> ENHANCED_PRIVACY_POLICY.exe

SYSTEM_STATUS: SECURE | ENCRYPTION: ACTIVE | LAST_UPDATE: 2025.09.02

> POLICY_PREAMBLE

This Privacy Protocol ("Policy") outlines how Utopian Creations LLC ("we," "us," or "our") collects, uses, processes, and safeguards your information on the LezFindr Dating Platform ("Service"). By creating an account, you agree to the protocols outlined in this document. Our mission is to provide a safe, inclusive, and private space for our community.

Effective Date: September 2, 2025

> CRITICAL_PRIVACY_PROTOCOLS

EMAIL REQUIRED

Email addresses are required for account creation, multi-factor authentication, and security verification. We do not display your email on your profile.

FIREBASE BACKEND

The Service is built upon Google's secure Firebase infrastructure, including the Firestore database, for robust and reliable data management.

COORDINATE STORAGE

Precise coordinates are encrypted and stored in Firestore to power our core matching and discovery features. You have control over location sharing in your settings.

ADMOB INTEGRATION

Google AdMob is integrated to provide advertising revenue, which keeps core features of the app free. We utilize Google's privacy controls, and you can manage ad personalization in your device settings.

> LEGAL_BASIS_FOR_PROCESSING (GDPR)

We only process your personal data when we have a valid legal basis. Our primary bases are:

Performance of a Contract:

The majority of our data processing is essential to provide the Service you signed up for. This includes using your profile information and location to show you potential matches and enable messaging.

Consent:

For specific features, such as processing sensitive data like sexual orientation or enabling marketing notifications, we will ask for your explicit consent, which you can withdraw at any time.

Legitimate Interest:

We process some data for our legitimate interests, such as for security purposes (fraud prevention, banning bad actors), analytics to improve the app, and to ensure the safety of our community, provided these interests do not override your rights and freedoms.

Legal Obligation:

We may be required to process data to comply with a legal or regulatory obligation, such as responding to a lawful request from law enforcement.

> DATA_COLLECTION_PROTOCOLS

Profile Data (Provided by You)

  • Photos and profile information you choose to share
  • Age, bio, interests, and preferences
  • Sexual orientation and gender identity (optional, handled with explicit consent)
  • Your chosen name and pronouns

Verification System (Automated & Manual)

  • • On-device AI performs initial age/identity checks on a photo you provide for verification
  • • Failed automated checks trigger a manual review by our trained moderation team
  • • Photos are deleted IMMEDIATELY after automated verification is complete
  • • For manual review cases, photos are retained for a maximum of 30 days for quality assurance and appeal purposes before being permanently deleted
  • • Only the final verification status (verified or not-verified) is retained, never the photos themselves

Location & Activity Data (Generated by Use)

  • Precise coordinates stored in Firebase Firestore for matching
  • Sparks sent/received (tapping profiles)
  • Messages (which are encrypted end-to-end)
  • Profile views and favorites activity
  • Reporting and blocking actions

Technical & Usage Data (Collected Automatically)

  • Device Identifiers & IP Address: For security, analytics, and advertising
  • App Usage Analytics: Crash reports, performance data, feature interaction logs. This helps us debug and improve the app
  • Cookies & Similar Technologies: We use technologies necessary for the operation of the app and for services like Google AdMob and Firebase Performance Monitoring

> DATA_USAGE_MATRIX

CORE FEATURES

  • ▸ Profile matching algorithms
  • ▸ Nearby user discovery
  • ▸ End-to-end encrypted messaging system
  • ▸ Sparks/tapping functionality
  • ▸ Favorites management

SAFETY SYSTEMS

  • ▸ Identity verification
  • ▸ Age verification (18+)
  • ▸ Fake profile detection and bot prevention
  • ▸ Harassment prevention through message filtering and reporting tools
  • ▸ Community guidelines enforcement

APP OPTIMIZATION

  • ▸ Performance improvements
  • ▸ Bug fixes and stability monitoring
  • ▸ Feature usage analytics to inform future development
  • ▸ Google AdMob advertising integration
  • ▸ Premium feature development

> LGBTQIA+_PROTECTION_SUITE

Anti-Outing Safeguards

  • 🛡No social media integration or login options
  • 🛡We will never implement a "find my contacts" or "find my friends" feature
  • 🛡Anonymous browsing options (e.g., Incognito Mode for premium users)
  • 🛡Granular profile visibility controls
  • 🛡Secure handling of your chosen name, separate from any legal name requirements (which we do not collect)

Community Safety

  • A curated community specifically for lesbian, bisexual, transgender, and non-binary individuals
  • Robust reporting system for hate speech, transphobia, and harassment
  • Quick response moderation team trained in LGBTQIA+ community issues
  • Community-driven safety feedback loop

> DATA_SHARING_RESTRICTIONS

WE NEVER SELL YOUR DATA

LezFindr will never sell, rent, or trade your personal information to third parties for marketing, advertising, or any commercial purposes. Your privacy is not for sale.

Limited Sharing Scenarios:

Other Users

Only the profile information you choose to make visible

Service Providers

We engage third-party companies to perform services on our behalf. These providers are contractually obligated to protect your data.
Google Cloud Platform/Firebase: Hosting, database, and infrastructure. Google Privacy Policy
Google AdMob: Advertising. Google Ad Policy

Legal Requirements

We may disclose your information if reasonably necessary: (a) to comply with a legal process, such as a court order or subpoena; (b) to assist in the prevention or detection of crime (subject to applicable law); or (c) to protect the safety of any person

Corporate Transactions

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in control

> USER_RIGHTS_MATRIX

You have control over your data. You can exercise the following rights at any time.

Access & Control

Right of Access: View and access all your personal data directly within the app's settings
Right to Rectification: Update and correct your profile information at any time
Right to Erasure ('Right to be Forgotten'): Delete your account instantly via the app's settings menu
Control Profile Visibility: Manage who can see your profile
Manage Location Sharing: Enable or disable precise location sharing

Data Portability & Objection

Right to Data Portability: Request an export of your personal data in a machine-readable format
Right to Object/Restrict Processing: You can object to our processing of your data for legitimate interests
Rights Related to Automated Decision-Making: Our matching algorithms are automated, but you have the right to information about their logic

To exercise any of these rights, please use the tools provided in the app or contact us at privacy@lezfindr.com.

> DATA_RETENTION_SCHEDULE

We keep your personal information only as long as we need it for legitimate business purposes and as permitted by applicable law.

Active Accounts:

Your data is retained for the duration of your active account to provide the Service.

Account Deletion:

When you delete your account, we initiate a deletion process. Your profile is no longer visible on the Service. We delete the information from our active systems according to our protocol, typically within 30 days, unless a longer retention period is required.

Post-Deletion Retention:

We may retain limited data for up to three years after account deletion for safety, security, and legal reasons. This includes transaction records, authentication identifiers, and a record of the deletion itself to prevent banned users from creating new accounts and to comply with legal obligations. This data is isolated from production systems.

> SECURITY_PROTOCOLS

Encryption

  • • End-to-end encryption for all messages
  • • Data encrypted in transit (TLS/SSL) and at rest (AES-256)
  • • We strive for a zero-knowledge architecture where feasible

Infrastructure

  • • Built on Google's secure cloud platform
  • • Regular internal security audits and vulnerability scanning
  • • Planned external penetration testing

Access Control

  • • Strict, role-based access controls for authorized staff
  • • Multi-factor authentication required for all internal system access
  • • Comprehensive logging and monitoring of access to sensitive data

Updates

  • • Continuous security improvements and monitoring
  • • Rapid vulnerability patching protocol
  • • Proactive threat monitoring and response plan

> YOUTH_PROTECTION_PROTOCOL (COPPA)

Our Service is strictly limited to individuals 18 years of age or older. We do not permit individuals under the age of 18 on our platform. We do not knowingly collect personal information from anyone under 18. If you suspect that a user is under the age of 18, please use the in-app reporting mechanism immediately.

> INTERNATIONAL_DATA_TRANSFERS

LezFindr is a global application. By using our Service, you authorize us to transfer and store your information outside your home country, including in the United States, for the purposes described in this policy. We utilize Standard Contractual Clauses (SCCs) and other legal mechanisms to ensure your data is given a similar level of protection as it has in your home country.

> POLICY_EVOLUTION_PROTOCOL

As our Service evolves, we may update this Policy. If we make material changes, we will notify you through an in-app notification or by other means before the changes take effect, so that you have an opportunity to review them. Your continued use of the Service after the effective date of the updated Policy will constitute your acceptance of the changes.

> SYSTEM_CONTACT

Privacy Inquiries

  • Email: privacy@lezfindr.com
  • Response Time: Target < 72 hours
  • Availability: 24/7 automated processing for account deletion

Legal Entity

  • Data Controller: Utopian Creations LLC
  • App: LezFindr Dating Platform
  • Platform: Flutter Cross-Platform

LAST_UPDATED: 2025.09.02_00:00:00_UTC

ENTITY: UTOPIAN_CREATIONS_LLC

APPLICATION: LEZFINDR_DATING_PLATFORM

PLATFORM: FLUTTER_CROSS_PLATFORM