
• Right to complain: you have the right to lodge a complaint with your local data protection supervisory authority.
• International transfers: your data may be processed in the United States by our service providers. We rely on Standard Contractual Clauses and equivalent safeguards for international data transfers.

In the event of a personal data breach affecting EEA users, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR.

Children's Privacy

UpDate is intended for users aged 18 and older. We do not knowingly collect information from anyone under 18. If we become aware that a minor has provided us with personal information, we will delete it without undue delay and in compliance with applicable law. Parents or guardians who believe their child has provided us with personal information should contact us at support@outsmartyourheart.com.

Security

We use industry-standard security measures to protect your data, including encryption in transit (HTTPS/TLS) and at rest, hashed passwords, and access controls on our database. No system is perfectly secure, and we cannot guarantee absolute security. In the event of a data breach affecting your information, we will notify you promptly and in accordance with applicable law.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the date at the top of this page and, for material changes, by in-app notification or email. Continued use of the App after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or how we handle your data, contact us at support@outsmartyourheart.com.