Privacy Policy
Effective Date: June 21, 2026
At Kyndlo, we believe that building meaningful connections starts with trust. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website.
1. Information We Collect
1.1 Information You Provide
When you create an account or use Kyndlo, you may provide us with:
- Account Information: Phone number, email address, name, date of birth, and profile photos
- Profile Information: Interests, hobbies, personality quiz responses, and preferences for matching
- Location Data: Your city or neighborhood to help find local events and connections
- Communications: Messages you send to other users or to our support team
- Identity Verification Information: Information used to help verify that members are real people, such as phone verification, profile photo checks, or other safety review information
- Payment Information: If you subscribe to premium features, payment details processed by our secure payment provider
1.2 Information Collected Automatically
When you use our services, we automatically collect:
- Device Information: Device type, operating system, unique device identifiers
- Usage Data: Features you use, time spent on the app, crash reports
- Location Data: Approximate location based on IP address or precise location (with your permission) for event check-ins
- Event Participation Data: Outings you view, join, attend, check into, or complete, including related spirit evolution progress
- Cookies and Similar Technologies: To improve your experience and remember your preferences
1.3 Quiz, Matching, and Spirit Evolution Data
Kyndlo uses personality quiz responses, stated interests, activity preferences, event participation, and app activity to help match members with compatible people, groups, outings, and spirit companions. We may create inferences about your connection style, social preferences, activity fit, and spirit evolution progress. These inferences are used to operate and improve Kyndlo, personalize your experience, recommend outings, and support safety and abuse prevention.
1.4 Categories, Sources, Purposes, Sharing, and Retention
The table below summarizes the main categories of information Kyndlo may process. Actual retention periods may vary when needed for security, legal, tax, dispute, safety, or fraud-prevention reasons.
| Category | Source | Purpose | Shared With | Typical Retention |
|---|---|---|---|---|
| Account and contact information | You | Create accounts, contact you, provide support, secure access | Hosting, email, support, security providers | Account lifetime plus 90 days after deletion, unless a longer period is needed for legal, security, or support reasons |
| Profile, interests, quiz responses, and preferences | You and your app activity | Matching, personalization, spirit assignment, event recommendations | Other users as part of your visible profile, hosting, analytics, matching systems, and AI providers after your consent | Account lifetime plus 90 days after deletion, subject to safety and legal exceptions |
| AI feature inputs and generated outputs | You, your app activity, and AI-assisted feature interactions | Personalized onboarding, matching, recommendations, creature image generation, text-to-speech, and image safety review | Microsoft Azure AI Foundry and Google Gemini after your consent; hosting and safety systems as needed to operate the feature | Account lifetime plus 90 days after deletion for account-linked outputs, unless a shorter or longer period is needed for safety, legal, security, or abuse-prevention reasons |
| Location and check-in information | You, your device, IP address, event check-ins | Nearby events, attendance verification, safety, Essence or progress awards | Hosting, maps/location tools, safety and verification providers where needed | Generally 2 years, unless needed longer for safety, disputes, or legal compliance |
| Messages, reports, and support communications | You, other users, support interactions | Deliver messages, moderation, safety review, support, dispute handling | Hosting, moderation, support, legal and safety providers | Messages: account lifetime plus 1 year after deletion; support communications: generally 3 years; safety reports may be kept longer |
| Identity verification and authenticity information | You, verification tools, safety review | Verify authenticity, reduce fake accounts, enforce safety rules | Identity verification, hosting, security, and legal providers | Raw verification data: generally 30 to 90 days after verification; verification status: account lifetime plus 1 year |
| Payment and transaction information | You and payment processors | Subscriptions, billing, fraud prevention, accounting | Payment processors, accounting, hosting, fraud-prevention providers | Generally 7 years for tax, accounting, legal, and dispute purposes |
| Device, analytics, cookie, and usage information | Your device, browser, cookies, analytics tools | Operate, secure, debug, measure, and improve Kyndlo | Hosting, analytics, security, and cookie technology providers | Device and security logs: generally 12 to 24 months; analytics retained as needed for product improvement and legal compliance |
2. How We Use Your Information
We use the information we collect to:
- Create and manage your account
- Match you with compatible users based on your personality and interests
- Suggest local events and activities in your area
- Evolve and customize your spirit animal companion
- Process payments for premium features
- Send you notifications about matches, events, and app updates
- Send SMS messages you consent to receive, including account verification codes, event updates, event reminders, and safety-related account notices
- Improve our services through analytics and user feedback
- Ensure safety and prevent fraud, abuse, or harmful behavior
- Comply with legal obligations
2.1 AI Matching and Personalization
Kyndlo may use automated systems, including AI-assisted matching tools, to suggest compatible members, packs, events, activities, and spirit experiences. These tools may consider your quiz answers, interests, location preferences, event history, safety signals, and app activity. AI-assisted recommendations are designed to improve compatibility and safety, but they do not guarantee a particular friendship, outcome, or event experience.
With your permission, Kyndlo may share limited data with third-party AI providers, including Microsoft Azure AI Foundry and Google Gemini, to power AI features. The data may include onboarding and profile responses, interests, preferences, quiz answers, personality inputs, prompts and context used to create your personalized creature image, text used for text-to-speech generation, and user-uploaded images that need safety review before they are accepted by our backend. We do not send payment card information, tax records, financial ledger records, or other financial transaction data to AI providers.
Kyndlo asks for in-app permission before sharing personal data with third-party AI providers. Group chat text safety may use on-device machine learning to help prevent inappropriate language from being sent to other users; this on-device check does not require sending group chat text to a third-party AI provider.
2.2 Messages and Safety Review
Messages and user reports may be processed to deliver communications, support moderation, investigate safety concerns, enforce our policies, prevent abuse, and respond to legal requests. We do not use private messages to sell personal information.
Kyndlo may use automated tools, machine learning, keyword filters, image review technology, and human review to help detect, block, remove, or limit content that may violate our rules. For example, inappropriate images may be removed automatically, harmful language may be blocked from chats or group descriptions, and suspicious account activity may trigger additional review or verification. Automated tools may make mistakes, and members may contact Kyndlo to request review of a moderation action unless the account was restricted for severe safety, legal, fraud, or security reasons.
2.3 Location and Check-Ins
Kyndlo uses city, neighborhood, approximate location, and, where you grant permission, precise location or check-in information to recommend nearby outings, confirm event participation, support safety, and award progress or Essence for eligible activities. You can disable device location permissions through your device settings, though some location-based features may not work without them.
2.4 Identity Verification
We may use identity verification information to help confirm member authenticity, reduce fake accounts, improve trust and safety, and investigate suspected violations. Verification information is used for safety and account integrity purposes and is not displayed publicly unless we clearly tell you otherwise.
Kyndlo may use a specialized third-party identity verification provider to help confirm that members are real people and to support platform safety. This provider may process information such as your name, date of birth, phone number, selfie, profile photo, government ID, device signals, or fraud-prevention information, depending on the verification method used. Kyndlo does not use identity verification information to sell personal information. Verification helps reduce impersonation, fraud, underage access, duplicate accounts, and unsafe activity, but it does not guarantee that a member is safe, truthful, or free from past misconduct.
2.5 SMS Messages and Consent
If you provide your phone number and agree to receive SMS messages, Kyndlo may send transactional messages related to account verification, event updates, event reminders, schedule changes, and safety-related account notices. Message frequency varies based on your account activity and joined events. Message and data rates may apply.
You can opt out of SMS messages by replying STOP to a Kyndlo SMS message. You can request help by replying HELP or emailing admin@kyndlo.com. We do not sell, rent, or share mobile opt-in data or SMS consent with third parties for their marketing or promotional purposes.
3. How We Share Your Information
We may share your information in the following circumstances:
3.1 With Other Users
Your profile information (name, photos, interests, and spirit animal) is visible to other users for matching purposes. We never share your exact location, phone number, or email with other users.
3.2 With Service Providers
We work with trusted third-party companies that help us operate our services, including:
- Cloud hosting and data storage providers
- Payment processors (e.g., Stripe)
- Analytics services
- Customer support tools
- Identity verification services
- Maps, location, communications, safety, fraud-prevention, and email delivery providers
- SMS and communications providers that deliver verification codes, event updates, reminders, and support messages at your request or with your consent
- AI service providers, including Microsoft Azure AI Foundry and Google Gemini, after your in-app consent and only for the AI-powered features described in this policy
We require service providers that process personal information for us, including AI service providers, to use appropriate safeguards and to provide protections for personal information that are the same as or equivalent to the protections described in this Privacy Policy.
3.3 For Legal Reasons
We may disclose your information if required by law, in response to legal process, or to protect the rights, property, or safety of Kyndlo, our users, or others.
3.4 Business Transfers
If Kyndlo is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
4. Data Retention
We retain personal information only for as long as reasonably necessary to provide Kyndlo, maintain safety, meet legal obligations, resolve disputes, prevent fraud and abuse, and enforce our terms and community guidelines. Our typical retention periods are:
- Account and profile data: Account lifetime plus 90 days after deletion
- Quiz responses, matching profile, spirit evolution, and Essence history: Account lifetime plus 90 days after deletion
- Event attendance and check-in records: Generally 2 years
- Messages: Account lifetime plus 1 year after deletion
- Safety reports and moderation records: Generally 3 to 6 years, depending on severity
- Banned or suspended account records: As long as reasonably necessary to prevent repeat abuse, generally at least 5 years
- Raw identity verification data: Generally 30 to 90 days after verification, unless needed for safety, fraud prevention, legal compliance, or a dispute
- Verification result or status: Account lifetime plus 1 year
- Payment and transaction records: Generally 7 years for tax, accounting, legal, and dispute purposes
- Support communications: Generally 3 years
- Device, security, and access logs: Generally 12 to 24 months
- Marketing, SMS consent, and unsubscribe records: As long as needed to honor your preferences, generally up to 5 years
- Waitlist information: Until launch outreach is complete plus 1 year, or earlier if you request deletion and no legal exception applies
We may retain information for a longer period when reasonably necessary for safety, fraud prevention, dispute resolution, legal compliance, accounting, security investigations, enforcement of our terms and community guidelines, or a legal hold. Where appropriate, we may delete, de-identify, or anonymize information instead of retaining it in identifiable form.
5. Your Rights and Choices
You have the right to:
- Access: Request a copy of the personal data we hold about you
- Correction: Update or correct inaccurate information
- Deletion: Request deletion of your account and personal data
- Portability: Receive your data in a portable format
- Opt-out: Unsubscribe from marketing communications
- Location: Disable location services in your device settings
- Notifications: Manage push notification preferences in the app
- AI data sharing: Review and choose whether to grant in-app permission before Kyndlo shares personal data with third-party AI providers
- SMS: Reply STOP to opt out of SMS messages or HELP for help
- Appeal: Appeal a denied privacy request where applicable law gives you that right
To exercise these rights, please contact us at admin@kyndlo.com.
If we deny your request, you may appeal by replying to our decision email or contacting admin@kyndlo.com with the subject line "Privacy Appeal." We will review the appeal and respond as required by applicable law.
6. Sensitive Information and Do Not Sell or Share
Kyndlo may process information that could be considered sensitive under certain privacy laws, such as precise location when enabled, message contents, profile photos, date of birth, identity verification information, and inferences created from quiz responses or event participation. We use sensitive information only for purposes reasonably related to providing Kyndlo, including matching, event recommendations, safety, verification, fraud prevention, spirit evolution, and legal compliance.
We ask for consent where required before processing sensitive information, such as precise location or certain identity verification data. You may withdraw device-level permissions, such as location access, through your device settings. Some features may be unavailable if required permissions are disabled.
Kyndlo does not sell personal information for money. We also do not knowingly sell or share the personal information of users under 18. If we ever use advertising, analytics, pixels, cookies, or similar technologies in a way that is considered a "sale," "sharing," targeted advertising, or profiling under applicable law, we will provide a clear way to opt out and will honor legally required opt-out preference signals where applicable.
You may contact us at admin@kyndlo.com to ask about access, deletion, correction, portability, opt-out rights, or limitations on the use of sensitive personal information where those rights apply.
If Kyndlo uses face matching, selfie checks, government ID review, or similar tools that create biometric identifiers or biometric information under applicable law, we will provide any required notice and consent flow before collecting or using that information.
6.1 Global Privacy Control and Universal Opt-Out Signals
Where required by law, Kyndlo will recognize browser-based opt-out preference signals, such as Global Privacy Control, as a request to opt out of sale, sharing, or targeted advertising for the browser or device sending the signal. If you use Kyndlo while logged in, we may associate the signal with your account where technically feasible. If you use Kyndlo without logging in, the signal may apply only to the browser or device used to send it.
7. Data Security
We use administrative, technical, and organizational safeguards designed to protect personal information, including:
- Encryption of data in transit and at rest
- Access controls and authentication requirements
- Secure cloud infrastructure with trusted providers
- Monitoring and review processes intended to help detect unauthorized access, abuse, or misuse
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.
8. Children's Privacy
Kyndlo is not intended for users under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child under 18, we will take steps to delete that information promptly.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.
10. U.S. State Privacy Rights
Residents of certain U.S. states, including California, Colorado, Florida, and New York, may have additional privacy or data security rights depending on the law that applies to Kyndlo and the way they use our services. These rights may include:
- The right to know what personal information we collect, use, and disclose
- The right to correct inaccurate personal information
- The right to delete your personal information
- The right to receive a portable copy of certain personal information
- The right to opt out of the sale or sharing of personal information, targeted advertising, or certain profiling, if applicable
- The right to limit the use of sensitive personal information, if applicable
- The right to appeal a denied privacy request, if applicable
- The right to non-discrimination for exercising your privacy rights
California residents may also request information about categories of personal information collected, categories of sources, business or commercial purposes, categories of third parties to whom information is disclosed, and categories of information sold or shared, if any. Colorado and Florida residents may have rights related to targeted advertising, sale, certain profiling, and appeal processes where those laws apply. New York law also requires reasonable safeguards for private information and breach notification in certain circumstances.
You may exercise applicable state privacy rights by contacting admin@kyndlo.com. We may need to verify your identity before completing certain requests.
10.1 California, Colorado, and Other State Requests
Depending on where you live and which laws apply to Kyndlo, you may ask us to confirm whether we process your personal information, access personal information we maintain about you, correct inaccurate personal information, delete personal information subject to legal and safety exceptions, receive a portable copy of certain personal information, opt out of targeted advertising, sale, sharing, or certain profiling decisions, limit the use of sensitive personal information where required by law, and appeal our decision if we deny your privacy request.
You may submit a privacy request by emailing admin@kyndlo.com or by using any privacy request form we make available in the app or on our website. We may need to verify your identity before completing a request. We may deny or limit requests where permitted by law, including when retention is necessary for safety, security, fraud prevention, legal compliance, dispute resolution, or enforcement of our Terms.
California residents may use an authorized agent to submit a request. We may require proof that the agent is authorized to act on your behalf and may ask you to verify your identity directly with us. If we deny your request, you may appeal by replying to our decision email or contacting us with the subject line "Privacy Appeal."
11. European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with a supervisory authority.
Our legal bases for processing your information include:
- Performance of our contract with you (providing the service)
- Your consent (for optional features like precise location)
- Our legitimate interests (improving our services, preventing fraud)
- Compliance with legal obligations
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the Effective Date. We encourage you to review this Privacy Policy periodically.
13. Contact Us
If you have any questions about this Privacy Policy or our privacy practices, please contact us: