HeartPathHeartPathBack

Privacy & Data Protection

Your privacy, plainly explained

Last updated: April 2026

Welcome to HeartPath. Your privacy matters to us, and we want you to feel confident about how your information is handled here. This policy explains — in plain language — what we collect, why we collect it, and the choices you have. By using HeartPath, you agree to the practices described below.

1. What This Policy Covers

This policy applies to everyone who uses the HeartPath website, mobile app, or related services. It covers personal information you share with us directly, as well as information we collect automatically when you use the platform.

2. Why We Collect Your Information

We only collect what we genuinely need to give you a good experience. Specifically, we use your information to:

  • Create and manage your account.
  • Suggest compatible matches and show your profile to other members.
  • Improve our features based on how people use the platform.
  • Keep HeartPath safe by detecting fraud, misuse, or harmful behaviour.
  • Send important service updates, and — only with your consent — newsletters or promotions.
  • Meet our legal and regulatory obligations.

You can withdraw your consent at any time from your account settings. Any processing we did before you withdrew consent remains valid.

3. Information We Collect

Information You Give Us

  • Account details: name, email, phone number, password.
  • Profile details: age, gender, height, religion, interests, profession, education, and similar information.
  • Photos, short bio, and partner preferences.
  • Approximate location (only if you give permission).
  • Messages and content you share on the platform.

Information We Collect Automatically

  • Device type, operating system, browser, and language.
  • IP address and general location inferred from it.
  • How you use the app — pages visited, features used, time spent.
  • Cookies and similar technologies (see our Cookie section in the Terms).

Information from Other Services

If you choose to sign up using Facebook, Google, LinkedIn, or Apple, those services share basic profile information with us. You decide what to share, and you can disconnect these accounts at any time.

4. How We Share Your Information

We do not sell your personal data to anyone. We share information only in these limited situations:

  • With other members: Your profile, photos, and bio are visible to members you match or interact with. You control what appears.
  • With service providers: Trusted companies that help us operate — for example, cloud hosting, payment processing, SMS delivery, analytics, and customer support. They can only use your data to perform services for us.
  • For legal reasons: When we are required by law, court order, or to protect the rights, safety, or property of HeartPath, our members, or the public.
  • In business transfers: If HeartPath is involved in a merger, acquisition, or sale, your information may be transferred, but the same privacy commitments will continue to apply.

5. Location Information

If you allow location access, we use it to show you members nearby and improve match suggestions. Your exact location is never shared with other members — we only share an approximate area. You can turn location access off at any time in your device or app settings. If you are concerned about personal safety, we recommend keeping location sharing off.

6. Photos and Messages

Photos you upload may be reviewed (automatically or by our team) to check that they meet our community guidelines. This helps keep the platform safe for everyone.

Your private messages stay private — we do not read them for any reason other than safety. Automated systems may scan messages for harmful content such as threats, scams, or abuse. Messages flagged by these systems may be reviewed by trained staff, and we may act to protect affected members.

7. How We Protect Your Information

We take security seriously and use industry-standard safeguards, including:

  • Encryption of data in transit (SSL/TLS) and at rest where appropriate.
  • Restricted employee access on a need-to-know basis.
  • Secure password storage using one-way hashing.
  • Regular security reviews and monitoring for unusual activity.

No system is perfectly secure, and we cannot guarantee absolute protection. We ask that you also help by choosing a strong password and keeping your login details confidential.

8. If There Is a Data Breach

In the unlikely event of a data breach that puts your personal information at risk, we will notify you and the relevant authorities as required by law, typically within 72 hours of becoming aware of the incident. We will tell you what happened, what information was affected, and what steps you can take.

9. How Long We Keep Your Information

We keep your information only as long as we need it to provide our services or as required by law.

  • Active accounts: For as long as your account is open.
  • Inactive accounts: Accounts with no activity for 3 years may be deleted after a reminder email.
  • After account deletion: Most personal data is deleted within 90 days. Some limited information (such as transaction records, fraud prevention logs, or items required by tax or other laws) may be retained for up to 7 years where legally required.
  • Backups: Deleted data may remain in secure backups for a short period before being fully erased.

10. International Data Transfers

HeartPath is operated from India, and our service providers may be located in other countries. When your information is transferred outside your country of residence, we take reasonable steps to ensure it is protected to a standard similar to what you enjoy at home, using safeguards such as contractual protections with our partners.

11. Your Rights

You have the following rights over your personal information. We will respond to any request within 30 days, and we will always try to act sooner where we can.

  • Access: Request a copy of the information we hold about you.
  • Correction: Ask us to fix anything that is inaccurate or incomplete.
  • Deletion: Ask us to delete your account and personal information, subject to our legal obligations.
  • Withdraw consent: Change your mind about any consent you have given us.
  • Restrict use: Ask us to pause certain uses of your data while we address a concern.
  • Portability: Receive your information in a common format, where technically possible.
  • Complain: Raise a concern with us, or with your local data protection authority.

To exercise any of these rights, please email our Grievance Officer (details below) with the subject line “Privacy Request”.

12. Privacy for Minors

HeartPath is an adults-only platform. You must be at least 18 years old to use it. We do not knowingly collect information from anyone under 18.

During signup, we ask for your date of birth and may use verification steps to help confirm age. If we learn that a minor has created an account, we will close it and delete the related information. If you are a parent or guardian who believes a minor has given us information, please contact our Grievance Officer and we will act quickly.

13. Cookies and Similar Technologies

We use cookies and similar technologies to keep you signed in, remember your preferences, and understand how the platform is used. You can manage cookies through your browser or device settings. Please see our Terms & Policies document for a detailed explanation of the cookies we use.

14. Third-Party Links

HeartPath may contain links to other websites or services. We are not responsible for the privacy practices of those sites, and we encourage you to read their policies before sharing information with them.

15. Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you through the app, by email, or on our website before the changes take effect. The date at the top of this document shows when it was last updated. Continued use of HeartPath after the changes take effect means you accept the updated policy.

16. Contact Us

If you have any questions, concerns, or requests about your privacy, please reach out. Our Grievance Officer is here to help.

Grievance Officer

Universal Ideology LLP
Email: support@heartpath.ai

We acknowledge grievances within 24 hours and aim to resolve them within 15 days, in line with applicable Indian regulations.

Read

Privacy Policy

Read

Terms & Policies

Read

Community & Values