get on the list
legal

Privacy policy.

effective 13 June 2026 · unpure.in · digital personal data protection act, 2023 (DPDP) notice

Most privacy policies explain how much of your data a company keeps. Ours mostly explains how fast we delete it. unpure is built on ephemerality: the less we store, the less can ever leak, be subpoenaed beyond necessity, or haunt you.

1. What we collect.

  • Email address — for login codes and one launch email. Burner emails are welcome.
  • Profile data— display name or alias, date of birth, gender, who you're seeking, city, a short bio and 1–4 photos you choose to show.
  • Verification selfie — one posed selfie used solely to confirm you are a real human matching your photos.
  • Messages & shared media — held only for delivery, then purged on the 24-hour clock.
  • Safety records — reports you make or receive, blocks, and enforcement decisions.
  • Technical basics — session cookies and rate-limit counters needed to keep the service running and abuse out.

We do not collect your legal name, Aadhaar or other government ID, contacts, or precise GPS location. We do not run advertising trackers.

2. How fast it's destroyed.

  • Verification selfie:permanently deleted from both storage and database immediately after a moderator's decision — approved or rejected. We retain only a verified flag and a match score.
  • Chats, photos and voice notes in chats: permanently deleted 24 hours after delivery. Deletion covers database rows and the underlying file storage — not a soft delete.
  • Unmatched conversations: deleted immediately when either side unmatches.
  • Deleted accounts: profile and photos removed promptly; minimal safety and legal-compliance records may be retained where the law requires.

3. Why we process it (purpose limitation).

We process your data only to: operate the service you signed up for, verify that members are real adult humans, keep the community safe, comply with Indian law (including the IT Rules, 2021), and send the waitlist email you asked for. Nothing else. We do not sell or rent personal data to anyone.

4. Who can see it.

Other members see your profile as you built it. Our moderators see your verification selfie briefly during review, and reported content when a report is filed. Infrastructure providers (hosting, storage, email delivery) process data on our instructions under contract. We disclose data to authorities only against valid legal process — and given the 24-hour purge, there is usually very little to disclose.

5. Your rights (DPDP act, 2023).

  • Access: ask what personal data we hold about you.
  • Correction: fix your profile yourself in-app, or ask us.
  • Erasure: delete your account in-app anytime; ephemeral content is already on a deletion timer by design.
  • Consent withdrawal: stop using the service and/or delete your account; processing stops with it.
  • Grievance: raise a complaint with our grievance officer (below) and escalate to the Data Protection Board of India if unresolved.

Exercise any right by writing to admin@unpure.in. We respond within the timelines in our grievance policy.

6. Security.

Data in transit is encrypted (TLS). Media uploads go directly to access-controlled storage via short-lived signed URLs. Sessions use httpOnly cookies. Every upload is screened against known child-sexual-abuse-material hashes. And our favourite security feature: the purge job — data that no longer exists cannot be breached.

7. Cookies.

One session cookie to keep you logged in. No advertising cookies, no cross-site tracking, no fingerprinting.

8. Contact.

Data fiduciary: unpure, India. Grievance officer contact and timelines: grievance page · admin@unpure.in. Material changes to this policy are announced in-app before they take effect.