← Fiddler

Privacy Policy

Last updated: April 29, 2026

This privacy policy describes how Veiter collects, uses, and shares data through Fiddler, our matchmaker app for tightly-connected communities. We wrote this in plain English; the goal is for you to actually understand what we do with your data, not just consent to it.

What we collect

Phone number. When you sign in, you verify a phone number via SMS. This is the only identifier we use to authenticate you. We do not collect email addresses or social logins.

Profile basics. The information you enter in onboarding: first name, last name, age, gender, city, where you grew up, languages you speak, and the age range you're looking for in a match.

Profile photo. One photo, captured live with your camera. We don't accept gallery uploads — the photo is meant to confirm to your friends that it's really you when they vouch on a setup. The photo is shown to your friends (the "vouching circle") but never to your prospective matches before the date itself.

Contact graph (hashed). If you grant contacts permission, we hash each phone number locally on your device with SHA-256 and send only the hashes to our server. The actual phone numbers in your contacts never leave your device. We compare hashes to find which of your contacts are also Fiddler users — this is what powers the "set up by your circle" model. Hashes are deleted when you delete your account.

Vouching responses. When friends in your circle answer questions about you ("Is Sarah more outdoorsy or more urban?"), or weigh in on whether you and a potential match should go on a date, we store their anonymous answers. Their identities are never shown to you.

Onboarding chat transcript. The conversation you have with the matchmaker AI during onboarding is stored as your private dossier. It is never shown to other users — not to your matches, not to your friends, not to anyone. The matchmaker reads it to choose better setups for you.

Match data. When the matchmaker proposes a setup, we store the pitch text, venue, scheduled time, and whether each side accepted, passed, or blocked.

Post-date debrief. The conversational debrief you have after a date is appended to your private dossier and processed into structured signals (sentiment, second-date signal, what worked, what didn't). Debriefs are private and never shared with the person you went on the date with.

Push notification token. If you allow notifications, we store the Firebase Cloud Messaging token your device generates so we can send you setup notifications, date reminders, and vouching requests.

Trust signal. An internal score that goes down if multiple people report or no-show on you. Used by the matchmaker to keep the community safe; not shown to anyone.

What we do not collect

  • We do not collect location data.
  • We do not run analytics SDKs (Google Analytics, Mixpanel, Amplitude). We rely on Supabase's basic database logs only.
  • We do not sell or share your data with advertisers. Fiddler has no advertising.
  • We do not store your raw phone contacts on our servers. Only hashes.
  • We do not show your photo to advertisers, third parties, or to people outside your direct circle and confirmed matches.

How your data flows

We use the following service providers, each with a specific purpose:

  • Supabase — hosts our database, file storage (your profile photo), and authentication. Acts as our processor under our instructions. Hosted in the US East region.
  • Twilio Verify — sends the SMS verification code when you sign in. Sees only your phone number.
  • DeepSeek — runs the matchmaker AI. Receives the text content of your dossier and your match candidates' dossiers when the matchmaker is reasoning about who to set you up with. Receives debrief transcripts during synthesis. Does not receive your phone number, real name (only first names + ages), or photo.
  • Firebase Cloud Messaging — delivers push notifications.
  • Apple App Store / Google Play Store — for app distribution and updates. Subject to Apple's and Google's own privacy practices.

We do not transfer data to any other third parties. We will never sell, lease, or license your data to advertisers, brokers, or other apps.

How long we keep it

We keep your data for as long as your account exists. When you delete your account (Settings → Delete Account), we immediately remove your profile, dossier, photo, vouching graph, match history, and notifications. Auxiliary tables we keep: anonymous vouching responses you gave about other people stay in the system because removing them would distort other users' trust scores; community pair-vote counts you contributed to remain as aggregated tallies. We never re-associate this anonymous activity to you after deletion.

Your rights

You can do all of the following from inside the app:

  • Export your data. Settings → Export my data. We hand you a JSON file with everything we have on you, copied to your clipboard.
  • Delete your account. Settings → Delete account. Permanent, immediate, no questions asked.
  • Mute notifications. Settings → Notifications. Per-kind toggles plus quiet-hours window.
  • Revoke contacts permission. iOS Settings → Privacy → Contacts → Fiddler. Revoking does not retroactively delete contact hashes already on our servers; for that, also tap Settings → Delete account.
  • Update your photo. Settings → Update photo. Replaces, never accumulates.
  • Update preferences. Settings → Date preferences. Or have another conversation with the matchmaker by simply telling them your new preference in chat.

If you have questions or want to exercise rights we haven't made self-serve, email us at privacy@veiter.ai.

Children

Fiddler is for adults. You must be 18 or older to use it. We do not knowingly collect data from anyone under 18. If you believe we've collected data from a minor, contact us immediately and we'll remove it.

Security

Authentication uses Supabase Auth + Twilio Verify (industry standard SMS OTP). Database access is gated by row-level security policies on every table — users can only read and write rows that belong to them. Edge functions verify each request's JWT before processing. All traffic to and from our servers uses HTTPS/TLS. Service-role secrets that bypass RLS are stored only in our server environment and never shipped with the app.

No system is perfectly secure. We follow industry best practices but can't guarantee absolute protection. If we discover a breach affecting your data, we will notify you within 72 hours.

International transfers

Our infrastructure is hosted in the US East region. If you use Fiddler from outside the United States — including Israel — your data crosses borders to be processed. By using Fiddler, you consent to that transfer.

Changes to this policy

If we materially change how we handle your data, we will update this page and surface a notice in the app the next time you open it. Continuing to use Fiddler after a change means you accept the updated policy.

Contact

Veiter
privacy@veiter.ai