1. Introduction
1st Grade Dynamics ("we," "us," "our") operates Enshrine. This Privacy Policy explains what personal information we collect, why we collect it, how we use it, who we share it with, and the rights you have over it.
Enshrine is available only to residents of the United States and Canada. This policy is written with those two jurisdictions in mind and complies with:
- The Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada
- The California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA)
- Other applicable state and provincial privacy laws
2. Who Is Responsible for Your Information
1st Grade Dynamics 4010 W Okanogan AVE, Kennewick WA 99336
Privacy contact: [email protected]
This address and email are also the designated accountability contact for PIPEDA purposes (see Section 11).
3. Information We Collect
3.1 Information You Provide
- Account data: name, email address, date of birth, gender, sexual orientation (optional), photos, and profile information.
- Identity and age verification: government-issued ID data, processed solely to confirm you are 18 or older and not retained once verification completes.
- Biometric liveness selfies and Didit session identifiers: we use Didit, a third-party identity-verification provider, to capture a brief liveness selfie when you sign up and during periodic re-verification. Didit processes the selfie on its infrastructure to confirm you are a real, live person; Enshrine does not store your raw selfie or biometric template. If Enshrine suspends your account for violating our Community Guidelines, we retain the opaque Didit session identifier associated with your suspended account for up to one (1) year to prevent banned users from creating new accounts with the same face ("ban-evasion"). The session identifier is a random string; it is not itself a biometric. After one year, or upon a successful appeal, the identifier is deleted. You may request earlier deletion by contacting us — note that doing so removes the evasion safeguard and will not automatically restore a suspended account.
- Communications: messages, chat logs, and live video session metadata.
- Payment data: purchase records returned to us by Google Play Billing or the Apple App Store. We do not receive your full payment card number.
- User content: photos, videos, and other media you upload.
3.2 Information Collected Automatically
- Device data: device type, operating system, unique device identifiers, IP address.
- Usage data: which features you use, match activity, session length.
- Location data: approximate or precise location, depending on the permissions you grant.
- Local storage: session tokens and preferences — see our Cookie Policy.
3.3 Information from Third Parties
- Social login providers (Google, Apple) if you use them to sign in.
- Identity-verification partners.
4. How We Use Your Information
- To create and operate your account.
- To generate AI-assisted match suggestions.
- To deliver messaging, video, and other features you use.
- To process in-app purchases and manage subscriptions.
- To verify your age.
- To detect and prevent fraud, abuse, and illegal activity.
- To improve the product and fix bugs.
- To send you service messages. Promotional messages are sent only with your consent.
- To comply with legal obligations.
5. AI-Based Matching and Automated Processing
Enshrine uses automated systems to suggest matches based on your profile, preferences, location, and in-app behaviour. These suggestions are not guarantees of compatibility or safety. If an automated decision materially affects you — for example, a safety-related account action — you can ask a human at 1st Grade Dynamics to review it. Write to [email protected].
6. Who We Share Information With
We do not sell your personal information.
We share information with:
- Service providers who operate the infrastructure Enshrine depends on — hosting, payment processing, moderation, verification. These providers handle your data on our behalf under contract and are not permitted to use it for their own purposes.
- Law enforcement when required by a valid legal process, or when we believe it is necessary to prevent serious harm.
- A successor organization in the event of a merger, acquisition, or asset sale.
- Anyone you explicitly authorize.
7. Where Your Data Is Processed
Our backend is hosted in the United States by Supabase Inc. If you are a Canadian resident, your personal information is transferred to and stored in the United States. While your data is in the U.S. it is subject to U.S. law, which can include lawful requests from U.S. government agencies.
By creating an account, you consent to this cross-border transfer. You can withdraw that consent at any time by deleting your account.
8. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Duration of account + 30 days after deletion |
| Messages and chat logs | Up to 30 days after account deletion |
| Age verification data | Deleted as soon as verification completes |
| Didit liveness selfies | Not stored by Enshrine; retained by Didit per its own privacy policy |
| Didit session IDs for suspended accounts (ban-evasion) | 1 year after suspension, or until successful appeal |
| Payment records | 7 years (legal requirement) |
| Location data | Rolling 30-day window |
| Moderation and safety logs | Up to 5 years |
Once a retention period expires we delete or irreversibly anonymize the data.
9. Your Rights — All Users
Regardless of where you live in the U.S. or Canada, you can:
- Access the personal information we hold about you.
- Correct information that is wrong or out of date.
- Delete your account and the data associated with it.
- Withdraw any consent you previously gave.
To exercise any of these, email [email protected] or use the in-app privacy controls under Settings.
10. California Residents (CCPA / CPRA)
If you live in California you have additional rights specific to your state, including the right to know what categories of personal information we collect, the right to opt out of sale or sharing, and the right to limit our use of sensitive personal information. These rights and how to exercise them are covered in our separate California Privacy Policy.
We respond to California requests within 45 days.
11. Canadian Residents (PIPEDA)
If you live in Canada, your personal information is handled under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and any provincial privacy law that applies to you (for example, Quebec's Law 25, British Columbia's PIPA, or Alberta's PIPA).
Accountability
1st Grade Dynamics is accountable for your personal information. Our designated privacy contact for PIPEDA matters is:
[email protected] 1st Grade Dynamics, 4010 W Okanogan AVE, Kennewick WA 99336
What you can do
You can ask us for:
- A copy of the personal information we hold about you, plus a general account of how it's been used and who it's been shared with.
- Correction of anything inaccurate or incomplete.
- Withdrawal of any consent you previously gave — for example, location sharing or optional profile fields. Withdrawing consent may reduce or end your access to features that rely on that data.
We respond to verified requests within 30 days.
Complaints
If you think we have mishandled your personal information, tell us first at [email protected] — we take that seriously and try to resolve complaints directly. If our response does not satisfy you, you can file a formal complaint with the Office of the Privacy Commissioner of Canada:
- Website: https://www.priv.gc.ca
- Toll-free: 1-800-282-1376
Residents of Quebec, British Columbia, and Alberta may also contact their provincial privacy commissioner.
12. Children's Privacy
Enshrine is strictly for users 18 and older. We do not knowingly collect data from anyone under 18. If we learn that a minor has created an account, we delete the account and the associated data immediately.
13. Security
We protect your data with encryption in transit (TLS), encryption at rest, access controls scoped to the minimum necessary, and periodic security review. No system is perfectly secure — we will notify affected users and relevant authorities if a breach occurs that poses a real risk of significant harm, as required by law.
14. Changes to This Policy
If we change this policy in a material way, we will tell you in-app before the change takes effect. The "Last Updated" date at the top always reflects the current version.
15. Contact
1st Grade Dynamics 4010 W Okanogan AVE, Kennewick WA 99336 [email protected]
California Privacy Notice
Supplemental Notice for California Residents
This California Privacy Policy supplements our main Privacy Policy and applies solely to residents of the State of California. It is provided pursuant to the California Consumer Privacy Act of 2018 (CCPA) as amended by the California Privacy Rights Act of 2020 (CPRA).
1. Categories of Personal Information Collected
In the past 12 months, we have collected the following categories of personal information:
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email, IP address, device ID | Yes |
| Personal records | Account profile, age, photos | Yes |
| Protected classifications | Age, gender, sexual orientation (optional) | Yes |
| Commercial information | Purchase history, subscription data | Yes |
| Biometric information | Age verification facial scan (if used) | Conditional |
| Internet and network activity | Browsing within app, feature usage | Yes |
| Geolocation data | Approximate and/or precise location | Yes |
| Audio and visual data | Profile photos, video content, live video | Yes |
| Inferences | Match preferences, behavioral profile | Yes |
| Sensitive personal information | Sexual orientation, precise geolocation, biometric | Yes |
2. Sources of Personal Information
- Directly from you (registration, profile, purchases).
- Automatically from your device and app usage.
- Third-party identity verification providers.
- Social login providers (if used).
- Analytics and advertising partners.
3. Business or Commercial Purposes for Collection
We collect personal information for the following purposes:
- Operating and improving the Service.
- Age and identity verification.
- AI-based match recommendations.
- Processing payments and subscriptions.
- Safety, fraud detection, and legal compliance.
- Marketing and advertising (with consent where required).
- Analytics and product development.
4. Disclosure of Personal Information
In the past 12 months, we have disclosed personal information to:
| Category of Recipient | Categories Disclosed |
|---|---|
| Service providers (hosting, analytics, payment) | Identifiers, usage, commercial |
| Identity verification partners | Identifiers, biometric (if applicable) |
| Advertising partners | Identifiers, inferences, usage |
| Law enforcement (when required) | Identifiers, communications |
| Successors in business transfers | All categories |
5. Sale or Sharing of Personal Information
We do not sell personal information for monetary consideration.
If enabled in our services, we may "share" certain data (as defined under CPRA) with advertising partners for cross-context behavioral advertising. You have the right to opt out of this sharing.
To opt out: Visit the Do Not Sell or Share My Personal Information page in the app settings, or contact us at [email protected].
We do not knowingly sell or share the personal information of minors under 18.
6. Use of Sensitive Personal Information
We collect the following sensitive personal information:
- Sexual orientation (optional, provided by you for matching purposes).
- Precise geolocation (with consent, for location-based features).
- Biometric data (only if facial-scan age verification is used; deleted post-verification).
We use sensitive personal information only for the purposes for which it was collected. We do not use it to infer characteristics beyond what you have provided.
To limit our use of your sensitive personal information, contact us at [email protected] or use the in-app controls.
7. Your California Privacy Rights
As a California resident, you have the following rights:
7.1 Right to Know
You may request disclosure of:
- The categories and specific pieces of personal information collected about you.
- The categories of sources from which it was collected.
- The business purpose for collection.
- The categories of third parties to whom we disclose it.
7.2 Right to Delete
You may request deletion of your personal information, subject to certain exceptions (e.g., legal obligations, security purposes).
7.3 Right to Correct
You may request correction of inaccurate personal information.
7.4 Right to Opt Out of Sale and Sharing
You may direct us not to sell or share your personal information for advertising purposes.
7.5 Right to Limit Use of Sensitive Personal Information
You may direct us to limit our use of sensitive personal information to purposes reasonably necessary for providing the Service.
7.6 Right to Non-Discrimination
We will not discriminate against you for exercising any of your rights, including by denying service, charging different prices, or providing a lesser quality of service.
8. How to Submit a Request
You or your authorized agent may submit a request by:
- Email: [email protected]
- In-App: Settings > Privacy > My Privacy Rights
- Mail: 1st Grade Dynamics, 4010 W Okanogan AVE, Kennewick WA 99336
If you use an authorized agent, the agent must provide signed written permission from you demonstrating authority to act on your behalf, and we may still contact you directly to verify the request. We will verify your identity before processing requests. We will respond within 45 days; we may extend by an additional 45 days with notice.
9. Financial Incentives
We do not currently offer financial incentives in exchange for retention of personal information.
10. Shine the Light (California Civil Code Section 1798.83)
California residents may request information about personal information disclosed to third parties for their own direct marketing purposes during the past calendar year. Submit requests to [email protected] with the subject line "Shine the Light Request."
11. Contact
1st Grade Dynamics 4010 W Okanogan AVE, Kennewick WA 99336 Privacy Email: [email protected]
For CCPA/CPRA inquiries, include "California Privacy Request" in the subject line.