Legal

Privacy Policy

Effective Date: April 15, 2026 · Last Updated: April 15, 2026

Pinfall is built on a single principle: you are anonymous. We designed this privacy policy to be transparent about what little data we collect, why we collect it, and how we protect it. We comply with the EU General Data Protection Regulation (GDPR), Turkey's Personal Data Protection Law (KVKK), and the California Consumer Privacy Act (CCPA).

Table of Contents

Who We Are
Data We Collect
Data We Do NOT Collect
Location Data & Fuzzing
Anonymous Device Identifier
Content Moderation
Analytics & Crash Reporting
Data Sharing
Data Retention
Children's Privacy
Your Rights
Security
Changes to This Policy
Contact Us

1. Who We Are

Pinfall (“we,” “us,” or “our”) is the operator of the Pinfall mobile application (the “App”) and the website located at pinfall.app (the “Site”). Together, the App and Site are referred to as the “Service.”

If you have questions about this Privacy Policy, please contact us at [email protected].

2. Data We Collect

We collect the absolute minimum data necessary to operate the Service:

Category	What We Collect	Why We Collect It	Legal Basis
Anonymous Device ID	A randomly generated UUID, stored only as a one-way hash.	To allow you to manage (delete) your own pins without an account.	Legitimate interest / contract performance
Fuzzed Location	An approximate geographic coordinate shifted 50–150 m from the real GPS point.	To place pins on the map. The real coordinate is never stored.	Explicit user consent (location permission)
Pin Content	Text of your note (max 280 chars), selected category, and timestamp.	Core product functionality.	Contract performance
Reactions	Aggregated counts of ♡ and Echoed reactions per pin.	To display popularity signals on pins.	Legitimate interest
Technical Logs	Server-side error logs (HTTP status, endpoint, timestamp). No user identifiers.	Service reliability and abuse detection.	Legitimate interest
Aggregated Analytics	Session counts, feature usage — all anonymized and aggregated.	To understand how the product is used and improve it.	Legitimate interest

3. Data We Do NOT Collect

Your name, email address, phone number, or any contact information.
Your real GPS coordinates (coordinates are fuzzed on our servers before storage).
Your IP address linked to any content you have posted.
Biometric data, payment information, or government-issued identifiers.
Information about your contacts, photos, or other apps on your device.
Behavioral profiles or cross-app tracking identifiers (no IDFA / GAID collection).
The content of emergency distress messages — these are never logged.

4. Location Data & Fuzzing

You initiate: You tap the "+" button and choose to use your current location or pick a point on the map.
Your device shares coordinates: Your device's GPS sends a coordinate to our servers over an encrypted HTTPS connection.
We apply fuzzing (if current location is used): Our server applies a random offset of 50–150 meters to your GPS coordinate. The true coordinate is held in memory only for the duration of this operation.
Only the fuzzed coordinate is stored: We write the shifted coordinate to our database. The original coordinate is never written to disk, logs, or any storage medium.
Map pick mode: If you manually tap a location on the map, you are choosing a point deliberately and no fuzzing is applied.

We request the "While Using App" location permission on iOS and the "Precise Location" permission on Android. We do not request background location access.

5. Anonymous Device Identifier

To allow you to delete your own pins, the App generates a random UUID on first launch. This UUID is:

Stored only on your device (in secure local storage).
Transmitted to our servers only when you perform actions — as a salted, one-way SHA-256 hash. We cannot reverse it to identify you.
Not linked to your device's IDFA, GAID, or any platform identifier.
Not shared with any third party.

Reinstalling the App generates a new UUID. You will lose the ability to delete pins associated with the old UUID.

6. Content Moderation

Layer 1 — Rule-based filter: Character limits, spam detection, URL/phone-number extraction, explicit keyword matching.
Layer 2 — OpenAI Moderation API: Detects hate speech, harassment, violent content, sexual content, and self-harm signals.
Layer 3 — Context-aware language model: A secondary AI model handles Turkish slang, indirect insults, and culturally sensitive expressions.

The text of your note is sent to OpenAI's API for moderation. OpenAI processes this content under its own Privacy Policy. Moderation requests are not used to train OpenAI's models.

Emergency content: If our system detects keywords associated with self-harm or harm to others, the note is suppressed and crisis resources are shown to you (Turkey: 182; international: Crisis Text Line — text HOME to 741741). No log of this interaction is created.

7. Analytics & Crash Reporting

All analytics are aggregated; no event is tied to an individual user or device.
Crash reports contain stack traces and device OS/version. They contain no user content or identifiers.
We do not use Google Analytics, Facebook Pixel, or any advertising attribution SDK.

8. Data Sharing

We do not sell, rent, or trade your data. We share limited data only in the following circumstances:

Recipient	Data Shared	Purpose
Cloud infrastructure (AWS)	Encrypted database contents, logs	Hosting the Service
OpenAI	Pin text submitted for moderation	Content safety
Anthropic (Claude API)	Pin text for Turkish language moderation	Content safety — Turkish layer
Firebase Cloud Messaging	Device push token (Premium users who opt-in)	Push notifications
Law enforcement	Data we legally hold, if required by a valid court order	Legal obligation

All third-party providers are bound by data processing agreements (DPAs) consistent with GDPR requirements.

9. Data Retention

Pins and content: Retained until you delete them. You can delete your own pins at any time via the App.
Anonymous device ID hash: Retained as long as you have active pins. Deleted when all your pins are removed.
Technical error logs: Automatically purged after 30 days.
Aggregated analytics: Retained indefinitely in anonymized, aggregated form.

10. Children's Privacy

Pinfall is intended for users aged 17 and older. We do not knowingly collect any data from children under the age of 13 (or 16 in the European Union). If you believe a child has posted content on the Service, please contact us at [email protected] and we will remove it promptly.

11. Your Rights

Depending on your jurisdiction, you may have the following rights:

Right	Description	Applicable Regulation
Access	Request a copy of the personal data we hold about you.	GDPR Art. 15 / KVKK Art. 11 / CCPA
Deletion	Request that we delete your data. You can delete your own pins directly in the App.	GDPR Art. 17 / KVKK Art. 11 / CCPA
Correction	Request correction of inaccurate data.	GDPR Art. 16 / KVKK Art. 11
Portability	Request your data in a structured, machine-readable format.	GDPR Art. 20
Withdraw Consent	Withdraw location permission at any time via your device settings.	GDPR Art. 7 / KVKK Art. 5
Lodge a Complaint	File a complaint with your local data protection authority.	GDPR Art. 77 / KVKK Art. 14

To exercise any right, email us at [email protected]. We will respond within 30 days.

12. Security

All data in transit is encrypted using TLS 1.2+.
Data at rest is encrypted using AES-256.
Production databases are not accessible from the public internet.
Internal access to production data requires multi-factor authentication.
We conduct periodic security reviews of our infrastructure.

If you discover a security vulnerability, please disclose it responsibly to [email protected].

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page and, for material changes, notify you via an in-app notice. Your continued use of the Service after the effective date constitutes your acceptance of the changes.

14. Contact Us

Pinfall

Email: [email protected]

Support: [email protected]

Security: [email protected]

For GDPR / KVKK data subject requests, please include your device UUID (found in Settings → Privacy → My Device ID) in your email.