Faby – Privacy Policy

Last updated: September 19, 2025

Table of Contents

1. Introduction & Scope

This Privacy Policy describes how FABY, INC. ("Faby," "we," "us," or "our") collects, uses, discloses, and protects information in connection with our mobile applications and informational website (the "Service").

2. Data Controller & Contact

Data Controller: FABY, INC., a Delaware, USA corporation. Contact: support@getfaby.com.

3. Categories of Data We Collect

  • Identifiers & Account Data: name, username, email, phone number, profile photo, birth year or declared age range, preferences.
  • Verification Data: optional identity verification via third-party providers (government ID + selfie). We store verification outcomes and metadata (e.g., pass/fail, timestamps, provider ID), not your ID images.
  • Location Data: approximate (e.g., city/region) and precise geolocation when you grant permission.
  • Usage & Device Data: IP address, device IDs, OS/browser info, app version, crash logs, cookies/SDK events, and interaction data (pages/screens viewed, taps, time on page).
  • Payments & Commercial Data: purchases, subscriptions (Premium, VIP), transaction dates/amounts, last 4 digits/brand of card or tokenized IDs provided by payment processors.
  • User Content & Communications: experience listings, photos, bios, reviews, messages/chats. We may review reports and communications to enforce safety and our Terms.
  • Inferences: preferences or segments derived from other data (e.g., categories of experiences you like).

4. Sources of Data

We collect data directly from you (when you create an account, post content, or contact support), automatically from your device and usage, and from third parties (e.g., identity verification, payment processors, analytics, anti-fraud services, public sources).

5. How We Use Data

  • • Provide, operate, and improve the Service.
  • • Create and manage accounts; process transactions and subscriptions.
  • • Personalize content and discovery (e.g., recommend Experiences).
  • • Promote safety, investigate misuse, and enforce Terms.
  • • Communicate with you about features, updates, and support; send marketing with your consent or as permitted by law.
  • • Measure performance, debug, and develop new features.
  • • Comply with legal obligations and protect our rights and users.

6. How We Share Data

  • Service Providers & Processors: hosting, cloud storage, analytics, security and anti-fraud, customer support, email/SMS, payment processing, and identity verification.
  • Other Users: limited profile and Experience information may be visible to other users (e.g., hosts and attendees).
  • Legal & Safety: with law enforcement or authorities when required by law or to protect users, the public, or our rights.
  • Business Transfers: in connection with mergers, acquisitions, financing, or sale of assets.
  • With Your Consent: when you direct us to share.

7. Data Retention

We retain data for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. When you delete your account, we will delete or de-identify your personal data subject to legal or legitimate business retention (e.g., fraud prevention, safety investigations, financial recordkeeping).

8. Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal data. No security measures are perfect; we cannot guarantee absolute security.

9. Your Rights (GDPR / CCPA / CPRA)

EU/EEA/UK residents: You may have the right to access, correct, delete, or port your personal data, and to object to or restrict processing. You may withdraw consent at any time where processing is based on consent. You also have the right to lodge a complaint with your local supervisory authority.

California residents: You have the right to know, access, delete, correct, and opt out of sharing/sale of personal information. We do not sell personal information in the traditional sense; we may share for targeted advertising or analytics as defined by law. To exercise rights, email support@getfaby.com. We will not discriminate for exercising your rights.

Verification: We may require information to verify your identity before acting on requests. Authorized agents may submit requests where permitted.

10. International Transfers

We may transfer your data to the United States and other countries that may not provide the same level of data protection as your home jurisdiction. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses) for cross-border transfers.

11. Children's Privacy

The Service is not directed to children under 13, and we do not knowingly collect personal data from them. If we learn that a child under 13 has provided personal data, we will take steps to delete such information and terminate the account.

12. Do Not Track & Global Privacy Control

Our Service does not currently respond to "Do Not Track" signals. Where legally required, we will honor Global Privacy Control signals for opt-out of sale/sharing.

13. Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will provide reasonable notice (e.g., in-app). Your continued use after changes take effect means you accept the updated Policy.

14. Contact

To exercise rights or ask questions, contact us at support@getfaby.com.