What Information Do We Collect?
Information you provide directly
We collect personal information you voluntarily provide when you register, express interest in our services, or contact us. This includes:
- Email address and username
- Display name and profile photo
- Bio, interests, intent tags, industry, job title, and company
- University email address (Campus Mode — .edu verification only)
Sensitive information
With your consent or as permitted by applicable law, we may process the following sensitive categories:
- Biometric data (selfie verification — see Section 5)
- Precise geolocation data (converted immediately to zone labels — never stored as raw coordinates)
Payment data
If you subscribe to Passport or Passport+, payment is processed by Stripe. We store only your subscription tier — not card numbers or financial credentials. Passport and Passport+ subscriptions are billed monthly and can be cancelled at any time. Cancellation takes effect at the end of the current billing period. Refunds are not issued for partial months. Users who believe they were charged in error should contact smcrae@southerninnovationsalliance.com within 30 days of the charge.
Application and device data
When you use the Tangnt app, we may also collect:
- Geolocation — GPS accessed only when the app is open; immediately converted server-side to a named zone label
- Camera access — for selfie verification only
- Push notification permissions — for orbit alerts, signals, and match notifications
- Background location — native Capacitor app only, with explicit permission
- Device information — type, OS, browser, IP address, and session data
Information collected automatically
We automatically collect log and usage data, device data, and approximate location data derived from IP address. This information is used solely for security, troubleshooting, and internal analytics — never for advertising.
How Do We Process Your Information?
We process your personal information to provide, improve, and administer our services, communicate with you, and prevent fraud. Specifically:
- To create and authenticate your account
- To detect proximity encounters and calculate Orbit, Resonance, and Frequency scores
- To surface connections through Encounter, Orbit, and Frequency modes
- To deliver signals, matches, and push notifications
- To process Passport subscription payments via Stripe
- To verify campus eligibility via .edu email
- To generate AI-powered icebreakers for matched users
- To protect the safety and integrity of the platform
- To comply with our legal obligations
What Legal Bases Do We Rely On?
We process your personal information only when we have a valid legal reason to do so. For EU and UK users, we rely on the following GDPR bases:
- Consent — for location access, push notifications, and AI features. You can withdraw consent at any time via app settings or Ghost Mode.
- Contractual necessity — to deliver the services you signed up for, including proximity detection, matching, and subscription billing.
- Legal obligations — to comply with applicable laws and regulatory requirements.
- Vital interests — in rare situations involving safety threats to you or others.
When and With Whom Do We Share Your Information?
We disclose personal information to service providers who help us operate the platform. We do not sell your data. We do not share with advertisers. The third parties we work with are:
- Supabase — database hosting, authentication, and edge functions (US)
- Stripe — payment processing for Passport subscriptions (US)
- Lovable — app hosting and deployment infrastructure (US)
- Squarespace — website hosting for gettangnt.io (US)
- Formspree — investor contact form submissions (US)
- Apple / Google — push notification delivery via VAPID (US)
- AI verification service — selfie verification processing (third-party AI provider)
We may also share information in connection with a merger, acquisition, or sale of company assets. In that event, we will notify you before your data is transferred.
Do We Offer AI-Based Products?
Yes. Tangnt uses AI for two purposes:
- Selfie verification — AI checks that a submitted photo is a real person to prevent fake profiles. The photo is processed to generate a verification result and is not permanently stored.
- Icebreaker generation — AI generates conversation starters based on shared profile interests and encounter context. Icebreakers are suggestions only and require user action to send.
No AI is used for automated decision-making that produces legal or similarly significant effects. To opt out of AI features, update your preferences in account settings.
How Do We Handle Social Logins?
If you register using a third-party social media account, we receive certain profile information from that provider — typically your name, email, and profile photo. We use this information only to create and manage your Tangnt account. We do not control how social media providers use your data and recommend reviewing their privacy policies directly.
Is Your Information Transferred Internationally?
Yes. Our servers and service providers are located in the United States. If you are in the EU, UK, or Switzerland, your data may be transferred to the US, which may not have equivalent data protection laws.
We protect EU and UK data transfers using the European Commission's Standard Contractual Clauses (SCCs), which are incorporated into our agreements with all major service providers including Supabase, Stripe, and Squarespace. Our SCCs can be provided upon request.
How Long Do We Keep Your Information?
We retain your personal information for as long as your account is active. Different data types have different retention windows:
- GPS coordinates — expire immediately after the 15-minute proximity window closes; never stored permanently
- I Saw You posts — automatically deleted after 24 hours
- Encounter records, orbit scores, and profile data — retained while your account is active
- Payment records — retained for 7 years per financial record-keeping requirements
- Campus .edu verification email — retained until you remove campus access or delete your account
Upon account deletion, all personal data is permanently removed from active databases within 30 days. Some information may be retained in backup archives for a limited period solely for fraud prevention and legal compliance, then destroyed.
How Do We Keep Your Information Safe?
We implement technical and organizational security measures including full Row-Level Security across all 33+ database tables, serverless edge functions, authenticated access only, and coordinate jittering for all displayed distances. However, no electronic transmission or storage system can be guaranteed 100% secure. We cannot promise that unauthorized parties will never be able to defeat our security measures. You should only access Tangnt within a secure environment.
Do We Collect Information from Minors?
No. Tangnt is strictly for users 18 and older. We do not knowingly collect data from or market to anyone under 18. By using Tangnt you represent that you are at least 18 years of age. If we learn that we have collected data from a minor, we will immediately deactivate the account and delete the data. If you become aware of any such data, please contact smcrae@southerninnovationsalliance.com.
What Are Your Privacy Rights?
Depending on your location, you may have the following rights regarding your personal information:
- Right to access your personal data
- Right to correct inaccurate data
- Right to request deletion of your data
- Right to data portability
- Right to restrict or object to processing
- Right to withdraw consent at any time
- Right to non-discrimination for exercising your rights
EU and UK users may also lodge a complaint with their Member State data protection authority or the UK Information Commissioner's Office. Swiss users may contact the Federal Data Protection and Information Commissioner.
To exercise any of these rights, submit a data subject access request or email smcrae@southerninnovationsalliance.com.
Account information
You can review and update your account at any time through the Settings screen in the Tangnt app. To delete your account, go to Settings → Account → Delete Account. Deletion removes all personal data from active databases within 30 days.
Controls for Do-Not-Track Features
Most browsers include a Do-Not-Track (DNT) setting. Because no uniform technical standard for recognizing DNT signals has been finalized, we do not currently respond to DNT signals. California law requires us to disclose this. If a standard is adopted in the future, we will update this policy accordingly.
Do United States Residents Have Specific Privacy Rights?
Yes. If you reside in California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, or Virginia, you have specific rights under your state's privacy law.
Categories of personal information we collect
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Email, username, IP address, online identifier | No |
| B. California Customer Records | Name, contact info, financial info | No |
| C. Protected classification | Gender, age, race, ethnicity | No |
| D. Commercial information | Purchase history, payment details | No |
| E. Biometric information | Fingerprints, voiceprints | No |
| F. Internet activity | Browsing history, search history | No |
| G. Geolocation data | Device location (zone label only) | Yes |
| H. Audio/sensory information | Images, recordings | No |
| I. Professional information | Job title, company, industry (user-provided) | No |
| J. Education information | Student records, directory info | No |
| K. Inferences | Orbit Score, Resonance Score, Frequency Match | Yes |
| L. Sensitive personal information | Account login credentials, precise geolocation | Yes |
We have not sold or shared any personal information to third parties for a business or commercial purpose in the preceding twelve months. We have disclosed Category G (geolocation zone data) and Category K (inferences) to service providers who operate the platform on our behalf.
How to exercise your rights
Submit a data subject access request, or email smcrae@southerninnovationsalliance.com. We will respond within the timeframe required by your state's law. If we decline your request, you may appeal by emailing us. If your appeal is denied, you may submit a complaint to your state attorney general.
California "Shine the Light" Law
California Civil Code Section 1798.83 permits California residents to request information about categories of personal information we disclose to third parties for direct marketing. We do not share personal information with third parties for direct marketing purposes, so there is nothing to report under this law.
Tangnt-Specific Provisions
The following provisions cover features unique to Tangnt that standard privacy policies do not address. Please read this section carefully.
Proximity Detection and Encounter Data
Tangnt's core service relies on detecting physical proximity between users. When you enable location access, your device transmits GPS coordinates to our servers. These coordinates are immediately processed server-side and converted to a named zone label (such as "Coffee Shop," "Airport Terminal," or "Library"). Precise GPS coordinates are never stored permanently. Only the derived zone label, timestamp, and encounter record are retained.
Encounter records — which document that two users were in the same zone within the same time window — are used to calculate your Orbit Score and Resonance Score. These scores represent the strength and frequency of your real-world proximity patterns with other users and are visible only to you unless a mutual match is established.
I Saw You Board
Posts submitted to the I Saw You board are anonymous and zone-tagged only. No name, profile photo, or identifying information is attached to a post. Posts automatically expire and are permanently deleted after 24 hours. Responding to a post initiates a mutual reveal process — your identity is shared only if both parties independently confirm interest. Either party may ignore a post or response with no notification sent to the other party.
Campus Mode
Campus Mode requires verification of a valid university-issued email address (.edu). This email address is used solely for verification purposes and is never displayed to other users or shared with third parties. Campus Mode limits proximity detection to verified users of the same institution only. Users in Campus Mode are invisible by default and must explicitly enable visibility.
Ghost Mode
When Ghost Mode is enabled, Tangnt immediately stops transmitting your location. You will not appear in any other user's proximity results, encounter feed, or orbit data while Ghost Mode is active. No location data is collected or stored during Ghost Mode sessions.
Do We Make Updates to This Policy?
Yes. We will update this policy as necessary to stay compliant with relevant laws. The updated version will be indicated by an updated date at the top of this page. If we make material changes, we will notify you by posting a prominent notice or sending a direct notification. We encourage you to review this policy periodically.
How Can You Contact Us?
If you have questions, concerns, or requests related to this policy or your personal data, please reach out:
Southern Innovations Alliance, LLC
doing business as Tangnt
102 Laurel Ridge Rd
North Charleston, SC 29418
United States
Email: smcrae@southerninnovationsalliance.com
Data subject access requests: Submit a request →
This Privacy Policy was generated with Termly and customized for Tangnt's proximity detection architecture.