Consumer Health Data Privacy Policy

1. Scope

This Consumer Health Data Privacy Policy applies to Washington and Nevada residents and describes how Synceria handles consumer health data as defined by applicable state laws. This policy supplements our Privacy Policy.

2. Consumer Health Data We Collect

We do not collect medical records or health insurance information. Depending on what you choose to share, we may process information that could be considered consumer health data under state law, including:

• Profile details related to relationship preferences or sexual orientation
• Information you include in support requests or safety reports
• Precise geolocation for matching (with your permission)
• Optional lifestyle preferences you share in your profile

3. Sources of Consumer Health Data

• You: Information you provide in your profile or support messages
• Your device: Location data with your permission
• Third parties: Limited data from service providers needed to operate the Service
• Authentication providers: If you use "Sign in with Apple" or "Sign in with Google," we receive your verified email address and basic profile information from those providers. This data may include sensitive personal information if you choose to share it in your Google or Apple profiles, but we only process what is necessary to authenticate your account. We do not receive or store any health or medical information from these providers.

4. How We Use Consumer Health Data

We use consumer health data to:

• Provide matching and personalization features
• Support safety and moderation operations
• Respond to support requests
• Comply with legal obligations

5. How We Share Consumer Health Data

We share consumer health data only with service providers that help us operate the Service. The following processors may receive consumer health data:

• Supabase (auth, database, storage, Edge Functions) — stores consumer health data including sexual orientation, ethnicity, religious and political preferences, and substance use preferences
• Stream (GetStream) for chat services — may process consumer health data if voluntarily shared by users in chat messages

The following processors do not receive consumer health data:

• RevenueCat plus Apple/Google for subscription management and billing (does not receive consumer health data)
• PostHog for analytics and error tracking (does not receive consumer health data)
• Sentry for native crash reporting (does not receive consumer health data)
• Expo, Apple APNs, and Google FCM for push notifications (does not receive consumer health data)
• Google Cloud Vision for photo moderation (does not receive consumer health data)
• Upstash Redis for rate limiting and caching (does not receive consumer health data)
• Resend for transactional email delivery (does not receive consumer health data)

We do not sell consumer health data. We do not share consumer health data for targeted advertising.

6. Your Rights

You may have the right to:

• Access consumer health data we maintain about you
• Request deletion of consumer health data
• Withdraw consent where applicable
• Appeal a denied request

To exercise these rights, email admin@vibinllc.comwith the subject line "Consumer Health Data Request." Appeals can be submitted with the subject line "Consumer Health Data Appeal."

7. Retention

We retain consumer health data only as long as needed for the purposes described in this policy and as outlined in our Privacy Policy. Account deletion and retention timelines are detailed at synceriaapp.com/privacy.

8. Changes to This Policy

We may update this policy from time to time. We will post the latest version on this page and update the effective date.

9. Contact Us

If you have questions about this policy, contact us: