π
Privacy Policy
Your privacy and data protection are our top priority at Date.mw. This policy complies with UK GDPR and explains how we handle your personal information.
Last Updated: April 5, 2026
Effective Date: April 5, 2026
This Privacy Policy describes how Date.mw ("we," "us," or "our") collects, uses, and protects your personal information in compliance with UK GDPR (General Data Protection Regulation) and other applicable data protection laws.
1. Data Controller Information
Data Controller: Deegits Technology Limited
Registered Office: Deegits Technology Limited
Company Number: TMBRS1009978
Data Protection Officer: info@date.mw
For UK GDPR purposes, we are the data controller of your personal data. This means we determine the purposes and means of processing your personal information.
2. Information We Collect
2.1 Information You Provide
- Profile Information: Name, age, gender, location, photos, biography, interests, dating preferences
- Contact Details: Email address, phone number (optional), social media links
- Communication Data: Messages, chat history, voice notes, and interactions with other users
- Missed Connections: Descriptions of encounters, locations, times, and identifying characteristics
- Payment Information: Billing details processed securely by our payment partners (Stripe, PayPal)
- Verification Data: Government ID or other documents for identity verification (processed securely and deleted after verification)
2.2 Automatically Collected Information
- Technical Data: IP address, browser type, operating system, device identifiers, app version
- Usage Data: Pages visited, features used, time spent, search queries, matches made
- Location Data: Approximate location based on IP address or precise location with explicit consent
- Cookies & Similar Technologies: Session cookies, persistent cookies, local storage (see Cookie Policy for details)
2.3 Information from Third Parties
- Social media platforms when you connect your account
- Analytics providers (Google Analytics, Mixpanel)
- Advertising partners (in anonymized form)
- Other users (reports, mentions, or tags)
- Publicly available sources for verification purposes
3. Legal Basis & Purpose of Processing
Under UK GDPR, we process your personal data based on the following legal grounds:
3.1 Contractual Necessity
- To create and maintain your account
- To facilitate matches and connections
- To enable communication between users
- To provide customer support
- To process payments for premium features
3.2 Legitimate Interests
- To improve our services and develop new features
- To prevent fraud and ensure platform safety
- To analyze usage patterns for service optimization
- To send service-related notifications
- To enforce our Terms of Service
3.3 Consent
- Marketing communications (you can opt-out anytime)
- Precise location tracking (when enabled)
- Certain cookie categories (see Cookie Policy)
- Processing of special category data (if provided)
3.4 Legal Obligation
- To comply with UK laws and regulations
- To respond to law enforcement requests
- To maintain records for tax purposes
4. How We Share Your Information
4.1 With Other Users
As a dating platform, we share:
- Profile information with potential matches
- Messages with intended recipients
- Missed connection posts with the community (anonymously if chosen)
- Common interests and compatibility scores
4.2 With Service Providers
- Hosting: AWS, Google Cloud Platform
- Analytics: Google Analytics (anonymized data)
- Payment Processors: Stripe, PayPal
- Communication: SendGrid, Twilio
- Customer Support: Zendesk, Intercom
4.3 Legal & Safety Disclosures
- When required by UK law or legal process
- To protect rights, safety, or property
- To prevent or investigate illegal activities
- To enforce our Terms of Service
- In connection with business transfers (merger, acquisition)
5. Data Retention Periods
We retain your personal data only as long as necessary for the purposes outlined:
- Active Accounts: For duration of account activity + 2 years of inactivity
- Deleted Accounts: 30-day recovery period, then permanent deletion
- Financial Records: 7 years for tax compliance (UK requirement)
- Chat Messages: Stored for 2 years from last activity
- Verification Documents: Deleted immediately after verification
- Marketing Data: Until consent withdrawal or 2 years of inactivity
After retention periods expire, data is securely deleted or anonymized.
6. Your UK GDPR Rights
Under the UK General Data Protection Regulation, you have the following rights:
π
Right to Access
Request a copy of your personal data we hold (Subject Access Request).
βοΈ
Right to Rectification
Correct inaccurate or incomplete personal data.
ποΈ
Right to Erasure
Request deletion of your personal data ("right to be forgotten").
βΈοΈ
Right to Restrict Processing
Limit how we use your data in certain circumstances.
π€
Right to Data Portability
Receive your data in a structured, commonly used format.
π«
Right to Object
Object to processing based on legitimate interests or direct marketing.
π€
Rights Related to Automated Decision Making
Not to be subject to decisions based solely on automated processing.
π
Right to Complain
Lodge a complaint with the UK Information Commissioner's Office (ICO).
To exercise your rights: Contact us at info@date.mw. We will respond within one month (can be extended to two months for complex requests). We may need to verify your identity before processing your request.
7. Security Measures
We implement appropriate technical and organizational measures to protect your data:
- Encryption: End-to-end encryption for messages, SSL/TLS for data in transit
- Access Controls: Role-based access, two-factor authentication for staff
- Network Security: Firewalls, intrusion detection systems
- Regular Audits: Security assessments and penetration testing
- Staff Training: Regular GDPR and security awareness training
- Data Minimization: Collecting only necessary data
- Backup & Recovery: Regular encrypted backups
Despite our efforts, no security measures are 100% secure. We recommend using strong passwords and enabling available security features.
8. International Data Transfers
As a global platform, your data may be transferred outside the UK/EEA. We ensure adequate safeguards:
- UK International Data Transfer Agreement (IDTA)
- EU Standard Contractual Clauses (SCCs)
- Adequacy decisions for approved countries
- Service providers certified under Privacy Shield (where applicable)
You can request details about specific transfers by contacting us.
9. Children's Privacy
Date.mw is not intended for users under 18. We do not knowingly collect data from children.
If you believe we have collected data from a child, please contact us immediately at info@date.mw. We will promptly investigate and delete such information.
10. Changes to This Policy
We may update this policy to reflect changes in our practices or legal requirements.
We will notify you of material changes via email or in-app notification at least 30 days before changes take effect.
The "Last Updated" date at the top indicates when this policy was last revised.
