Privacy Policy

Last updated: June 4, 2025

Wingman ("we", "us", or "our") operates wingmanapp.live — a real-time social discovery app that helps people meet others at public venues. This Privacy Policy explains what data we collect, how we use it, and your rights.

1. Information We Collect

1.1 Account Information

When you register, we collect your phone number to verify your identity and prevent fake accounts. We also collect your name, age, a short bio, and interests that you choose to provide.

1.2 Location Data

We collect your precise GPS location to detect when you are physically present at a supported public venue (bar, park, concert, etc.). Location is used only to power check-ins and show you other users at the same venue in real time.

Location data is processed on-device for geofencing. We do not continuously store a history of everywhere you go. Your current venue is stored only while you are actively checked in and cleared when you leave or close the app.

1.3 Usage & Interaction Data

Waves sent and received (to/from user IDs and timestamps)
Venues you check into and how long you are there
Messages exchanged through the in-app chat
Device type, OS version, and anonymized crash/error reports

1.4 Photos

Profile photos you upload are stored securely and displayed only to other users at the same venue as you.

2. How We Use Your Data

Authenticate your account via SMS verification
Show you real-time presence of other users at your current venue
Deliver waves, matches, and in-app messages
Improve app reliability and detect abuse
Send you product updates (you can opt out at any time)

3. We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to any third party — ever. We do not share your data with advertisers or data brokers. Your phone number is never displayed to other users.

4. Third-Party Services

We use the following trusted services to operate Wingman:

Twilio — SMS delivery for verification codes only
PostgreSQL (Replit) — secure database hosting
Mapbox / FlagCDN — map tiles and flag images (no personal data sent)

These providers process data only as necessary to deliver their services and are bound by their own privacy policies.

5. Data Retention

Account data is retained as long as your account is active
OTP codes are deleted immediately after use or after 10 minutes
Chat messages are retained for 90 days
Venue check-in logs are retained for 30 days then anonymized

6. Your Rights & Data Deletion

You have the right to access, correct, or delete your personal data at any time. To request deletion of your account and all associated data, email us at privacy@wingmanapp.live with the subject line "Delete My Data" and the phone number associated with your account.

We will process deletion requests within 30 days and confirm by email. After deletion, your data cannot be recovered.

You may also delete your account directly from the Profile tab in the app.

7. Children's Privacy

Wingman is intended for users 18 years and older. We do not knowingly collect data from anyone under 18. If you believe a minor has registered, contact us immediately.

8. Security

We use industry-standard encryption for data in transit (TLS) and at rest. Auth tokens are hashed using SHA-256 before storage. We regularly review our security practices.

9. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via in-app notification. Continued use after changes constitutes acceptance.

10. Contact

Questions about privacy? Email privacy@wingmanapp.live.

Safety concerns? Email safety@wingmanapp.live.

General inquiries? Email hello@wingmanapp.live.