Privacy Policy

👋 Introduction

Almostmet ("we", "our", or "us") is an iOS app that helps you discover when you and other users have been in the same place at the same time — based on metadata from your own photos. This Privacy Policy explains how we handle information when you use the app.

By using Almostmet, you agree to the practices described in this policy. If you have questions, reach out at hello@almostmet.se.

📍 Location Data from Photo Metadata

Almostmet reads GPS coordinates and timestamps embedded in the EXIF metadata of photos you choose to analyze. This is the core functionality of the app.

• Your photos never leave your device. We extract only the GPS coordinates and timestamp — the actual image is never uploaded or transmitted.
• Extracted location data points (latitude, longitude, timestamp) are stored in our backend associated with your account, so the app can find matches with other users.
• You are always in control of which photos the app analyzes.

🔐 Authentication

We use Sign in with Apple for authentication. This means:

• We never handle or store your Apple ID password.
• You may share your real email or use Apple's private relay to keep it hidden.
• Authentication tokens are managed securely via Supabase Auth.

🗄️ What We Store

The following data is stored in our Supabase database:

• Profile: Your Apple user ID, display name, and email (if provided).
• Photo locations: GPS coordinates and timestamps extracted from your photos — never the photos themselves.
• Connections: Records of mutual path-crossings between users who matched at the same location and time.

We do not store your device's current location, push notification tokens (unless you opt in), or any other personal data beyond what is listed above.

🚫 What We Never Do

• We never sell your data to third parties.
• We never share your location history with advertisers or data brokers.
• We never upload your photos — only metadata coordinates.
• We never track your real-time location — only historical metadata you choose to analyze.

🏗️ Infrastructure & Third Parties

Almostmet uses the following third-party services:

• Supabase — Backend database and authentication. See Supabase's Privacy Policy.
• Sign in with Apple — Authentication only, governed by Apple's privacy policies.
• Apple MapKit — Used to render maps inside the app. No personal location data is sent to Apple via this integration beyond standard Maps usage.

We do not use any advertising SDKs, analytics trackers, or crash reporting tools that transmit personal data.

🗑️ Deleting Your Data

You have the right to delete all data associated with your account at any time.

• Go to Settings → Delete Account in the app to permanently remove your profile, location points, and connections.
• Alternatively, email hello@almostmet.se and we'll delete your data within 7 days.
• After deletion, your data is permanently removed from our systems and cannot be recovered.

👶 Children's Privacy

Almostmet is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with their information, please contact us and we will promptly delete it.

🔄 Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we'll update the "Last updated" date at the top of this page. For significant changes, we'll notify users via the app or email. Continued use of the app after changes constitutes acceptance of the updated policy.