Privacy
Policy

This Policy applies to information we collect when you apply for access, create an account, complete onboarding, attend events, or otherwise interact with Serendipity.

Our relationship with restaurants is limited to booking reservations on your behalf. Restaurants are independent businesses with their own privacy practices, which we do not control.

This Policy should be read together with our Terms of Service, Community Guidelines, and Acceptable Use Policy.

Account Data. Name, email address, phone number, date of birth (for age verification), city, and profile photo.

Onboarding Questionnaire Responses. Your answers to our 22-question onboarding, including the “Famous Table” selection, music and film lists, behavioral slider inputs, intention-tier responses, and identity-tier responses (which may include demographic information such as gender, age range, and industry).

Membership & Purchase Data. Membership to Serendipity is sold as a monthly subscription through Apple In-App Purchase. All payments are processed by Apple under the App Store’s terms; Apple shares with us only the limited purchase metadata required to provision your membership (such as the anonymized transaction identifier, product identifier, and subscription status). We do not collect, receive, or store your billing name, billing address, card number, or any other payment instrument details. Refunds, cancellations, and billing disputes are handled by Apple through your App Store account.

Phone Number & SMS Metadata. Processed via Twilio for one-time passcodes, event reminders, and day-of venue reveal messages. See our SMS Consent Disclosure.

Device & Usage Data. IP address, device type, operating system, app version, crash logs, session timestamps, and in-app interaction events. Collected via our backend (Supabase) and standard mobile telemetry.

Location at Event Time. On the day of a confirmed event, we may process approximate location to coordinate logistics (for example, to confirm arrival or troubleshoot last-mile issues). We do not passively track your location outside event windows.

Constellation Notes. Private notes you write about guests you have met at Serendipity events. These notes are visible only to you and to limited Serendipity personnel for safety review and matching-algorithm inputs. They are not shared with the subject of the note. See our Acceptable Use Policy.

Communications with Us. Emails, in-app messages, incident reports, and support tickets, including any attachments you provide.

Information from Referrers. If you were invited by an existing user, we may record the fact of the referral.

Matching. Onboarding responses and Constellation notes are processed algorithmically to generate table assignments across six archetypes scored on five hidden social dimensions (Energy, Depth, Chaos, Warmth, Edge).

Event Operations. Booking reservations, confirming headcounts, sending reminders, revealing venues, and coordinating day-of logistics.

Safety. Investigating incident reports, enforcing our Community Guidelines and Acceptable Use Policy, and protecting guests.

Membership. Provisioning and maintaining your monthly Serendipity membership purchased through Apple In-App Purchase. Payment, renewal, refund, and cancellation processing is performed by Apple under the App Store’s terms.

Service Improvement. Debugging, analytics, and product development. Where possible, we use aggregated or de-identified data for these purposes.

Marketing to Existing Users. Event announcements and product updates. You can opt out at any time without affecting transactional communications.

Legal & Compliance. Responding to lawful requests, enforcing our agreements, and defending our rights.

Contract. Processing necessary to provide the Service you signed up for.

Legitimate Interests. Safety, fraud prevention, product improvement, and internal analytics, balanced against your rights.

Consent. Marketing SMS and any processing of sensitive categories of data. You may withdraw consent at any time.

Legal Obligation. Compliance with applicable law, including tax and accounting requirements.

Restaurants and Venues. We share only the reservation name and headcount with venues. Venues do not receive your questionnaire responses, Constellation notes, or contact information from us.

Other Guests. Other guests at your table see only the information you present in person and any profile elements you choose to display. We do not disclose your phone number, email, questionnaire responses, or Constellation notes to other guests.

Law Enforcement & Legal Process. We may disclose information in response to lawful subpoenas, court orders, or where we believe in good faith that disclosure is necessary to prevent imminent harm.

Business Transfers. In the event of a merger, acquisition, financing, or sale of assets, user information may transfer as part of the transaction. We will notify you of any change in ownership or use of your personal information.

With Your Consent. Any other sharing will be done only with your explicit permission.

No Sale of Personal Information. We do not sell your personal information. See Section 10 for California-specific disclosures.

Your questionnaire responses are processed algorithmically to generate compatibility scores and table assignments. The algorithm scores five hidden social dimensions and maps guests to six table archetypes.

Human operators review and can override algorithmic suggestions before events are finalized.

You may request human review of a table assignment or removal from algorithmic processing by writing to hello@serendipity.day. Opting out of automated matching may limit your ability to use the Service.

The algorithm does not make decisions with legal or similarly significant effects on you within the meaning of GDPR Article 22.

Active Account. We retain account data for as long as your account is active.

Post-Deletion. After account deletion, we delete or de-identify personal information within 90 days, except as noted below.

Legal & Safety Holds. We retain incident records, safety-related logs, and records subject to legal hold for seven (7) years, or longer where required by law.

Financial Records. Retained for seven (7) years to comply with tax and accounting obligations.

Aggregated & De-identified Data. May be retained indefinitely for analytics and product development.

Constellation Notes. Deleted with your account, except where flagged as part of an open safety investigation.

To exercise any of these rights, email hello@serendipity.day from the email address on your account. We will verify your identity before acting on the request.

We will respond within the timeframes required by applicable law — typically 30 to 45 days.

You have the right to lodge a complaint with your local data protection authority.

Transactional SMS. By providing your phone number and logging in with it, you consent to receive one-time passcodes, booking confirmations, event reminders, day-of venue reveals, and reservation changes via SMS. These are required to use the Service.

Marketing SMS. Separate opt-in is required. You can opt out at any time by replying STOP.

Push Notifications. You can disable push notifications in your device settings without affecting other Service functionality.

See our SMS Consent Disclosure for full terms.

Categories of Personal Information Collected in the Past 12 Months: identifiers (name, email, phone, IP address); commercial information (Apple In-App Purchase transaction identifiers, subscription status, and event history; we do not collect or store payment card or billing information, which is handled solely by Apple); protected classification characteristics (age, and optionally gender, from onboarding); internet/network activity (usage data); geolocation (approximate, at event time); inferences drawn from questionnaire responses (matching dimensions); and sensitive personal information (precise geolocation on event days; account credentials).

Sources. Directly from you; automatically from your device; from referring users; from our service providers.

Business Purposes. As described in Section 3.

Sales and Sharing. We do not sell personal information and we do not share personal information for cross-context behavioral advertising.

Sensitive Personal Information. We use sensitive personal information only to provide the Service as reasonably expected and not for inferring characteristics about you for advertising.

Your Rights. Right to know; right to delete; right to correct; right to limit use of sensitive personal information; right to opt out of sale or sharing (inapplicable, as we do neither); and right to non-discrimination for exercising any of these rights.

How to Exercise. Email hello@serendipity.day. You may designate an authorized agent to make requests on your behalf.

Our mobile app uses local storage (AsyncStorage) to persist session data.

Our website and admin panel may use essential cookies for authentication and analytics cookies for aggregated usage measurement.

We do not use cookies or SDKs for cross-site advertising.

Do Not Track: because there is no industry consensus on how to interpret Do Not Track signals, we do not currently respond to them. We honor opt-out preferences communicated through supported methods described in this Policy.

The Service is not intended for, marketed to, or available to anyone under 18. We do not knowingly collect personal information from minors.

If we learn that we have collected personal information from a person under 18, we will delete it promptly. Contact hello@serendipity.day to report such cases.

The Service is currently offered only to users in the United States. Our infrastructure (Supabase, Twilio, Vercel) operates primarily in the U.S. Apple processes In-App Purchase transactions in accordance with its own privacy practices and App Store terms.

If you access the Service from outside the U.S., you understand that your information will be processed in the U.S.

International expansion will trigger additional disclosures and, where applicable, Standard Contractual Clauses or equivalent transfer mechanisms.

Encryption in transit (TLS) and at rest for sensitive data.

Access controls: least-privilege credentials, role-based access in the admin panel, and audit logging.

Contractor and employee access governed by confidentiality and data-security obligations.

Incident response procedures described in our internal Incident & Safety Response Protocol.

No system is perfectly secure. In the event of a material data breach, we will notify affected users and, where applicable, regulators within the timeframes required by law.

We may update this Policy. Material changes will be announced via in-app notice or email at least 14 days before they take effect.

Continued use of the Service after the effective date constitutes acceptance.