Privacy Policy

Last updated: April 27, 2026

Evenpairs ("Evenpairs", "we", "our", or "us") provides a curated members network for verified professionals seeking meaningful introductions, experiences, and mentorship. This policy explains what data we collect, why, and the rights you have over it. For a plain-language summary, see our Data Safety page.

1. Information We Collect

a. Information You Provide

Name, email, phone number
Profile details (preferences, interests, professional context)
Photos and content you upload
Identity verification data (government-issued ID and live selfie, processed via Stripe Identity)
Optional LinkedIn profile information
Messages and communications within the platform

b. Automatically Collected Data

IP address, device type, browser
Usage data (interactions, features used)
Approximate location (derived from IP)
Diagnostics and crash logs

c. Payment Data

Payments are processed by Stripe. We do not store full card details. Stripe retains transaction records under its own terms.

d. Partner & Business Data

When businesses apply to partner with Evenpairs (venues, hosts, brands), we collect business name, contact name, email, phone, website, Instagram, city, category, capacity, price range, and partnership preferences. This information is reviewed by our team and retained whether the application is approved or declined for fraud prevention and audit purposes.

e. Mentor Program Data

When operators or ex-founders apply to join the mentor program we collect name, email, LinkedIn, areas of expertise, current role, and availability. Mentor applications are reviewed by our team and are retained whether approved or declined for program integrity. If matched with a mentee, we share only the information needed to make the introduction.

f. Referral Program Data

If you participate in our referral program, we store: your unique referral code, the email addresses of people you invite, the connection between you and any referred member who joins, and any membership credits earned. Referred members can see who invited them upon joining. We do not share your contact details with people you invite without your action, and we do not market to invited emails on your behalf.

2. How We Use Your Information

Provide and operate the platform
Enable curated introductions, experiences, and mentor matches
Facilitate communication between members
Verify identity and maintain safety
Personalize recommendations using AI
Process payments and memberships
Improve product performance and user experience
Send service updates and optional marketing communications

3. AI and Automated Processing

We use AI systems (including natural language processing and predictive models) to:

Recommend introductions and mentor matches
Suggest experiences and venues
Improve personalization

AI outputs are assistive only and do not replace human judgment or create legally binding outcomes. A human team reviews and curates every introduction before it reaches you.

4. User Safety & Moderation

To maintain a trusted environment:

We monitor platform activity for safety and abuse prevention
We may review content and communications to enforce policies
Members can report or block others
We may remove content or suspend accounts that violate guidelines

5. Sharing of Information

We do not sell or "share" personal data as those terms are defined under the California Consumer Privacy Act (CCPA/CPRA).

We may share data with:

Service providers and sub-processors, including Lovable Cloud / Supabase (hosting and database), Stripe (payments and identity verification), Resend (transactional email), and Google Maps (location services)
Partners and mentors, only when needed to deliver an introduction or experience you have requested
Legal authorities when required by valid legal process
An acquirer in the event of a merger or acquisition, subject to this policy

Referrer–referee relationships are visible to admin staff for fraud prevention and credit reconciliation. Partner and mentor application data is accessible only to admin staff and the applying individual or business.

6. Legal Basis for Processing (EU/UK/EEA)

If you are located in the EU, UK, or EEA, we process your personal data under one or more of the following GDPR Article 6 bases:

Contract: to operate your account, deliver introductions, and process payments.
Legitimate interests: to keep the platform safe, prevent fraud, and improve the product.
Consent: for non-essential cookies, marketing communications, and any optional data you choose to provide.
Legal obligation: to comply with tax, accounting, and law-enforcement requirements.

7. International Data Transfers

Evenpairs is operated from the United States and our hosting and most sub-processors are based in the United States. If you access Evenpairs from outside the US, your data will be transferred to and processed in the US. Where required, we rely on Standard Contractual Clauses (SCCs) and equivalent safeguards through our sub-processors to protect personal data transferred from the EU, UK, or EEA.

8. Data Retention

We retain personal data only as long as needed for the purposes described in this policy:

Account data: while your account is active.
After deletion: personal data is removed from production systems within 30 days; encrypted backups roll off within 90 days.
Identity verification artifacts: retained only for the duration of the verification review by Stripe Identity, then deleted from our systems.
Safety records: a minimal record (account ID and deletion date) is retained indefinitely to enforce safety bans and prevent re-registration of removed accounts.
Billing and tax records: retained as required by applicable law (typically 7 years).

See Account deletion for the full deletion process.

9. Your Rights

Depending on where you live, you may have the following rights over your personal data:

Access — request a copy of the data we hold about you.
Rectification — correct inaccurate or incomplete data.
Erasure — request deletion of your account and associated data.
Portability — receive your data in a machine-readable format.
Object or restrict processing — including for direct marketing.
Withdraw consent — at any time, where processing is based on consent.
California residents: the right to know, delete, correct, and limit the use of sensitive personal information. Evenpairs does not sell or share personal information for cross-context behavioral advertising, so no "Do Not Sell or Share" link is required.
Lodge a complaint with your local data protection authority.

To exercise any right, email privacy@evenpairs.com from the address on your account. We respond within 30 days.

10. Security

We use industry-standard safeguards including:

Encryption in transit (TLS) and at rest
Role-based access controls and audit logging
Hardened, regularly patched cloud infrastructure

No system is perfectly secure. If we become aware of a breach affecting your data, we will notify you and applicable regulators as required by law.

11. Third-Party Services

We integrate:

Google Maps Platform
Privacy-respecting analytics
Payment and identity verification (Stripe, Stripe Identity)
Transactional email delivery (Resend)

Use of these services is subject to their own policies.

12. Children's Privacy

Evenpairs is for users 18 and older. We do not knowingly collect personal data from anyone under 18. If we learn that we have collected information from a minor, we will delete it promptly and terminate the account.

13. Governing Law

This Privacy Policy is governed by the laws of the State of California, United States, without regard to conflict-of-law principles. Nothing in this section limits non-waivable rights you may have under your local consumer protection or data protection law.

14. EU/UK Representative

EU, UK, and EEA residents may contact us about this policy at privacy@evenpairs.com. Where required by Article 27 GDPR, an EU representative will be appointed prior to material EU-directed activity, and this section will be updated with their details.

15. Updates

We may update this policy. Material changes will be communicated by email or in-product notice. Continued use after the effective date indicates acceptance.