This Privacy Policy explains how Golfmatch ("we," "us," "the app") collects, uses, and shares information when you use our dating app for golfers and the dating.golfmatch.info website (together, the "Service"). We respect your privacy and try to collect only what we need to run the service.
1. Who we are
Golfmatch is operated by the Golfmatch Operations Office, based in Japan. For questions about this policy or how your information is handled, contact us at support@golfmatch.info.
2. Eligibility (18+ only)
Golfmatch is intended for adults aged 18 or older. We do not knowingly collect information from anyone under 18. If you believe a minor has created an account, please email us and we will remove it.
3. What we collect
Information you provide directly
- Account info: name or display name, email address, phone number (if you sign in via SMS), date of birth, gender, prefecture or state, profile photos.
- Profile content: bio, golf skill level, handicap, average score, preferences, posts (text, images, videos).
- Chat messages with other matched users.
- Customer support messages — emails, in-app inquiries, and any photos or attachments you send to support. Treated as User Content and linked to your account.
- Identity verification data: a government-issued ID and a selfie photo, processed by our identity verification partner (see Section 7).
Information collected automatically
- Precise location (rounded to ~100-meter grid for privacy) — used only to calculate distance between you and potential matches, never your exact address.
- App usage data: screens you view, features you use, message-send counts, sign-up and login events.
- Device data: device model, OS version, app version, language, time zone.
- Device identifier (IDFA on iOS / AAID on Android) — only if you grant App Tracking Transparency permission. Used for advertising attribution.
- Diagnostics: crash logs and app performance metrics.
Information collected from third parties
- If you sign in with Google or Apple, we receive your name and email from them.
- From our identity verification partner Didit, we receive a yes/no verdict on whether your identity was verified, plus your verified name, date of birth, and gender (extracted from your ID).
- From RevenueCat and Apple, we receive your subscription status.
4. How we use your information
| Purpose | What we use |
|---|---|
| Provide the app (matching, messaging, swiping) | Profile data, location, photos, messages, user ID |
| Verify your identity (KYC — for safety and legal compliance) | Government ID, selfie, name, date of birth (processed by Didit) |
| Manage your subscription | Purchase history, user ID (via RevenueCat + Apple IAP) |
| Measure advertising effectiveness | Device ID (IDFA), purchase events, product interaction events (sent to Meta) |
| Analytics (understand which features users like) | Anonymous product interaction events (Firebase) |
| Fix bugs and improve performance | Anonymous crash data (Sentry), performance metrics (Firebase) |
| Customer support | Inquiry messages and attachments (User Content), email, name |
| Prevent fraud, abuse, and underage use | KYC verification, account-level signals, 24/7 moderation |
5. Who we share data with
We use the following service providers ("sub-processors") to run Golfmatch. They process your data only on our behalf and under contract.
| Sub-processor | What they receive | Purpose |
|---|---|---|
| Supabase | Account data, profiles, chat messages, photos, customer support inquiries | Backend hosting, database, storage, authentication |
| Didit | Government ID image, selfie, name, date of birth, gender | Identity verification (KYC). Biometric processing happens on Didit's servers; we receive only the verdict and extracted fields. See Didit's privacy policy. |
| RevenueCat | User ID, subscription events | Subscription management |
| Apple | Payment info, App Store account | In-app purchases (we never see your credit card) |
| Meta (Facebook) | Device ID (IDFA, if ATT granted), purchase events, product interaction events | Advertising attribution and custom audiences. Used only with your ATT consent. |
| Firebase / Google Analytics | Anonymous usage events, performance metrics | Product analytics, performance monitoring |
| Sentry | Anonymous crash reports | Bug fixing |
| Google / Apple sign-in providers | Email, name (one-time, at sign-in) | Authentication |
We do not sell your personal data. We do not share your chat messages, photos, or identity verification data with advertising networks. We may also disclose information when required by law, court order, or to protect the rights and safety of our users.
6. App Tracking Transparency
When you first launch Golfmatch on iOS, we ask for permission to use your Device Identifier (IDFA) for advertising purposes. You can:
- Allow — your IDFA is shared with Meta to attribute your installation to Golfmatch ads you may have seen, and to measure the effectiveness of those ads.
- Don't Allow — your IDFA is not shared. The app continues to work normally; only advertising measurement is affected.
You can change this preference any time in iOS Settings → Privacy & Security → Tracking → Golfmatch.
7. Identity verification (KYC)
To create a verified profile, you will be asked to upload a government-issued ID and take a selfie. This is processed by our partner Didit, who uses facial recognition to confirm that the selfie matches the ID. This protects all Golfmatch users from impersonation and underage accounts, and is part of how we keep the community real.
Biometric data (facial recognition templates and liveness movement data) is processed by Didit on their servers. Golfmatch does not receive or store these biometric templates — we receive only the verification verdict (approved or rejected) and the extracted name, date of birth, and gender from your ID.
Where required by law (for example, under GDPR Article 9(2)(a) for special categories of data), we rely on your explicit consent to process biometric data for verification.
For details on how Didit processes biometric data, including retention periods, see Didit's Privacy Policy.
8. Location
If you grant location permission, we receive your latitude and longitude, which we round to approximately 100-meter precision before storing. This rounded coordinate is used to:
- Calculate distance to potential matches ("23 mi away")
- Filter search results by radius ("within 50 miles")
We never reveal your exact address or coordinates to other users. Distances under 5 miles are displayed as "under 5 mi" to prevent triangulation.
You can disable location in iOS Settings → Privacy & Security → Location Services → Golfmatch.
9. Data retention
- Account data — retained while your account is active. Deleted within 30 days of account deletion (some data may be kept longer to comply with legal obligations or to prevent banned users from re-registering).
- Identity verification data at Didit — retained per Didit's privacy policy.
- Subscription receipts — retained for accounting and tax purposes (typically 7 years, varies by jurisdiction).
- Diagnostic data — retained for up to 90 days, then automatically deleted.
- Reports and abuse records — may be retained beyond account deletion as needed to enforce safety rules across the Service.
10. Your rights
Depending on where you live (GDPR/EU, UK, CCPA/California, and similar laws), you may have the right to:
- Access the data we hold about you
- Correct inaccurate data
- Delete your data (within the app: My Page → Settings → Delete Account)
- Export a machine-readable copy of your data (contact us)
- Object to or restrict certain processing
- Withdraw ATT consent (iOS Settings, as described in Section 6)
- Lodge a complaint with your local data protection authority (EEA, UK, Swiss residents)
California residents specifically: we do not sell your personal information and we do not share it for cross-context behavioral advertising, so no opt-out is necessary. We will not deny service or charge a different price because you exercised a privacy right.
To exercise any of these rights, email support@golfmatch.info. We respond within 30 days. We may need to verify your identity before fulfilling a request.
11. Account deletion
You can delete your account at any time inside the app: My Page → Settings → Delete Account. Deletion is final and removes your profile, photos, messages, and matches within 30 days. Some information may remain in backups for a limited period until backup rotation completes.
12. International data transfers
Golfmatch is operated globally. Your data may be processed in Japan, the United States, the European Union, or other countries where our sub-processors operate. These countries may have data protection laws that differ from the laws of your country. We use industry-standard safeguards (Standard Contractual Clauses where applicable) for cross-border transfers.
13. Children's privacy
Golfmatch is for users 18 years old and above. We do not knowingly collect information from anyone under 18. If we learn that we have collected data from a minor, we delete it immediately. If you believe a minor has created an account, contact support@golfmatch.info.
14. Changes to this policy
We may update this policy from time to time. We will notify you in the app and update the "Last updated" date at the top. Continued use of the app after a change means you accept the updated policy.
15. Contact
For any questions, requests, or concerns about this Privacy Policy or how we handle your information:
Golfmatch Operations OfficeEmail: support@golfmatch.info