Privacy Policy

Last Updated: April 4, 2026

Welcome to Bondiu. Bondiu (“Bondiu,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at www.bondiu.com, our mobile application, and any related services (collectively, the “Services”).

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please discontinue use of our Services.

This policy may be updated periodically. We will notify you of material changes by posting the new policy on this page and updating the “Last Updated” date above.

1. Information We Collect

1.1 Information You Provide Directly

When you create an account or use our Services, you may provide us with:

Account Information: Name, email address, phone number, and password.
Profile Information: Age, gender, life stage, profile photos (up to 3), short bio, interests and activities, preferred circle vibe (relaxed, balanced, or growth-oriented), and availability.
Location Information: City or neighborhood you provide during onboarding. We use this to surface relevant circles and hangouts near you. We do not collect precise GPS coordinates without your explicit consent.
Communications: Messages you send within circle chats, direct messages, and any content you submit via support forms or feedback channels.
User Content: Photos you upload to circles or open hangouts, RSVP responses, and votes cast in membership or connection flows.

1.2 Information Collected Automatically

When you use our Services, we automatically collect certain technical information, including:

Device and Usage Data: IP address, browser type and version, operating system, device identifiers, pages visited, features used, and time spent on the platform.
Log Data: Server logs including the date and time of your requests, error reports, and referral URLs.
Cookies and Similar Technologies: We use cookies and similar tracking technologies to maintain your session, remember preferences, and analyze usage. See Section 7 for more detail.

1.3 Information from Third Parties

If you choose to log in using Google (SSO), we receive your name and email address from Google in accordance with their privacy policy. We do not receive your Google password. We may also receive information about you from community partner organizations who refer users to Bondiu, limited to what you have authorized them to share.

2. How We Use Your Information

We use the information we collect for the following purposes:

To provide, operate, and improve the Services, including matching you with compatible circles and open hangouts.
To personalize your experience, including surfacing recommended circles based on your interests, life stage, location, and availability.
To facilitate communication between circle members via in-app chat, SMS notifications via Twilio, and push notifications.
To generate Hangout Reels and other content features you opt into sharing.
To enforce our Community Guidelines, investigate reports of misconduct, and protect the safety of our users.
To process payments and manage subscriptions if you upgrade to Bondiu Pro.
To send you service-related communications, including event reminders, circle activity updates, and account notices.
To send you marketing communications where you have opted in (you may opt out at any time).
To comply with applicable laws and legal obligations.
To conduct analytics and research to improve matching quality and platform experience.

3. How We Share Your Information

3.1 With Other Users

Your profile information (name, bio, photos, interests, life stage, and vibe) is visible to members of circles you belong to and to users matched with you in open hangouts. It is not displayed publicly to all Bondiu users or to non-users.

Hangout Reels and photos you choose to share outside the app are visible to whoever you share them with. Shareable hangout links expose the hangout’s title, location, and RSVP count to anyone with the link.

3.2 With Service Providers

We share information with trusted third-party vendors who help us operate our Services, including:

Supabase — database hosting and storage
Twilio — SMS delivery
Vercel — frontend hosting
Fly.io — backend hosting
Stripe — payment processing
Google — authentication (SSO) and analytics

These providers are contractually prohibited from using your information for any purpose other than providing services to Bondiu.

3.3 Business Transfers

If Bondiu is involved in a merger, acquisition, asset sale, or bankruptcy, your information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

3.4 Legal Compliance and Safety

We may disclose your information if we believe in good faith that doing so is necessary to: (a) comply with applicable law or respond to a valid legal process; (b) protect the rights, property, or safety of Bondiu, our users, or the public; or (c) detect, prevent, or address fraud, security, or technical issues.

3.5 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

3.6 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you. For example, we may publish statistics about platform-wide hangout attendance or user demographics.

4. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Services. If you delete your account, we will delete or anonymize your personal information within 30 days, except:

Information we are required to retain for legal, regulatory, or compliance purposes (e.g., transaction records for up to 7 years).
Aggregate or anonymized data derived from your information, which we may retain indefinitely.
Information that has been shared with other users (e.g., messages in a circle chat) may remain visible to those users even after your account is deleted.

SMS and notification logs are retained for up to 12 months. Usage and analytics logs are retained for up to 24 months.

5. Your Rights and Choices

5.1 Account Information

You may review and update your profile information at any time through the Settings section of the app. You may also delete your account from Settings. Upon deletion, we will process your request within 30 days.

5.2 Communications

You may opt out of marketing emails by clicking “Unsubscribe” in any marketing email. You may manage SMS notification preferences within the app or by replying STOP to any Bondiu SMS. Note that opting out of SMS may limit certain features that rely on SMS delivery (e.g., RSVP via text).

5.3 Cookies

You can control cookie settings through your browser. Note that disabling certain cookies may affect the functionality of our Services. See Section 7 for more detail.

5.4 State-Specific Rights

Depending on where you reside, you may have additional rights:

California (CCPA/CPRA): California residents have the right to know what personal information we collect, to delete it, to correct it, to opt out of any “sale” or “sharing” of personal information, and to non-discrimination for exercising these rights. We do not sell your personal information. To submit a request, contact us at [email protected].
Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), and other states: Residents of these states may have rights to access, correct, delete, and port their personal data, and to opt out of targeted advertising. Contact us at [email protected] to exercise these rights.

We will respond to verifiable requests within 45 days, with a possible extension of an additional 45 days when reasonably necessary.

6. Data Security

We implement reasonable technical and organizational measures to protect your personal information from unauthorized access, loss, misuse, or alteration. These measures include encrypted data transmission (TLS), restricted internal access, firewalled server environments, and regular security reviews.

However, no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security. If you believe your account has been compromised, please contact us immediately at [email protected].

You are responsible for maintaining the confidentiality of your account credentials and for any activities that occur under your account.

7. Cookies and Tracking Technologies

We use cookies and similar technologies (e.g., web beacons, local storage) to:

Keep you logged in and remember your preferences.
Analyze how users interact with our Services (e.g., Google Analytics).
Support security features like CSRF protection.

We do not use advertising cookies or sell your data to advertising networks.

Types of cookies we use:

Strictly Necessary: Required for the Services to function. Cannot be disabled.
Functional: Remember preferences like language and notification settings.
Analytics: Help us understand how the Services are used so we can improve them.

You may manage cookie preferences through your browser settings. Disabling strictly necessary cookies may prevent the Services from functioning properly.

8. Children’s Privacy

Bondiu is not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected personal information from a minor without parental consent, we will take steps to delete that information promptly.

If you believe a minor has provided us with personal information, please contact us at [email protected].

9. Third-Party Links and Services

Our Services may contain links to third-party websites or allow you to share content to platforms like Instagram, TikTok, and WhatsApp. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party platforms you use.

10. Safety and Moderation

Bondiu is committed to the safety of our community. We maintain a zero-tolerance policy for harassment, abuse, and exploitation.

User reports of misconduct are reviewed by Bondiu’s trust and safety team. Users may be removed from circles or banned from the platform for repeated violations. We cooperate fully with law enforcement investigations where required by law.

Bondiu complies with applicable child safety laws. Any content involving or encouraging child sexual abuse or exploitation is strictly prohibited and will result in immediate account removal and reporting to the National Center for Missing and Exploited Children (NCMEC) or applicable authorities.

In-Person Safety: This Privacy Policy governs how we handle your data, but it does not address the full scope of risks associated with meeting other Bondiu users in person. For a complete description of in-person meetup risks and your assumption of those risks, please review Section 6 of our Terms of Service at www.bondiu.com/terms.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or an in-app notification at least 14 days before the changes take effect. Your continued use of the Services after the effective date of the revised policy constitutes your acceptance of the changes.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Bondiu, Inc.

Email: [email protected]

Website: https://bondiu.com

For California residents, you may also contact our Privacy Team at the address above to exercise your CCPA/CPRA rights.