Privacy Policy
Last updated: May 7, 2026
1. Who we are
Matchome.ai (“Matchome,” “we,” “us”) is a Florida company operating a privacy-first real-estate matching platform. Our principal contact for privacy is privacy@matchome.ai.
2. What we collect
- Identifiers: email, optional phone, account ID, IP address, device identifier.
- Demand profile (anonymized): budget, target areas, lifestyle, must-haves, timeline.
- Optional avatar photo + face embedding (subject to separate biometric consent — see §6).
- Listing data you submit if you are an owner or agent: address, price, photos.
- Communications: in-app messages, push tokens, agent reveal toggles.
- Inferences: match scores, preference embeddings used to rank listings.
- Logs: security and abuse audit logs, retained 13 months.
3. Lawful basis (where applicable)
For users in the EU/UK, we process under: (a) contract for account creation, matching, and messaging; (b) explicit consent for biometric features and marketing email; (c) legitimate interest for analytics, abuse prevention, and listing photos with bystanders, balanced against user rights and supported by takedown channels.
4. How we use your information
Match buyers/renters with listings and agents; serve push notifications; detect fraud and abuse; comply with legal obligations (incl. NCMEC reports for CSAM); and improve the service. We do not sell or share personal information for cross-context behavioral advertising. See §10.
5. Anonymity by default
Buyer and renter profiles are anonymous to the other side. Owners and agents see public IDs (e.g., Anonymous Buyer #4032) unless and until you explicitly toggle reveal flags inside a matched chat: first name, full name, phone, email, documents — each is a separate, revocable choice.
6. Biometric information (BIPA + similar laws)
If you upload a face photo for an avatar, we generate and store a mathematical face embedding solely to display your avatar and detect duplicate accounts. Before any face processing, we request your separate written consent. We retain photos and embeddings until the earliest of: (a) you delete the avatar; (b) you close your account; (c) three years after your last interaction; or (d) the initial purpose for collection has been satisfied. We do not sell, lease, or trade biometric information. Our written destruction schedule is at /biometric-policy.
7. Retention
| Data | Retention |
|---|---|
| Active account data | Duration of account + 30 days after closure |
| Face embeddings | Until avatar deletion / account closure / 3-year inactivity |
| Listing photos | 18 months post-delisting |
| Match logs | 12 months |
| Messages | 24 months or until you delete |
| Audit / security logs | 13 months |
| Backups | Rolling 35 days max |
| Marketing consent records | 3 years post-withdrawal |
8. Subprocessors
We rely on the following processors under contract: Vercel (hosting), Neon (database), Anthropic (AI summaries + suggestions), Resend (transactional email), RentCast and ATTOM (public real-estate data), Google Maps (places/streetview), Expo (push notifications), Sentry (error tracking), Upstash (rate limiting). A current list with categories is at /subprocessors.
9. International transfers
Matchome operates in the United States. We do not currently solicit users outside the U.S. If we begin processing EU/UK personal data, we will execute Standard Contractual Clauses with subprocessors and conduct a Transfer Impact Assessment.
10. Your rights (CCPA / CPRA / GDPR / FL)
- Access: request a copy of your data.
- Correction: ask us to fix inaccuracies.
- Deletion: erase your account and associated data within 30 days. Verifiable via in-app Delete account button.
- Portability: receive a machine-readable export.
- Opt-out of sale/sharing: we do not sell or share for cross-context behavioral advertising. To confirm or opt out, visit /do-not-sell.
- Limit use of sensitive personal information: face photos / biometric — withdraw consent anytime in app or by emailing us.
- Non-discrimination: we will not retaliate against rights requests.
- Appeal: if we deny a request, you may appeal to privacy@matchome.ai within 60 days.
Submit any of the above by emailing privacy@matchome.ai or using the in-app deletion control. We respond within 30 days.
11. Security
Photos and embeddings are encrypted at rest (AES-256) and in transit (TLS 1.2+). Auth tokens on mobile live in the device Keychain (iOS) / Keystore (Android). We rate-limit abuse, scan uploads against known CSAM hash databases, and report material to NCMEC as required by 18 U.S.C. §2258A.
12. Children
Matchome is for adults 18 and over. We do not knowingly collect data from children under 13 (COPPA). If you believe we have collected such data, contact us and we will delete it.
13. Changes
We will update this Policy from time to time. Material changes will be announced in-app at least 30 days before they take effect. The “Last updated” date above always reflects the current version.
14. Contact
Matchome.ai · privacy@matchome.ai
This Policy reflects the practices in place at our Beta launch. It will be reviewed by counsel before public general availability.