← Back to Home

Privacy Policy

Last Updated: 2/18/2026

1. Introduction

Welcome to Ephemeral. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Information You Provide

  • Account information (email address, username)
  • Payment information (processed securely through Stripe)
  • Messages you send through our service (encrypted and automatically deleted)

2.2 Automatically Collected Information

  • Device information (browser type, operating system)
  • Usage data (features used, time spent on platform)
  • IP address and general location information

3. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our services
  • Process your transactions and manage your subscriptions
  • Send you technical notices and support messages
  • Monitor and analyze trends and usage
  • Detect and prevent fraud and abuse
  • Comply with legal obligations

4. Message Privacy and Deletion

We take message privacy seriously. All messages sent through Ephemeral are:

  • Automatically deleted based on your chosen self-destruct mode (timed or exit-based)
  • Not stored permanently on our servers
  • Not accessible to Ephemeral staff after deletion
  • Not backed up or archived anywhere

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party companies that help us operate our service (e.g., Stripe for payment processing, Supabase for hosting)
  • Legal Requirements: When required by law, court order, or government regulation
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

6. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit using SSL/TLS
  • Secure data storage with access controls
  • Regular security audits and updates
  • Limited employee access to personal data

7. Your Rights

Depending on your location, you may have the following rights:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent

7.1 GDPR Rights (EEA/UK Users)

If you are located in the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis for Processing: We process your data based on (a) your consent, (b) contractual necessity to provide our services, (c) our legitimate interests in operating and improving the service, and (d) compliance with legal obligations.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority.
  • Data Transfers: When we transfer your data outside the EEA/UK, we rely on Standard Contractual Clauses or other appropriate safeguards.
  • Data Protection Officer: For GDPR-related inquiries, contact us at privacy@ephemeral.com.

7.2 Data Retention

We retain your data as follows:

  • Messages: Automatically deleted based on room settings (timed expiry or when all users leave). No backups are created.
  • Account Information: Retained while your account is active. Deleted within 30 days of account deletion.
  • Payment Information: Handled by Stripe per their retention policies. We store only Stripe customer IDs.
  • Usage Logs: Server logs are retained for up to 90 days for security and debugging purposes, then automatically purged.

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience. See our Cookie Policy for more details.

9. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

Email: privacy@ephemeral.com