Download on theApp Store Get it onGoogle Play

Privacy Policy

Last Updated: May 7, 2026 | Effective Date: May 7, 2026 | Version: 3.1

1. Introduction

This Privacy Policy ("Policy") describes how Peopls Inc., a Delaware Public Benefit Corporation ("Peopls," "we," "us," or "our"), collects, uses, shares, and protects your personal information when you use our mobile application and related services (collectively, the "Service").

Peopls Inc. operates a community platform while protecting user privacy. We are committed to transparency about our data practices and giving you control over your personal information.

By using the Service, you consent to the collection, use, and disclosure of your information as described in this Policy. If you do not agree, please do not use the Service.

This Policy is incorporated into and subject to our Terms of Service and Community Guidelines (available in the app under Help & Support and at the URL referenced there). Content and conduct rules in the Community Guidelines supplement this Policy where applicable.

2. Peopls Is a Public Platform

IMPORTANT: Some parts of Peopls are public and can be viewed by anyone, even if they don't have an account.

What Is Public:

  • Story pages (title, description, stated funding targets, photos, videos, location)
  • Story creator's name and profile photo
  • Gratitude posts and updates
  • Display names associated with public Story activity (including Power signals), subject to any anonymity settings you choose
  • Power signal totals and Story progress metrics shown in the app
  • Public profiles of users

What Is NOT Public:

  • Your email address
  • Your phone number
  • Your billing or payout account details (see Privacy Policy categories below)
  • Your identity verification documents
  • Private messages
  • Your precise account balance

Search Engine Visibility:

Story content may be indexed by search engines like Google and may appear in search results. Please consider carefully what personal details you include in publicly visible content.

Anonymous Support:

If you choose to support a Story anonymously, your name will not appear publicly on the Story page. The Story creator may still receive limited account information needed to operate the Service (for example, for support or tax and compliance obligations), as described when you enable anonymous support.

By using Peopls and posting content to public-facing portions of the Service, you are directing us to share that information publicly.

3. Definitions

  • "Personal Information" means information that identifies, relates to, or could reasonably be linked to you or your household.
  • "Sensitive Personal Information" means Personal Information that reveals government IDs, financial account information, biometric data, or precise geolocation.
  • "Processing" means any operation performed on Personal Information, including collection, storage, use, disclosure, or deletion.
  • "Service Provider" means a third party that processes Personal Information on our behalf.
  • "Story" means creator-published content through the Service (which may include personal narrative and stated goals), subject to platform rules, allocation mechanics described in the Terms of Service, and moderation.
  • "User Content" means any content you submit to the Service.

4. Information We Collect

4.1 Information You Provide Directly

Account Registration:

  • Full name (first and last)
  • Email address
  • Password (stored in hashed form)
  • Phone number (optional)

Profile Information:

  • Profile photo/avatar
  • Biography (minimum 100 characters for Story creators)
  • City, state, and country
  • Occupation (optional)

Identity Verification Data:

  • Government-issued identification documents (driver's license, passport, state ID)
  • Selfie photographs for facial verification
  • Date of birth
  • Address information

Financial Information (for optional Supporter enrollment with Peopls Inc., and for creator payouts where applicable):

  • Bank account details you provide for approved story payouts
  • Billing details you provide when completing optional Supporter enrollment (processed by Peopls-designated payment processors as described in the Terms)
  • Billing address when required by the processor

Note: We do not store complete payment card numbers on our servers.

Story Content:

  • Story title and description
  • Declared story funding target amount (USD)
  • Photos and videos
  • Category selection
  • Location data for the Story

Gratitude Post Content:

  • Thank-you videos and images
  • Text descriptions

Communications:

  • Messages sent through the Service
  • Customer support inquiries
  • Feedback and survey responses

4.2 Information Collected Automatically

Device Information:

  • Device type and model
  • Operating system and version
  • Device identifiers used for app security, diagnostics, and fraud prevention (this app does not use advertising SDKs or Apple's IDFA for cross-app tracking, and we do not show the App Tracking Transparency prompt for advertising)
  • Application identifiers on Android as provided by the OS for app-scoped operations
  • Mobile network information
  • Screen resolution and device settings

Usage Data:

  • Features accessed and actions taken
  • Time spent on different screens
  • Story viewing history
  • Power signal and Boost engagement patterns
  • Search queries within the app
  • Error logs and crash reports

Location Information:

  • IP address-based approximate location
  • Precise GPS location (only with your explicit permission)
  • Location data associated with Stories you create

Log Data:

  • Access times and dates
  • App version
  • Referring/exit pages
  • Clickstream data

4.3 Information from Third Parties

Social Login Providers:

If you sign in using Google or Apple:

  • Name and email from your social account
  • Profile photo (if publicly available)
  • Unique identifier from the provider

Payment Processors:

  • Transaction confirmation and status
  • Fraud risk assessments

Identity Verification Services:

  • Verification results (verified/not verified)
  • Document authenticity assessments

We do not receive your social media passwords or access your social accounts beyond what is needed for authentication.

5. How We Use Your Information

5.1 To Provide and Operate the Service

  • Create and manage your account
  • Process optional Supporter enrollment fees, Power signals, Boosts, and creator distributions in line with our Terms of Service
  • Enable Story creation and discovery
  • Facilitate Power signals and Boosts
  • Display your profile to other users

5.2 To Verify Identity and Prevent Fraud

  • Verify your identity for Story creation and withdrawals
  • Detect and prevent fraudulent activities
  • Comply with anti-money laundering (AML) requirements
  • Investigate suspicious activities

5.3 To Communicate With You

  • Send transactional notifications (Power activity, payout status)
  • Respond to your inquiries and support requests
  • Send important service announcements
  • Send promotional content (with your consent)

5.4 To Improve and Personalize the Service

  • Analyze usage patterns and trends
  • Develop new features and services
  • Personalize your experience and recommendations
  • Conduct research and analytics

5.5 To Ensure Safety and Security

  • Monitor for violations of our Terms
  • Protect users from harassment and abuse
  • Maintain platform integrity
  • Secure our systems and data

5.6 To Comply With Legal Obligations

  • Respond to legal requests and court orders
  • Report as required by tax laws (1099-K forms)
  • Comply with regulatory requirements
  • Enforce our Terms of Service

5.7 Artificial Intelligence and Machine Learning

We may use AI and machine learning technologies to:

  • Moderate Story content for policy compliance
  • Detect potentially fraudulent Stories or activities
  • Improve content recommendations and discovery
  • Analyze patterns to enhance fraud prevention
  • Provide automated customer support assistance

Important AI Disclosures:

  • We do NOT use your data to train general-purpose AI models for commercial products unrelated to our Service
  • AI-assisted decisions (such as Story moderation) may be reviewed by human moderators
  • You may request human review of automated decisions that significantly affect you
  • We do not use AI for automated decision-making that produces legal effects without human oversight

AI in Customer Support:

We may offer chatbot or AI-assisted support features. Your interactions with these features may be recorded and used to improve our support services. When providing information to chatbots, avoid sharing sensitive data like passwords or complete financial information.

6. Legal Bases for Processing

We process your Personal Information based on the following legal grounds:

Contract Performance:

Processing necessary to provide the Service you requested, including account creation, Story management, enrollment billing (where applicable), and payout processing.

Legitimate Interests:

Processing for our legitimate business interests, including fraud prevention, security, analytics, and service improvement, balanced against your privacy rights.

Consent:

Processing based on your explicit consent, such as marketing communications, precise location access, and optional data sharing. You may withdraw consent at any time.

Legal Obligation:

Processing required to comply with applicable laws, including tax reporting, anti-money laundering regulations, and responding to legal requests.

Vital Interests:

Processing necessary to protect someone's life or physical safety in emergency situations.

7. Information Sharing and Disclosure

7.1 With Other Users

  • Story creators: Users who send Power signals may have Story details surfaced consistent with the product experience and privacy settings
  • Story creators may see display names associated with public Story activity (subject to anonymity settings)
  • Public profiles: Your name, avatar, and public statistics are visible to other users

7.1.1 Anonymous Support Limitation

If you choose to support a Story anonymously:

  • Your name will NOT appear publicly on the Story page or activity feed
  • However, your name and contact information WILL still be visible to the Story creator
  • This enables Story creators to send thank-you messages and comply with tax requirements
  • Peopls may also access this information for fraud prevention and legal compliance
  • "Anonymous" only means not publicly displayed, not hidden from the Story creator

7.2 With Service Providers

We share information with trusted third parties who assist us:

  • Payment processors designated by Peopls (for optional Supporter enrollment billing and for creator payouts), including fraud prevention
  • Cloud providers: Data storage and hosting
  • Analytics providers: Usage analysis (anonymized where possible)
  • Identity verification services: Document and biometric verification
  • Email/push notification services: Communication delivery

All Service Providers are contractually obligated to protect your information.

7.3 For Legal Reasons

We may disclose information:

  • To comply with laws, regulations, or legal processes
  • To respond to lawful requests from government authorities
  • To protect our rights, property, or safety
  • To protect users or the public from harm
  • To detect, prevent, or address fraud or security issues

7.4 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred. We will notify you of any change in ownership or use of your Personal Information.

7.5 With Your Consent

We may share information for other purposes with your explicit consent.

WE DO NOT SELL YOUR PERSONAL INFORMATION.

We do not share your Personal Information with third parties for their direct marketing purposes without your consent.

8. Third-Party Services

The Service integrates with third-party services. Their privacy practices are governed by their own policies:

Payment processing:

  • Peopls uses payment processors designated in our Terms (for example, optional Supporter enrollment billing and creator payouts). Processor policies and links may be referenced in the Terms of Service.
  • Card and bank details are handled by the processor under PCI-DSS standards where applicable.

Authentication - Google Sign-In:

Authentication - Apple Sign-In:

Push Notifications - Expo:

Cloud Infrastructure:

  • Data stored on secure, SOC 2 compliant infrastructure

We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies.

9. Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards:

  • TLS/SSL encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Secure password hashing (bcrypt)
  • Regular security assessments and penetration testing
  • Intrusion detection and monitoring systems
  • Secure API authentication (JWT tokens)

Organizational Safeguards:

  • Access controls based on role and necessity
  • Employee security training and awareness
  • Background checks for personnel with data access
  • Incident response procedures
  • Regular security policy reviews

Payment Security:

  • PCI-DSS Level 1 compliant payment processing
  • No storage of complete card numbers
  • Tokenization of payment information

Identity Verification Security:

  • Encrypted transmission of verification documents
  • Limited retention of verification images
  • Secure deletion after verification completion

Data Breach Notification:

In the event of a data breach that affects your Personal Information, we will notify affected users and relevant regulators as required by applicable law (including, where relevant, within the timeframes set by GDPR, state breach notification laws, or other applicable regulations).

SECURITY DISCLAIMER:

While we implement robust security measures, no system is completely secure. We cannot guarantee absolute security of your information. You are responsible for maintaining the security of your account credentials.

10. Data Retention

We retain your information only as long as necessary for the purposes described in this Policy:

Account Information:

  • Active accounts: Retained while account is active
  • Deleted accounts: Removed within 90 days of deletion request
  • Some data may be retained longer if required by law

Transaction Records:

  • Financial transaction data: 7 years (tax and legal requirements)
  • Power signal and engagement history: Duration of account plus 1 year

Identity Verification:

  • Verification documents: Deleted within 30 days after successful verification
  • Verification status: Retained while account is active
  • Failed verification attempts: 90 days

Usage and Analytics Data:

  • Detailed usage logs: 12 months
  • Aggregated analytics: May be retained indefinitely (anonymized)

Story Content:

  • Active Stories: Retained while active
  • Completed/deleted Stories: 1 year after completion
  • Associated media files: Deleted with Story

Communications:

  • Support tickets: 3 years
  • Marketing consent records: Duration of consent plus 3 years

Legal Holds:

Information may be retained longer if subject to legal proceedings, investigations, or regulatory requirements.

11. Your Privacy Rights

Depending on your location, you may have the following rights:

Right to Know/Access:

Request information about the categories and specific pieces of Personal Information we have collected about you.

Right to Correct:

Request correction of inaccurate Personal Information. You can update most information directly in your account settings.

Right to Delete:

Request deletion of your Personal Information, subject to certain exceptions (legal obligations, fraud prevention, etc.).

Right to Portability:

Request your Personal Information in a structured, commonly used, machine-readable format.

Right to Opt-Out:

  • Opt out of promotional communications
  • Disable push notifications
  • Withdraw consent for optional data collection

Right to Non-Discrimination:

We will not discriminate against you for exercising your privacy rights.

How to Exercise Your Rights:

  • Email: info@peopls.app
  • In-app: Settings → Privacy → Data Requests
  • Response time: Within 45 days (may be extended by 45 days for complex requests)

We may need to verify your identity before processing requests. We will not fulfill requests that would compromise the privacy of others or conflict with legal obligations.

12. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Categories of Personal Information Collected:

  • Identifiers (name, email, phone, IP address)
  • Financial information (billing and payout details via Peopls-designated payment processors, as described in the Terms)
  • Biometric information (facial verification data)
  • Geolocation data
  • Internet activity (usage data, browsing history within app)
  • Professional information (occupation)
  • Inferences drawn from the above

Sources of Information:

  • Directly from you
  • Automatically through the app
  • From third-party authentication providers
  • From payment processors

Business Purposes for Collection:

  • Providing and improving the Service
  • Identity verification and fraud prevention
  • Communication and customer support
  • Legal compliance

Sharing for Business Purposes:

We share information with Service Providers as described in Section 7.

Your California Rights:

  • Right to know what Personal Information is collected
  • Right to know if Personal Information is sold or disclosed
  • Right to opt-out of sale (we do not sell your information)
  • Right to delete Personal Information
  • Right to correct inaccurate Personal Information
  • Right to limit use of Sensitive Personal Information
  • Right to non-discrimination

Authorized Agents:

You may designate an authorized agent to make requests on your behalf. We require written authorization and identity verification.

Contact for California Requests:

info@peopls.app

Subject line: "California Privacy Request"

13. Children's Privacy

The Service is not intended for children under 18 years of age. We do not knowingly collect Personal Information from children under 18.

If you are a parent or guardian and believe your child under 18 has provided Personal Information to us:

  • Contact us immediately at info@peopls.app
  • We will take steps to delete the information
  • We will terminate the child's account

If we discover we have collected information from a child under 18, we will promptly delete such information and terminate the associated account.

For users between 13-17 in jurisdictions where permitted:

  • Parental consent would be required
  • Currently, we do not accept users under 18

COPPA Compliance:

We comply with the Children's Online Privacy Protection Act (COPPA). We do not knowingly collect information from children under 13 under any circumstances.

14. Biometric Data

For identity verification purposes, we may collect biometric data:

What We Collect:

  • Facial geometry data extracted from selfie photographs
  • This data is used solely to verify your identity matches your government ID

How It's Used:

  • One-time comparison against your submitted ID document
  • Fraud prevention and identity verification
  • Not used for any other purpose

Retention:

  • Facial verification data is processed in real-time
  • Source images (selfies) are deleted within 30 days of successful verification
  • We do not create or store biometric templates for ongoing identification

Third-Party Processing:

  • Biometric comparison may be performed by our identity verification Service Provider
  • Subject to their privacy policy and security measures

Your Rights:

  • You may request information about biometric data processing
  • You may request deletion of biometric data
  • Verification documents can be re-submitted if needed

For Illinois residents (BIPA): We obtain consent before collecting biometric identifiers and follow applicable retention and destruction requirements.

15. Location Data

We collect location data in the following ways:

IP-Based Location:

  • Approximate location (city/region level)
  • Collected automatically
  • Used for fraud prevention and analytics

Precise GPS Location (Optional):

  • Only collected with your explicit permission
  • Used when creating Stories to show location
  • Can be disabled at any time in device settings

Story Location:

  • Address information you provide for Stories
  • Displayed to other users viewing your Story
  • You control what location information to share

How to Control Location Data:

  • Device settings: Disable location permissions for Peopls
  • In-app: Choose not to share location when creating Stories
  • You can create Stories without precise location

We do not track your location in the background or when you are not actively using location-based features.

16. Push Notifications

We send push notifications with your consent for:

Transactional Notifications:

  • Power signal activity on your Stories
  • Payout status updates
  • Story moderation decisions
  • Account security alerts

Engagement Notifications:

  • New Stories matching your interests
  • Updates from Stories you've supported
  • Community milestones

Promotional Notifications (Optional):

  • New features and updates
  • Tips for Story success

Managing Notifications:

  • In-app: Settings → Notifications
  • Device settings: Disable Peopls notifications
  • You can selectively enable/disable notification types

We respect your notification preferences and will not send promotional notifications without consent.

17. Do Not Track

"Do Not Track" (DNT) is a privacy preference that users can set in their web browsers. As a mobile application, we do not respond to DNT browser signals.

However, you can control tracking through:

  • Device privacy settings (Limit Ad Tracking)
  • Opting out of analytics where available
  • Disabling optional data collection features

We do not engage in cross-site tracking or targeted advertising based on your activity on other websites or apps.

18. International Data Transfers

Your information may be transferred to and processed in the United States and other countries where our Service Providers operate.

For Users Outside the United States:

  • Data protection laws may differ from your country
  • By using the Service, you consent to transfer to the U.S.
  • We implement appropriate safeguards for international transfers

Safeguards for International Transfers:

  • Standard Contractual Clauses with Service Providers
  • Service Providers certified under recognized frameworks
  • Encryption of data in transit and at rest

European Users (GDPR):

If you are in the European Economic Area (EEA), UK, or Switzerland:

  • We rely on Standard Contractual Clauses for data transfers
  • You have rights under GDPR including access, rectification, erasure, restriction, portability, and objection
  • You may lodge a complaint with your local supervisory authority
  • Contact our privacy team for GDPR-specific requests

19. SMS and Text Message Communications

If you provide your phone number, you may receive SMS/text messages from Peopls:

Types of Messages:

  • Account verification codes (security-related, cannot opt out)
  • Two-factor authentication codes
  • Story status updates (optional)
  • Payout notifications (optional)
  • Marketing messages (optional, with consent)

Opting Out:

  • Reply STOP to any marketing message to unsubscribe
  • Manage preferences in Settings → Notifications
  • Contact info@peopls.app
  • Note: You cannot opt out of security-related messages (verification codes) while maintaining an active account

Message Frequency:

  • Security messages: As needed for account security
  • Transactional messages: Based on your activity
  • Marketing messages: No more than 4 per month (if opted in)

Costs:

  • Standard message and data rates from your carrier may apply
  • We do not charge for messages we send

Phone Number Changes:

If you change or deactivate your phone number, promptly update your account information to prevent messages from being sent to the new holder of your old number.

We do not share your phone number with third parties for their marketing purposes.

20. Links to Third-Party Websites and Services

The Service may contain links to third-party websites, services, or applications that are not operated by Peopls.

Third-Party Links:

  • Social media sharing buttons
  • External resources referenced in Stories
  • Payment processor websites
  • App store links

Our Responsibility:

  • We are NOT responsible for the privacy practices of third-party sites
  • Links do not imply endorsement by Peopls
  • We have no control over third-party content or practices

Your Responsibility:

  • Review the privacy policies of any third-party site you visit
  • Exercise caution when providing information to third parties
  • Understand that information you provide to third parties is subject to their policies

Embedded Content:

Stories may contain embedded content (videos, images, etc.) from third-party services. Such content behaves as if you visited those third-party sites directly.

21. Regional Privacy Disclosures

European Economic Area, UK, and Switzerland (GDPR):

Legal Bases for Processing:

  • Contract: Processing necessary for service provision
  • Legitimate Interest: Fraud prevention, security, analytics
  • Consent: Marketing, optional features
  • Legal Obligation: Tax reporting, law enforcement requests

Your GDPR Rights:

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing
  • Right not to be subject to automated decision-making

Data Protection Authority:

You have the right to lodge a complaint with your local supervisory authority. For a list of EU Data Protection Authorities, visit: https://edpb.europa.eu/about-edpb/about-edpb/members_en

Nevada Residents:

If you are a Nevada resident, you have the right to opt out of the sale of certain personal information. We do not currently sell personal information as defined in Nevada Revised Statutes Chapter 603A. To submit an opt-out request, email info@peopls.app with subject "Nevada Do Not Sell Request."

Colorado Residents:

Colorado residents have rights under the Colorado Privacy Act, including rights to access, correct, delete, and obtain a copy of personal data. To exercise these rights, contact info@peopls.app.

Virginia Residents:

Virginia residents have rights under the Virginia Consumer Data Protection Act. Contact info@peopls.app to exercise your rights.

Other US States:

Residents of other states with privacy laws (Connecticut, Utah, Oregon, Texas, Montana, etc.) may have similar rights. Contact info@peopls.app for state-specific requests.

22. Volunteered Information

We may collect information through:

  • Community forums and comments
  • Surveys and questionnaires
  • Customer support communications
  • Feedback and suggestions
  • Ideas for new features or improvements

Use of Volunteered Information:

By submitting suggestions, ideas, feedback, or other voluntary information:

  • You grant us a non-exclusive, royalty-free, perpetual license to use such information
  • We are under no obligation of confidentiality regarding this information
  • We may use your feedback to improve our Service without compensation to you
  • You acknowledge that similar ideas may be independently developed by us or submitted by others

Public Comments:

Comments posted on Stories or public forums are visible to other users and may be used by us for promotional purposes or platform improvement.

This section survives any termination of your account or the Service.

23. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors.

How We Notify You:

  • Material changes: Email notification and in-app notice at least 30 days before effective date
  • Minor changes: Posted on this page with updated "Last Modified" date

Your Continued Use:

Your continued use of the Service after changes become effective constitutes acceptance of the revised Policy. If you do not agree with changes, you should stop using the Service and delete your account.

Previous Versions:

You may request previous versions of this Policy by contacting info@peopls.app.

24. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices:

Privacy Inquiries:

Email: info@peopls.app

Data Protection Officer (DPO):

Email: info@peopls.app

For GDPR-related inquiries and European data subject requests.

Data Protection Requests:

Email: info@peopls.app

Subject: "Data Protection Request"

General Support:

Email: info@peopls.app

Security Concerns:

Email: info@peopls.app

Legal Matters:

Email: info@peopls.app

Mailing Address:

Peopls Inc.

Attn: Privacy Team

16192 Coastal Highway

Lewes, DE 19958

United States

Response Time:

  • General privacy inquiries: Within 10 business days
  • Data access/deletion requests: Within 45 days (as required by law)
  • GDPR requests: Within 30 days
  • Complex requests may be extended with notice

Complaints:

If you are unsatisfied with our response, you may have the right to lodge a complaint with a data protection authority in your jurisdiction.

For EU/EEA residents: Contact your local Data Protection Authority

For UK residents: Contact the Information Commissioner's Office (ICO)

For California residents: Contact the California Attorney General