Privacy Policy - Protecting Your Information at Yepper!

Privacy Policy

Last updated: June 1, 2026

The short version. Yepper is a social event & calendar app. We collect only what we need to run the service — your account info, the events & communities you create or join, and optional location data so we can show you nearby groups. We don't sell your data. We don't track you across other apps.

1. Who we are

Yepper (“we”, “us”, “our”) is the operator of the Yepper mobile and web application. Contact us at support@yepper.app for any privacy question or to exercise any right described below.

2. What information we collect

2.1 Account information

  • Email address — used to sign you in and send you essential account messages.
  • Display name and (optional) profile photo and bio — shown to other users on your profile and on content you post.
  • Password — stored as a one-way bcrypt hash. We never see, log, or transmit your raw password after the moment you submit it.
  • Google account ID (only if you sign in with Google) — used solely to authenticate you. We do not request access to your Gmail, Drive, contacts, or any other Google service.

2.2 Content you create

  • Events you create or import (title, description, time, location, photo).
  • Communities you create, join, or follow.
  • “Yeps” (interest signals), comments, and check-ins.
  • Friend connections you initiate or accept.

2.3 Optional location data

  • Home location (optional) — if you set one in your profile, we store the city name plus latitude/longitude so we can surface local communities to you. You can change or remove this at any time from Edit Profile.
  • Event & check-in locations — when you attach a location to an event or check-in, that location is visible to the audience you chose (your friends, a community, or the public, depending on the event’s settings).

2.4 Device and technical data

  • Push notification tokens (FCM on Android, APNs on iOS) — required to deliver event reminders, friend requests, and other in-app notifications you’ve opted in to.
  • Basic request logs — IP address, user-agent, and timestamps of API calls — retained for security and debugging for up to 30 days.

2.5 What we do not collect

  • We do not track you across other apps or websites.
  • We do not access your phone’s contacts.
  • We do not access your calendar contents (we use a write-only hook to add events you choose to save — we never read or upload existing calendar entries).
  • We do not run third-party advertising SDKs.
  • We do not collect biometric, health, or financial data.

3. How we use your information

  • Provide the service — show you events, communities, friends, and notifications relevant to you.
  • Personalize discovery — use your optional home location to surface local communities; use your friend graph to rank events.
  • Deliver notifications — push event reminders, check-in nudges, friend requests, and similar in-app alerts.
  • Keep the service safe — detect spam, abuse, and security threats.
  • Communicate with you — answer support requests; send essential service announcements.

4. Who we share information with

We share data only with the processors needed to run the service:

  • Google LLC — Google Sign-In (only if you choose it) and Google Places API for the location autocomplete box. Google’s privacy policy: policies.google.com/privacy.
  • Apple Push Notification Service (Apple Inc.) and Firebase Cloud Messaging (Google LLC) — deliver notifications to your device.
  • SuprSend, Inc. — relays push notifications from our server to APNs/FCM.
  • Emergent — our hosting and managed-MongoDB provider for the Yepper API and database.

We don’t sell or rent your personal information to anyone, ever.

5. Other users see your content

Yepper is a social product. Content you post (events you create, Yeps you give, comments you make, check-ins you publish, etc.) is visible to the audience you choose when posting:

  • Public events / public communities — visible to all Yepper users and may appear in global search.
  • Private communities — visible only to members of that community.
  • Friends-only posts — visible only to people you’ve added as friends.

Your home location, your email address, and any push notification tokens are never shown to other users.

6. How long we keep it

  • Account data is kept while your account is active.
  • You can delete your account at any time from Profile → Account → Delete account. Deletion removes your profile, events you created, Yeps, comments, check-ins, community memberships, and friend connections within 30 days.
  • Backups are encrypted and purged on a rolling 30-day window.
  • Request logs are retained for up to 30 days for security and debugging.

7. Your rights

Depending on where you live, you have the right to:

  • Access a copy of the personal data we hold about you.
  • Correct inaccurate data (most fields are editable from Edit Profile).
  • Delete your data (in-app, via the Delete account flow, or by emailing us).
  • Object to or restrict certain processing.
  • Withdraw consent for optional features (e.g. push notifications, home location) at any time from Settings.

To exercise any of these rights, email support@yepper.app and we’ll respond within 30 days.

8. Security

All traffic between the Yepper app and our servers is encrypted in transit (HTTPS / TLS 1.2+). Passwords are stored as bcrypt hashes. Session tokens are JWTs scoped to your account and revoked on logout or account deletion. We follow the principle of least privilege internally — only a small number of engineers can access production data, and only when required to support or repair the service.

9. Children

Yepper is not directed to children under 13 (or under 16 in the European Economic Area). We do not knowingly collect personal data from children. If you believe a child has provided data, please email support@yepper.app and we will delete the account.

10. International transfers

Yepper is operated from the United States. By using Yepper, you understand your data will be processed in the United States. Where required, we rely on Standard Contractual Clauses or equivalent safeguards for transfers from the EEA, UK, and Switzerland.

11. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be announced in-app at least 7 days before they take effect. The “Last updated” date at the top of this page always reflects the current version.

12. Contact

For any privacy question or request, email support@yepper.app.

©Copyright. All rights reserved.

Information icon

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.