Your data,
your moments,
yours.

01 · What we collect

To run DailyMoment, we collect three categories of information.

Account information. Your handle, name, email, password (hashed with bcrypt), and a profile photo if you choose to add one. For Dating Mode, additionally: date of birth and verification artifacts (selfie, ID — see retention below).

Content. The moments you post (video, audio, photo), your captions, your direct messages, your comments, and the metadata directly attached (timestamps, durations, audience setting). Encrypted at rest. No staff read access by default.

Operational data. IP address (truncated to /24 within 24 hours), device type, app version, language, approximate location at the country level. Crash reports (without content). Anonymized usage counts (sessions, average session length, error rates).

02 · Why we collect it

For exactly four reasons, and no others:

1. To deliver the service. Show you your feed, route your messages, store your archive.
2. To keep it safe. Identify abuse, prevent fraud, comply with mandatory child-safety reporting (CSAM, NCMEC).
3. To improve the product. Anonymized, aggregated usage — never linked to your account in our analytics — helps us decide what to build.
4. To comply with the law. Tax records, lawful preservation requests, the like.

We do not collect data to sell. We do not collect data for advertising. We do not collect data to train large language models on your private moments. We do not allow any third party to do these things on our platform.

03 · How long we keep it

Generally, we keep what you actively store, and delete what you don’t.

• Moments & messages: until you delete them. Free-tier accounts have an automatic archive retention of two years; Moment+ accounts have no limit. Deletion is real — purged from primary storage immediately, from encrypted backups within thirty-five days.
• Account information: while your account is active, plus thirty days after deletion (the grace period to undo).
• Dating verification artifacts: the original selfie and ID images are deleted within seven days of approval. We retain a non-reversible hash only, used to detect re-registration after a ban.
• Server logs: 90 days, then deleted. IP addresses are truncated to /24 within 24 hours.
• Crash reports: 180 days. No content, no identifiers beyond an anonymous device hash.
• Audit log (administrative actions): 7 years, for regulatory reasons.

04 · Who we share it with

A short list. None of these involve advertising or selling.

• Infrastructure providers — AWS for compute and storage, Cloudflare for delivery, Twilio for OTP, SendGrid for email. Each is bound by a data processing agreement; each is in scope for our annual SOC2.
• Child safety — confirmed CSAM is reported to NCMEC (in the US) or local equivalent, as required by law. We cooperate with lawful requests from law enforcement; we publish a transparency report twice a year.
• Other users, when you tell us to — your moments are shown to the audience you select. Hub members can see your hub-tagged moments.
• A new owner, if we’re ever acquired — see the About page on why this is unlikely. If it ever happens, you’d hear about it before the data moves.

That’s the entire list. We do not share data with data brokers, ad networks, analytics resellers, training-data brokers, or your government for reasons other than lawful, narrow, individually-targeted requests.

05 · Your rights

Wherever you live, you have these rights with us. You don’t need to be in the EU or California to use them.

• Access. A one-click export of everything we hold, including your moments at original quality. Delivered as a ZIP within 24 hours.
• Correction. Edit your profile, fix anything that’s wrong. For data you can’t edit directly, write to privacy@dailymoment.social.
• Deletion. One click. Thirty-day grace period to undo. Full deletion from backups within 35 days of the initial request.
• Portability. Your export is in standard formats (MP4 for video, WAV for audio, JPG for photos, JSON for everything else).
• Objection. You can disable the small amount of automated decision-making we do (mostly safety classifiers) — your account is then reviewed manually for those actions.
• Withdrawal of consent. Where we rely on consent (e.g. precise location), you can withdraw it at any time without losing access to the rest of the service.

To exercise any of these, the in-app controls in Settings → Your data are usually the fastest. For complex requests, privacy@dailymoment.social reaches a real human within one working day.

06 · Minors

You must be at least 13 to use DailyMoment, and at least 18 to use Dating Mode. We do not knowingly collect data from anyone younger.

For users between 13 and 17, the following protections are on by default and cannot be loosened: account visibility is set to Inner Circle only, direct messages are restricted to mutual connections, public discoverability is off, and all moments are removed from public hub feeds. We do not show brand prompts to anyone under 18.

If you believe a younger child has created an account, please write to safety@dailymoment.social. We act within hours.

07 · Changes

If we change this policy in a way that meaningfully affects your privacy, we tell you in the app and by email at least thirty days before the change takes effect. Minor edits (typo fixes, clarifications) are noted at the bottom of the document with a date stamp.

08 · Contact

Privacy questions, requests, complaints: privacy@dailymoment.social.

Postal: DailyMoment Inc., 270 James St N, Hamilton, ON, Canada L8R 2L3.

For EU residents, our representative is Privacy First Europe, Rue du Trône 60, 1050 Brussels, Belgium. For UK residents, the same firm, London office.

Effective May 15, 2026 · revision 1.1 · prior versions available on request.