1. Introduction

1.1 Commitment to Privacy and Data Protection

At Lighthouse, we prioritize the privacy and security of our users. We are committed to transparency, compliance with data protection laws, and ensuring that users have control over their personal data. This Privacy Policy explains how we collect, use, share, and protect your information when you use Lighthouse. Lighthouse operates in compliance with applicable data protection regulations, including the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA) and the California Consumer Privacy Act (CCPA) for California residents. Our approach is built around safeguarding personal data, limiting unnecessary data collection, and ensuring user rights are respected.

1.2 How We Collect, Use, Share, and Protect Your Data

We collect personal and technical information to provide a seamless and secure user experience.

This includes:

• Personal Data. Information you voluntarily provide when setting up an account or interacting on the platform.
• Technical Data. Automatically collected data that helps us optimize Lighthouse’s functionality and security.
• Third-Party Integrations. Data received from third-party services such as Google, Facebook, and OpenAI APIs for authentication and platform improvements.

We do not sell or share user data with advertisers, affiliates, or research partners. Data is stored securely and only used for platform functionality, personalization, security, and legal compliance. Users have the ability to control, modify, or delete their data as outlined in this policy.

1.3 Users’ Rights Under GDPR & CCPA

We recognize and uphold user rights under GDPR and CCPA, ensuring that individuals can:

• Access their personal data and request a copy of the information stored about them.
• Request correction or deletion of inaccurate or unnecessary data.
• Opt-out of certain data collection and processing activities, including location tracking and AI-driven profiling.
• Request data portability, allowing users to transfer their data to another service.
• Object to or restrict processing of personal data under certain circumstances
• Exercise their right to be forgotten by requesting full deletion of their account and associated data.

For GDPR or CCPA-related requests, users can submit a formal request via email or in-app settings. We respond to verified requests within 30 days, unless a legal obligation prevents immediate action.

1.4 Contact Information for Privacy Inquiries

If you have any questions, concerns, or requests regarding your privacy rights or data handling, you can contact Lighthouse at:

Mailing Address:

My Lighthouse LLC

200 N Green St.
3rd Floor

Chicago, IL 60607

Privacy Inquiries Email: support@hellolighthouse.com

2. Information We Collect

2.1 Personal Data Provided by Users

To provide secure and personalized experiences, Lighthouse collects both required and optional user-provided data.

Required Information (Mandatory for Account Registration)

Users must provide the following details during account creation:

• Full Name
• Alias (User-Generated Display Name)
• Date of Birth (Month, Day, Year)
• Email Address
• Gender
• Location (City, State/Country)

Optional Information (User-Provided Enhancements to Profile)

Users have the option to provide additional details for profile customization and enhanced matchmaking:

• Photos
• Hometown
• Places Traveled
• Pronouns
• Relationship Status
• Education
• Type of Work
• Ethnicity
• Language
• Religion
• Interests
• Political Views
• User-Generated Content

Lighthouse allows users to create content and interact with others through profile customization, posts, and engagement features:

• Profile Description (Bio and personal information shared with connections)
• Posts & Engagement Data (Likes, Hearts, Comments, Shares)
• Messaging Content (Text-based communication with other users)

Lighthouse does not actively monitor or filter user-generated content unless flagged for review, but reserves the right to moderate and remove content that violates platform policies.

2.2 Automatically Collected Data

Lighthouse collects technical and behavioral data to enhance performance, security, and user experience. This data is gathered passively and does not require direct input from users.

Device & Technical Data

• IP Address (Used for security, fraud detection, and regional settings)
• Device Type, Browser Type, and Operating System (For app compatibility and troubleshooting)
• Session Duration & Activity Logs (To track app crashes, errors, and user engagement)

Location Tracking

Lighthouse collects precise location data to enhance matchmaking by connecting users who are geographically close.

• Location data is not shared with third parties and is only used to provide proximity-based recommendations

Usage Data & Behavioral Insights

• Engagement patterns, such as time spent on different features.
• Interest-based data, including prompts and fields used for connection preferences.
• User interactions, such as connections, messages, and content engagement

This data is anonymized where possible and used to improve app functionality, personalised recommendations, and maintain platform security.

2.3 Data from Third-Party Services

Lighthouse integrates with third-party services to provide essential platform features, including:

Third-Party Data Sources

• Google & Facebook APIs. Used for authentication, social logins, and optional profile enhancements.
• OpenAI API. Supports AI-powered matchmaking and content moderation features.
• Analytics Tools. Provide insights on user behavior, engagement trends, and platform performance.

AI-Powered Matchmaking

Lighthouse uses AI to analyze compatibility and suggest matches based on user interests and engagement patterns. This does not involve intrusive profiling, and users can disable certain AI-based personalization settings in their preferences.

No Data Sharing with Advertisers or Affiliates

Lighthouse does not sell, share, or trade user data with advertisers, affiliates, or research organizations. Data collected from third-party integrations is solely used for platform functionality and is governed by strict access controls.

3. How We Use Your Information

3.1 Personalization

Lighthouse uses collected data to improve user experience by tailoring platform interactions based on user preferences.

This includes:

• Enhancing matchmaking by suggesting connections based on interests, engagement, and location.
• Customizing content recommendations within the app.
• Providing a dynamic and interactive feed based on user activity.

Personalization features rely on AI-driven analysis but are designed to remain transparent and adjustable based on user preferences. Users can modify personalization settings in their account settings.

3.2 Security & Fraud Prevention

To maintain a safe and secure platform, Lighthouse implements security measures that monitor, detect, and prevent fraudulent activities, unauthorized access, and policy violations.

This includes:

• Verifying accounts through OTP-based authentication.
• Analyzing user activity patterns to detect suspicious behavior, such as automated bot activity or identity fraud.
• Investigating and mitigating reported abuse, harassment, or platform misuse.

Lighthouse may suspend or restrict accounts involved in policy violations, fraudulent behavior, or security threats. Users engaging in harmful activities may face permanent bans to ensure community safety.

3.3 Platform Analytics

Lighthouse collects and analyzes usage data to optimize platform performance, enhance matchmaking accuracy, and improve overall user engagement.

Analytics tools are used to:

• Measure user interaction with key features such as messaging, content sharing, and connection requests.
• Identify areas of improvement in app functionality and user experience.
• Troubleshoot performance issues and address potential technical faults

Aggregated data is used internally to refine Lighthouse’s matchmaking algorithms, user engagement strategies, and content moderation processes.

3.4 Location-Based Matching

Lighthouse utilizes precise location tracking to improve matchmaking accuracy by suggesting users who are geographically close to one another.

The use of location data includes:

• Displaying potential connections based on proximity.
• Adjusting recommendations to prioritize local engagement and real-world interactions.

Users have control over their location visibility and can choose to enable or disable location-based features through their account settings

3.5 AI Processing

Lighthouse integrates AI-driven tools to enhance matchmaking, moderation, and engagement.

AI processing is used to:

• Analyze user preferences and behavioral patterns to optimize recommendations.
• Moderate content by detecting and flagging potential policy violations.
• Automate matchmaking suggestions based on compatibility scores.

AI-driven decisions are designed to be transparent, and users will be informed when AI is influencing their experience. Users can request manual review of AI-based decisions where applicable.

3.6 Compliance & Legal Obligations

Lighthouse processes personal data in compliance with GDPR, CCPA, and other relevant data protection laws.

This includes:

• Ensuring proper data handling practices that align with user rights under GDPR and CCPA.
• Implementing measures to protect sensitive user information from unauthorized access.
• Providing users with options to access, modify, or delete their data upon request.

Lighthouse complies with applicable privacy laws, including the CCPA and FTC guidelines. Users will be explicitly informed about how their data is processed for marketing purposes, and no personal health information or sensitive personal data will be shared with advertising networks.

3.7 Marketing & Audience Targeting

Lighthouse may use customer data, including engagement patterns and anonymized behavioral insights, to optimize advertising and marketing campaigns.

This includes:

• Creating segmented audiences based on user interactions, interests, and platform usage.
• Using customer names, emails, and other details to create Custom Audiences for targeted advertising on platforms such as Facebook and Google.
• Building Lookalike Audiences to reach similar users through platforms like Facebook, Google, and TikTok.
• Personalizing marketing messages to improve user experience and outreach effectiveness.

What We Do Not Do:

• Lighthouse does not sell personal user data to third-party advertisers.
• Lighthouse does not expose individual user identities or sensitive data publicly in any form.
• Any data used for marketing purposes is anonymized and aggregated to prevent personally identifiable information (PII) from being shared with external platforms.

Lighthouse does not process or share data for purposes outside of those stated in this policy, and legal compliance is a core part of its data handling approach

4. Data Retention & User Control

4.1 User Data Storage

Lighthouse retains user data indefinitely unless a user deactivates or formally requests account deletion. The storage of user data supports platform functionality, security, and compliance.

4.2 Account Deactivation

Users have the option to deactivate their account, which results in:

• The profile and associated content being hidden from other users.
• Data remaining stored but not actively displayed or used for matchmaking.
• The ability to reactivate the account at any time by logging in.

Deactivation is intended as a temporary measure, and user data is preserved in case of reactivation.

4.3 Account Deletion

Users may request permanent deletion of their account and associated data.

Upon receiving a deletion request:

• All personal data, including profile details, messages, and preferences, will be removed from Lighthouse’s active systems.
• Some data may be retained as required by legal obligations, security policies, or fraud prevention measures.

Once an account is permanently deleted, the action is irreversible, and users will not be able to recover any stored information.

4.4 CCPA Rights

California users are granted specific rights under the CCPA, including:

• The right to request access to personal data collected about them
• The right to request deletion of stored data, subject to legal requirements.
• The right to opt out of certain types of data collection and processing.

Users can exercise these rights by contacting Lighthouse Support or accessing the privacy settings within their account. Lighthouse responds to verified CCPA requests within the legally mandated timeframe.

5. Cookies & Tracking Technologies

5.1 Types of Cookies Used

Lighthouse uses cookies and similar tracking technologies to enhance user experience, improve security, and optimize platform performance. Cookies are small text files stored on a user’s device that help Lighthouse recognize returning users, retain preferences, and analyze platform engagement.

The types of cookies used include:

• Essential Cookies. These cookies are required for basic platform functionality, including authentication, fraud prevention, and security. They help users log in securely, maintain session integrity, and prevent unauthorized access. Without these cookies, Lighthouse would not function properly.
• Analytics Cookies. Lighthouse uses analytics tools, such as Google Analytics, to measure user engagement, track feature usage, and optimize platform performance. These cookies collect anonymized data on how users interact with the platform, such as time spent on different features and navigation patterns.
• Personalization Cookies. These cookies enable Lighthouse to tailor user experiences, including matchmaking recommendations and content suggestions. Personalization cookies help refine search results, enhance the relevancy of displayed connections, and ensure a seamless user journey based on previous interactions.

Lighthouse does not use cookies to track users across external websites or serve targeted third-party advertisements.

5.2 User Control

Users have control over how cookies and tracking technologies are used within Lighthouse.

The available options include:

• Opt-out of non-essential cookies. Users can adjust their browser settings to block or delete non-essential cookies. However, disabling certain cookies may limit platform functionality, such as personalized recommendations or seamless authentication.
• Modify in-app preferences for tracking limitations. Users can manage cookie preferences and tracking settings within Lighthouse’s account settings. This allows users to disable certain analytics and personalization features without impacting core platform functionality.

Lighthouse ensures that users are informed about the use of cookies upon their first visit to the platform and provides options to manage their preferences.

6. Data Sharing & Third-Party Integrations

6.1 No Data Sharing with Advertisers or Affiliates

Lighthouse does not sell, rent, or share personal data with advertisers, marketing affiliates, or research organizations. The platform operates on a privacy-first model, ensuring that user information is not monetized through third-party ad networks or commercial partnerships.

6.2 Third-Party Service Providers

Lighthouse integrates with third-party services for essential platform functionality, including authentication, analytics, and AI-driven matchmaking. These services process user data under strict security and privacy agreements to ensure compliance with applicable laws.

Third-party integrations include:

• Google & Facebook APIs. Used for authentication, social logins, and optional profile enhancements.
• OpenAI API. Supports AI-driven matchmaking, content personalization, and moderation tools.
• Analytics Tools (Google Analytics, etc.). Collect anonymized usage data to improve platform performance and optimize matchmaking algorithms.

Lighthouse ensures that data shared with third-party providers is limited to what is necessary for platform functionality and does not expose sensitive user information beyond what is required for service integration.

6.3 In-App Purchases

Lighthouse processes all in-app transactions through Apple and Google’s payment processors, ensuring that payments are secure, encrypted, and compliant with global financial regulations. Lighthouse does not store or process credit card information directly.

Instead:

• Apple App Store (for iOS users) and Google Play Store (for Android users) handle all financial transactions.
• Lighthouse does not have access to full payment details but may receive transaction confirmations from these payment providers for subscription or service validation.
• ny billing inquiries or refund requests related to in-app purchases must be directed to Apple or Google, as they handle payment processing independently.

By using Lighthouse, users acknowledge that financial transactions occur exclusively through third-party payment providers and that Lighthouse does not assume liability for external payment processing issues.

7. User Rights Under GDPR & CCPA

Lighthouse is committed to upholding user rights under the General Data Protection Regulation (GDPR) for European Union (EU) users and the California Consumer Privacy Act (CCPA) for California residents. Users have the right to access, control, and manage their personal data in accordance with these regulations.

7.1 GDPR Rights (For EU Users)

If you are a resident of the European Economic Area (EEA), you have the following rights under GDPR:

• Right to Access. You have the right to request a copy of the personal data Lighthouse has collected and processed about you.
• Right to Rectification. You can request corrections or updates to any inaccurate or incomplete personal information stored by Lighthouse.
• Right to Erasure (“Right to be Forgotten”). You can request the permanent deletion of your account and all associated data unless retention is required for legal or security reasons.
• Right to Object. You have the right to opt out of AI-based processing, matchmaking, and profiling if you do not want automated decision-making to influence your experience.
• Right to Data Portability. You can request your personal data in a structured, machine-readable format and transfer it to another service.

If you wish to exercise any of these rights, you can contact Lighthouse Support through the contact details provided in this policy. Requests will be processed within 30 days unless an extension is required due to the complexity of the request.

7.2 CCPA Rights (For California Users)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to Know. You can request details about the types of personal data collected, how it is used, and whether it is shared with third parties.
• Right to Delete. You can request the deletion of your personal data, subject to certain legal obligations that may require retention (e.g., fraud prevention, compliance).
• Right to Opt-Out. Although Lighthouse does not sell user data, you have the right to opt out of data-sharing activities that could be classified as "sale" under CCPA definitions.

California users can exercise these rights by submitting a request to Lighthouse Support. Verification may be required to protect user privacy and prevent fraudulent requests.

Lighthouse does not discriminate against users who exercise their privacy rights, and access to platform features remains unaffected by data rights requests.

8. Children’s Privacy & Age Restrictions

Lighthouse is designed for users aged 14 and older and does not knowingly collect data from children under this age. By using Lighthouse, users confirm that they meet the minimum age requirement of 14 years.

• Lighthouse does not have a parental consent mechanism for minors under 14. Users between 14 and 17 years old can create an account without parental approval.
• If Lighthouse becomes aware that a user under 14 years old has registered, their account will be immediately terminated, and any associated data will be permanently deleted.
• Parents or guardians who suspect that their child has used Lighthouse without meeting the age requirement can contact support to request data removal.

Lighthouse strongly encourages young users to exercise caution when engaging with others on the platform and to follow online safety best practices.

9. Data Security Measures

Lighthouse prioritizes the security and privacy of user data by implementing robust security measures to prevent unauthorized access, data breaches, and fraudulent activities. Our security framework includes encryption, access control, and continuous risk monitoring to safeguard user information.

9.1 Encryption & Secure Storage

Lighthouse uses industry-standard encryption protocols to protect stored and transmitted data. This ensures that sensitive user information, including personal details and communication history, remains secure from unauthorized access. Data is stored on secure, compliant servers, with measures in place to prevent breaches, hacking attempts, and malicious activity.

9.2 Access Control

To enhance account security, Lighthouse utilizes one-time passcode (OTP) authentication as the primary method for user access.

This means:

• Users do not create or store traditional passwords, reducing the risk of credential theft or phishing attacks.
• Every login attempt requires an OTP sent to the registered phone number, ensuring multi-factor authentication.
• Unauthorized access is significantly reduced since accounts are tied to verified mobile numbers only.

9.3 Risk Mitigation & Fraud Prevention

Lighthouse continuously monitors for suspicious activity, policy violations, and fraudulent behavior using real-time detection systems.

Our risk mitigation strategies include:

• Automated threat detection to identify unusual login attempts or unauthorized access
• Content moderation and abuse detection to filter out harmful, misleading, or deceptive activities.
• Regular security audits to evaluate vulnerabilities, apply security patches, and enhance system resilience.

By maintaining proactive security monitoring and strict authentication protocols, Lighthouse ensures that user data remains protected from cyber threats and unauthorized access.

10. AI Transparency & Automated Decision-Making

Lighthouse integrates artificial intelligence (AI) and machine learning to enhance user experience, improve matchmaking, and moderate platform interactions. We believe in transparency, fairness, and accountability when using AI-driven features.

10.1 Explicit AI Disclosures

Users are clearly informed whenever AI is used to influence their experience.

AI-driven processes on Lighthouse include:

• Algorithmic Matchmaking & Recommendations. AI analyzes user preferences, engagement patterns, and location data to suggest relevant and compatible connections. Users can adjust preferences to modify matchmaking criteria.
• AI-Driven Content Moderation & Reporting. AI tools automatically scan posts, messages, and interactions to detect potential violations of platform policies, such as hate speech, harassment, or spam. Users will be notified if AI takes action against their content, and where applicable, they can request a manual review.

10.2 Responsible AI Usage

Lighthouse ensures that AI is used exclusively to enhance user experience and not for discriminatory profiling or intrusive surveillance.

Our AI systems are designed to:

• Improve user engagement and personalization without bias or unfair treatment.
• Provide transparency in decision-making, allowing users to understand why certain recommendations or moderation actions occur.
• Comply with ethical AI principles, ensuring that automated processes do not result in unfair or discriminatory outcomes.

Users retain control over AI-driven personalization settings and can modify their preferences within the platform. Lighthouse continuously refines its AI systems to ensure accuracy, fairness, and user trust.

11. Amendments to this Privacy Policy

Lighthouse reserves the right to modify or update this Privacy Policy at any time to reflect changes in legal requirements, regulatory obligations, platform features, or internal data handling practices.

• Updates may be necessary due to changes in privacy laws (such as GDPR, CCPA, or other applicable regulations), technological advancements, security improvements, or modifications to Lighthouse’s services.
• Any significant changes that materially impact users' rights or how their data is processed will be communicated in advance through email notifications, in-app messages, or announcements on the Lighthouse platform.
• Users are encouraged to review this Privacy Policy periodically to stay informed about how their data is being handled.

Continued use of Lighthouse after policy updates constitutes acceptance of the revised terms. If a user disagrees with any updates, they may exercise their right to deactivate or delete their account as outlined in this policy.

12. Contact Information

For any privacy-related inquiries, requests, or complaints, users can contact Lighthouse’s privacy team through the following channels:

Address:

My Lighthouse LLC

200 N Green St.
3rd Floor

Chicago, IL 60607

Email: support@hellolighthouse.com

Lighthouse is committed to responding to privacy-related requests in a timely manner, in compliance with applicable data protection laws. Users may also contact us for assistance with exercising their rights under GDPR, CCPA, or any other applicable privacy regulations.