Privacy Policy

Effective Date: March 2026 Smoothly.me, LLC Miami, Florida

1Overview

Smoothly.me, LLC ("Smoothly," "we," "us") is committed to protecting your privacy. This Privacy Policy explains what information we collect when you use Smoothly, how we use it, who we share it with, and your rights regarding your data. By using the Platform, you agree to the practices described in this policy.

2Information We Collect

CategoryWhat We CollectHow
Account Email address, display name, Firebase Auth UID, email verification status, account creation date You provide at registration
Usage Token balance, selected AI personality, communication style preference, conduct acceptance timestamp, purchase history, subscription status Automatically as you use the Platform
Message Content The text messages you submit for AI coaching, the AI's reasoning, and the AI-generated response When you request an AI response
Profile Image Profile photo (if you choose to upload one) You provide voluntarily
Referral Activity Your referral code, referrals made, referrals received, rewards earned Automatically when referral activity occurs
Device & Session Device type, browser type, IP address, session tokens (collected automatically by Firebase) Automatically via Firebase Auth
Blockchain (Phase D) XION wallet address (xion1…) associated with your account Automatically upon account creation when XION integration is active

3What We Do Not Collect

We never receive your dating app login credentials. The Reclaim Protocol verification process uses zero-knowledge proof technology and a Trusted Execution Environment (TEE). Your Tinder username and password are handled entirely within Reclaim's secure environment and are never transmitted to Smoothly's servers. We receive only a cryptographic proof that you met the verification thresholds, along with your aggregate statistics — match count, conversation count, and conversation rate. Your actual Tinder messages and conversations are never visible to us.

We also do not collect:

  • Credit card or bank account numbers (all payment data is handled directly by Stripe)
  • Government-issued ID or social security numbers
  • Actual messages or conversations from any dating application
  • Location data
  • Contacts or address book data

4How We Use Your Information

  • Operate the Platform — authenticate your account, process tokens, generate AI responses, manage subscriptions and purchases
  • Process Payments — manage token purchases, subscriptions, and creator payouts via Stripe
  • Creator Verification — validate dating app statistics via Reclaim Protocol to determine creator eligibility
  • Improve AI Quality — analyze aggregated, anonymized usage patterns to improve response quality; individual messages are not used to train models without explicit consent
  • Transactional Communications — send email notifications via SendGrid, including email verification codes, purchase receipts, referral notifications, creator dormancy warnings, and payout confirmations
  • Fraud Prevention — detect and prevent abuse, fraudulent verification attempts, and Terms of Service violations
  • Legal Compliance — meet obligations under applicable law, including issuing 1099 tax forms to creators
  • Automated Decisions — token deductions per AI response, creator tier promotions, referral reward triggers, and dormancy alerts are handled automatically based on Platform activity

We do not use your data for third-party advertising. We do not sell your personal information. Ever.

5Sharing and Third Parties

We share data only with the following service providers, and only to the extent necessary to operate the Platform:

ServiceData SharedPurpose
Google / Firebase Email, UID, all Firestore data, profile images Authentication, database, hosting, cloud functions, file storage
OpenAI The message text you submit for coaching AI response generation. OpenAI does not use API inputs to train their models by default.
Stripe Email address, transaction metadata Payment processing, subscription management, creator payouts. Stripe never shares card data with us.
SendGrid (Twilio) Your email address, your first name Transactional email delivery only
Reclaim Protocol A session request (no personal data sent); Reclaim returns only aggregate stats and a cryptographic proof Creator verification via zero-knowledge proof
XION Foundation Your XION wallet address, token transaction data On-chain token management. This data is publicly visible on the XION blockchain. See Section 6.

We do not share your data with advertisers, data brokers, or any third party not listed above, except as required by law, court order, or to protect the rights and safety of Smoothly or others.

If Smoothly is acquired or merges with another company, your data may be transferred as part of that transaction. We will notify you before your data becomes subject to a materially different privacy policy.

6Blockchain and On-Chain Data

Important: When the XION blockchain integration is active, certain data is recorded on a public blockchain where it is permanently and publicly visible. This section explains exactly what that means for your privacy.

The following data may be recorded on the XION public blockchain:

  • Your XION wallet address — a pseudonymous identifier (e.g., xion1…). It does not contain your name or email address, but it is publicly visible and permanently associated with your account's on-chain activity.
  • Your SMTHLY token balance and transaction history — purchases and transfers are recorded on-chain.
  • Creator verification badge NFT — proof that you passed creator verification and your current tier. The badge does not include your Tinder statistics or personal details.

Blockchain records are permanent and cannot be deleted, modified, or anonymized after they are written. This is a fundamental property of public blockchains, not a Smoothly policy. By using the Platform and accepting these terms, you acknowledge and consent to this.

Your name, email address, dating application credentials, message history, and payment information are never published to the blockchain under any circumstances.

XION's gasless transaction feature means you will never be required to hold, purchase, or spend cryptocurrency to use Smoothly.

7Message Content and Response History

When you submit a message to Smoothly for AI coaching, that message text is sent to OpenAI's API to generate a response. The original message, the AI's reasoning, and the generated response are then stored in your response history in Firestore. This history is tied to your account and is used for:

  • Attributing token usage and creator earnings
  • Allowing potential future features (e.g., reviewing past suggestions)
  • Identifying patterns for improving AI quality (in aggregate and anonymized form only)

Your response history is not shared with other users, not used to train AI models at the individual level, and not sold. You may request deletion of your response history by contacting [email protected].

8Creator-Specific Data

If you participate in the Creator Program, we additionally collect and store:

  • Your aggregate Tinder statistics from the Reclaim verification proof (match count, conversation count, conversation rate)
  • Your creator verification status and timestamp
  • Your AI model configuration: name, description, category, communication style, and system prompt
  • Model performance metrics: ratings, thumbs-up and thumbs-down counts, total uses, copy counts, nudge counts
  • Your creator tier (Verified, Battle Tested, or Elitely Smooth) and revenue share rate
  • Earnings records (per-use token earnings before conversion to USD)
  • Payout records and Stripe Connect account identifier
  • Training data you submit to customize your AI model
  • Fine-tune job identifiers if your model undergoes AI fine-tuning

Creator model names, descriptions, and profile images are publicly visible to all Platform users. Other creator data is private to your account.

9Data Retention

We retain your account data for as long as your account remains active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law. Financial transaction records and creator earnings records are retained for 7 years to meet tax and accounting obligations.

On-chain blockchain records cannot be deleted after they are written, regardless of account deletion, due to the immutable nature of public blockchains.

Reclaim Protocol session data (the proof and session metadata) is stored temporarily for verification processing and session replay prevention. It is not retained indefinitely.

10Cookies and Local Storage

Smoothly uses the following browser storage mechanisms:

  • Firebase Auth Token — A session token stored in your browser by Firebase to keep you signed in. This is required for Platform functionality. Clearing your browser cookies will sign you out.
  • UI Preference Flags — Small flags stored in localStorage (e.g., whether you have dismissed certain informational banners). These contain no personal data and are never transmitted to our servers.
  • Legal Acceptance — Your acceptance of the Terms of Service and Privacy Policy is stored in Firestore on your account, not as a cookie.

We do not use advertising cookies, cross-site tracking cookies, or third-party analytics cookies. We do not use tracking pixels.

11Children's Privacy

Smoothly is not directed to individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that a user under 18 has created an account or provided personal information, we will delete that information and close the account promptly. If you believe a minor has used Smoothly, please contact us at [email protected].

12Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Request correction of inaccurate or incomplete data
  • Deletion — Request deletion of your account and personal data (subject to legal retention requirements and the limitations of blockchain data)
  • Portability — Request your data in a structured, machine-readable format
  • Objection — Object to certain data processing activities
  • Restriction — Request that we restrict processing of your data in certain circumstances

To exercise any of these rights, email [email protected]. We will respond within 30 days. Note that some rights may be limited where we have a legal obligation to retain data or where blockchain immutability applies.

13Security

We implement industry-standard security measures to protect your data, including:

  • Encrypted data transmission via TLS for all Platform communications
  • Firebase Authentication with server-side token verification for all API requests
  • Stripe for PCI-compliant payment processing — we never receive or store card numbers
  • Firebase security rules to prevent unauthorized direct database access
  • Environment-based secret management for all API keys and credentials

No system is completely secure. While we take reasonable measures to protect your data, we cannot guarantee absolute security. In the event of a data breach that affects your rights, we will notify you as required by applicable law.

14Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or a prominent notice within the Platform at least 14 days before changes take effect. Continued use of the Platform after the effective date constitutes acceptance of the revised policy. If you do not agree to the revised policy, you must stop using the Platform and may request deletion of your account.

15Contact

For privacy questions, data requests, or to exercise your rights: