InnerBond Logo
InnerBond
All FeaturesCouple PageCouple QuestionsRelationship GamesMood TrackerMemories & MilestonesStreaks & Celebrations
Long-Distance CouplesDating CouplesMarried Couples
Blog
FAQ
Explore FeaturesDownload the App
Data Protection

Privacy Policy

Last Updated: May 29, 2026Version: 2026-05-29

Introduction

InnerBond (“we”, “us”, “the App”) is a private space for couples. We respect your privacy and try to collect the minimum data needed to make the product warm, accurate, and safe. This Policy explains what we collect, why, who can see it, and the controls you have.

By creating an account you confirm that you have read and agree to this Policy and to our Terms of Service. If you do not agree, please do not create an account or use the App. If we materially change this Policy, we will ask you to re-accept it in the App before you can continue.

1. What We Collect

1.1 Account & profile

  • Email and/or phone number (used for sign-in)
  • Display name, preferred name, optional profile photo
  • Birthday month/day (optional year)
  • Gender, bio (optional)
  • Relationship status, relationship start date, partner link
  • Username (for Discover, if enabled)

1.2 Bond & couple activity

  • Chat messages between you and your partner
  • Memories, milestones, stories you save
  • Mood check-ins and mood history
  • Gratitude responses, deep-question answers, game answers
  • Streak events (when you and your partner each performed a qualifying action)
  • Love notes / partner notebook entries (private to you)
  • Wishlist entries shared with your partner

1.3 Time & location

We never store your precise GPS coordinates. The most precise location we keep is a city-level label, and only when you opt in.

  • Device timezone (always — required to show your birthday, anniversary, streak, and reminders on the correct local day)
  • Approximate city / country (only if you explicitly enable location visibility in Settings → Location & Time)
  • Coarse country / locale derived from the request IP (server logs, used for fraud and abuse signals; not shown to your partner)

1.4 Notifications

  • Firebase Cloud Messaging token (device push token, refreshed by the OS)
  • Your reminder preferences (toggles + quiet hours)
  • Per-notification audit records (which reminder was sent, when) — used only to prevent duplicates

1.5 Subscription & billing

  • Subscription tier, status, renewal/expiry
  • Streak Save credit balance and per-purchase ledger
  • App Store / Play Store purchase identifiers via RevenueCat (we do not see your full payment card details — those stay with Apple, Google, and the payment processors)
  • Promo code usage history

1.6 Technical

  • App version, OS, device locale (en-US, tr-TR, etc.)
  • Crash reports (via Firebase Crashlytics) — these may contain a stack trace and a device model but never your chat or message text
  • Analytics events (which screens you opened, which features you used) — never the content of your messages or memories

1.7 Legal consent record

When you sign up or re-accept updated terms, we save the version of the Terms and Privacy Policy you accepted, the time, your device locale, and the trigger (signup or reaccept). This is the audit trail GDPR Article 7(1) requires us to keep.

2. How We Use Your Data

We do not sell or rent your data. We do not run third-party advertising inside the App.

PurposeWhat we use
Show you the right content on the right local dayTimezone, birthday, anniversary
Send you the reminders you wantFCM token, reminder settings, quiet hours
Run your couple streakStreak events, partner activity
Show your partner what you choose to sharePartner-only fields on your user doc
Verify your subscriptionRevenueCat purchase identifiers
Detect abuse, fraud, breakageServer logs, crash reports, anonymous analytics
Improve the productAggregated, non-identifying usage statistics
Meet our legal obligationsConsent records, retention policies

3. Who Can See What

3.1 You

You can always see and edit everything we have about you in Profile / Settings, and you can delete your account at any time (Settings → Delete account).

3.2 Your bonded partner

Your bonded partner can see:

  • Your name, profile photo, birthday (if you set one)
  • Your mood, gratitude, memories, milestones, stories you've shared with them
  • Your streak status
  • Your current city, only if you enable “Show current location to partner”

Notice: Your partner cannot see your private chats with other people, your wishlist items marked private, your love-notes / partner notebook entries about them, or your billing information.

3.3 Other InnerBond users (Discover)

If your relationship status is “single” and discoverable is on, other users browsing Discover can see your public profile (name, photo, bio, username). Your city/country is shown there only ifyou enable “Show current location on Discover.”

If you are bonded, you don't appear in Discover at all (unless you separately re-enable it).

3.4 Service providers

We use the following processors to run the App. Each is bound by their own privacy commitments:

  • Google / Firebase (Authentication, Firestore database, Cloud Functions, Cloud Storage, Firebase Cloud Messaging, Crashlytics, Analytics)
  • Apple (Sign in with Apple, APNs push delivery, App Store payments)
  • RevenueCat (subscription state synchronization)
  • Apple / Google (in-app purchase billing)

3.5 Legal disclosure

We will share data only when legally required (court order, subpoena, valid government request) or to protect the safety of our users or the public. We will push back on overly broad requests.

4. Where Your Data Lives

Your data is stored on Google Cloud servers in the EU (Firebase project couples-452a1 operates from europe-west1, Belgium). Some processors (Apple, RevenueCat, analytics) may process data in other regions; transfers from the EU outside the EEA rely on the EU's Standard Contractual Clauses.

5. How Long We Keep Your Data

DataRetention
Your accountUntil you delete it
Chat messagesUntil you delete them or your account
Memories / milestones / wishlist / love-notesUntil you delete them or your account
Streak events365 days (rolling)
StoriesAuto-expire per your configured time (the default is 24 hours; you may choose other lengths)
Mood historyUntil you delete it or your account
FCM tokensRefreshed by the OS; stale tokens are deleted automatically on failed delivery
Notification audit records180 days
Crash reports90 days
Server access logs30 days
Legal consent recordsLifetime of the account + 6 years after deletion (to defend against retroactive claims)

When you delete your account: your user doc, your relationship's chat, memories, milestones, stories, gratitude, mood history, and personal entries are deleted. Anonymous aggregate statistics may persist.

6. Your Rights

You have the following rights, regardless of where you live:

  • Access — see everything we hold about you (Settings → Profile + Discover preview)
  • Correct — edit name, photo, birthday, anniversary, relationship status anytime in Settings
  • Delete — Settings → Delete account
  • Export — write to contact@innerbondapp.com and we'll send you a JSON export within 30 days
  • Object to processing — turn off any toggle in Settings → Location & Time, Settings → Privacy, or Settings → Reminders
  • Withdraw consent — Sign out, then delete the account. Withdrawing does not affect processing already done lawfully before the withdrawal.

EU/EEA, UK, and Swiss residents also have the right to lodge a complaint with their local data protection authority.

California residents (CCPA / CPRA) have the right to know what categories of data are collected, to delete it, and to opt out of “sale” — we do not sell data, so the opt-out is automatically satisfied.

Brazilian residents (LGPD) have the same rights, plus the right to anonymized processing.

7. Children

InnerBond is for users aged 18 or older. We do not knowingly collect data from anyone under 18. If you believe a child has created an account, write to contact@innerbondapp.com and we will delete it.

8. Security

  • All data is transmitted over TLS
  • Firebase Authentication tokens are managed by Google and never seen by us in plaintext
  • Firestore Security Rules enforce per-user and per-relationship access at the database layer (a member of relationship X cannot read relationship Y's data, even with a stolen token)
  • We do not store passwords; authentication is delegated to Apple, Google, or Firebase Auth's verified email/phone flows
  • Payment card details never touch our servers — they are handled by Apple, Google, and our payment processor

Notice: No system is perfectly secure. If we discover a breach affecting your data, we will notify you and the competent supervisory authority within 72 hours as required by GDPR Article 33.

9. Changes To This Policy

When we materially change this Policy, we will:

  1. Bump the version string at the top
  2. Show you the new version inside the App on next launch and ask you to re-accept before continuing
  3. Keep a record of the version you accepted and when

If you do not accept the new version, your only options are to keep using the old version (which we may not always allow if the change is legally required) or to delete your account.

10. Contact

This Policy is effective as of the “Last Updated” date and applies to all use of InnerBond after that date.