Amora · Legal
Privacy Policy
Last updated · 30/06/2026
Your privacy matters. This policy explains what personal data Amora collects, why, on what legal basis, who we share it with, and the rights you have under the EU General Data Protection Regulation (GDPR). Questions: privacy@amorasoul.com.
1. Who is responsible (controller)
Amora (operating amorasoul.com) is the data controller for the personal data described here. You can reach us, including on data-protection matters, at privacy@amorasoul.com.
2. What we collect
Account & profile data you provide (name, age, photos, location city, languages, bio and optional details); messages and media you exchange; purchase records (Stripe handles card data — we store only the outcome, amount and item); and technical data needed to run the service securely (device/browser, IP, approximate region, session activity).
3. Legal bases (GDPR Art. 6)
We process data to perform our contract with you (running your account, matching, messaging, payments); on the basis of your consent (optional sensitive details, non-essential communications); for our legitimate interests (keeping the community safe, preventing fraud and abuse, improving the service); and to comply with legal obligations (tax, accounting, lawful requests).
4. How we use it
To introduce you to compatible members, translate your conversations, operate calls and notifications, process memberships and credits, keep the community safe, and provide support. We do not sell your personal data and we do not use advertising trackers.
5. Who we share it with (processors)
Trusted providers acting on our instructions under data-processing agreements: Stripe (payments), Resend (transactional email), Vercel & Turso (hosting and database), and AI providers (OpenRouter / Google) used only to translate messages and power in-app assistance. Each receives the minimum data needed.
6. International transfers
Where data is processed outside the EEA, we rely on adequacy decisions or the European Commission's Standard Contractual Clauses to ensure an equivalent level of protection.
7. How long we keep it
We keep your data while your account is active. When you delete your account we remove your profile and messages promptly, except records we must retain for legal reasons (e.g. billing and safety reports), which we keep only for the period the law requires.
8. Your rights
Under the GDPR you can access, correct, delete, export (portability), restrict or object to the processing of your data, and withdraw consent at any time. You can export or delete your data directly from Settings, or contact us. You also have the right to lodge a complaint with your local data-protection authority.
9. Sensitive data
Optional details such as orientation are special-category data. They are collected only with your explicit consent, stored separately, kept private by default, and shown to others only when you choose.
10. Security
Passwords are hashed, sessions use secure signed cookies, and access to data is restricted. No system is perfectly secure, but we take appropriate technical and organisational measures and will notify you and the authorities of a breach where the law requires.
11. Children
Amora is for adults only. We do not knowingly process data of anyone under 18 and remove such accounts on discovery.
12. Changes
We will post any changes here with a new effective date and notify you of material changes.
Questions about these terms or your data? Contact privacy@amorasoul.com.