Privacy Policy

1. Who we are

The simplematch Service is operated by [Company Name] Ltd, Company ID [Company ID].

Registered address: [Address]

Contact email for privacy matters: info@simple-web.co.il

2. Data we collect

2.1. Event organizers (account holders):

• ●Couple / organizer name
• ●Email address
• ●Password (stored as a bcrypt hash — we never see your password)
• ●Google OAuth details (when you choose to sign in with Google)
• ●Event date and preferred language
• ●Event hero photo (optional)

2.2. Event guests

• ●Name
• ●Date of birth / age
• ●Gender
• ●Search preferences (age + gender of people you want to meet)
• ●Profile photo
• ●Chat messages (both global and private)
• ●Like / match / block actions
• ●Numeric PIN for re-entry

2.3. Usage data (technical)

• ●IP address
• ●Browser type and operating system
• ●Login and logout times
• ●In-app actions (for logging and abuse prevention)

3. Why we collect data

We collect data solely for the following purposes:

• ●To operate the Service — present profiles, chat, matches, gallery.
• ●For identity verification and account login.
• ●To prevent abuse, spam, and duplicates.
• ●To communicate with you — registration confirmations, password resets, essential service notifications.
• ●To improve the Service — aggregate statistics without personal identification.
• ●To comply with legal obligations (when required by law).

4. Who we share data with

We use infrastructure services from leading providers. Vendors that process data on our behalf:

• ●Supabase Inc. — database and file storage. Data stored in the EU region (Frankfurt, Germany).
• ●Vercel Inc. — application hosting and serverless functions.
• ●Google LLC — OAuth service for "Continue with Google" sign-in (only when the user chooses).

4.1. Our privacy principle

We do not sell personal data to third parties. We do not share data with advertisers. We do not use user data to train commercial AI models. Your data is used solely to operate the Service you signed up for.

5. Storage, security and retention

5.1. Data is stored on EU servers (Frankfurt).

5.2. Passwords are bcrypt-hashed — one-way irreversible.

5.3. All traffic is encrypted via HTTPS / TLS 1.3.

5.4. Data access is limited to Company personnel who require it.

5.5. Retention: organizer accounts are kept as long as the account is active. Event data is kept [Retention Period — default: up to 30 days] after the event ends, then automatically deleted. Earlier deletion may be requested at any time.

6. Cookies

We use only essential cookies:

• ●Session cookie — required to operate the Service; without it you cannot stay logged in.
• ●Preferred language cookie — saves your language choice (he / en).

6.1. What we don't do

• ●We do not use third-party advertising cookies (Google Ads, Facebook Pixel, etc.).
• ●We do not perform cross-site tracking.
• ●We do not share usage data with ad networks.

7. Your rights

Under the Israeli Privacy Law + GDPR, your rights include:

• ●Right of access — to request the data we hold about you.
• ●Right to rectification — to correct inaccurate data.
• ●Right to erasure ("right to be forgotten") — to request deletion of account + data.
• ●Right to portability — to receive your data in a structured format (JSON / CSV).
• ●Right to object — to object to specific processing.
• ●Right to withdraw consent — at any time.

7.1. How to exercise your rights

Send an email to info@simple-web.co.il with the details of your request. We will respond within 30 days (usually faster).

8. Minors, changes and contact

8.1. The Service is for users aged 18+. If we discover a minor has registered without parental permission, we will delete the account.

8.2. Material policy changes will be announced on the website and via email 30 days before taking effect.

8.3. For privacy questions, contact info@simple-web.co.il.

8.4. If you are an EU resident and not satisfied with our response, you have the right to file a complaint with your local supervisory authority. Israeli residents may contact the Registrar of Databases.