Sparky Privacy Policy
Last
Updated: June 30, 2026
Sparky ("Sparky," "we," "us," or "our") provides a social connection application for adults. This Privacy
Policy explains how Sparky may collect, use, process, store, share, disclose, retain, and delete information
when you access or use Sparky websites, mobile applications, backend services, AI features, moderation
features, rooms, invites, matching features, and related services (collectively, the "Application").
This Privacy Policy is intended to describe our practices, not to create contractual rights beyond those
required by applicable law. Our practices may vary based on your location, the features you use, technical
constraints, legal obligations, security needs, and operational requirements. For privacy questions, access
requests, deletion requests, or other data requests, contact
privacy@sparkyapp.org.
1. Information We May Collect
- Account and profile information: Internal user ID, email address, display name,
authentication provider, provider identifiers, Safety Pact acceptance version and timestamp, EULA
acceptance version and timestamp, account creation time, account update time, and account status.
- Authentication information: Information supplied by Firebase Authentication and
sign-in providers, including email-link, Google, and Apple sign-in details needed to create, verify,
secure, recover, or delete an account.
- Messages and user content: Solo Sparky chat messages, room messages, Sparky responses,
moderation notes, suggested rewrites, reports, feedback, and other content you submit or generate in
the Application.
- Connection and room information: Invites, room membership records, read state, visible
recipient lists, room metadata, latest-message previews, connection decisions, declined or expired
invites, cooldowns, and derived matching or safety records.
- Moderation and safety information: Automated classifications, enforcement state,
report metadata, paused-user records, restoration votes, abuse-prevention records, security flags, and
records needed to investigate, prevent, or respond to misuse.
- Operational and technical information: Request metadata, timestamps, route or workflow
metadata, device/browser information, approximate network information, rate-limit counters, sign-in
nonces, session records, pipeline results, error records, diagnostics, and logs needed to run, secure,
debug, measure, and improve the service.
- Analytics information: Coarse product events such as onboarding, sign-in, engagement,
invite actions, room activation, reports, moderation outcomes, and account deletion. Analytics
parameters are intended to avoid raw messages, AI responses, tags, topics, emails, display names, room
IDs, invite IDs, request IDs, and raw Firebase UIDs.
2. Google Sign-In User Data
If you choose Google Sign-In, Sparky accesses Google user data through Firebase Authentication using the
email and profile scopes. This may include your Google account email address,
basic profile information, and the Firebase Authentication account identifier associated with your Google
sign-in.
How Sparky Uses Google User Data
Sparky uses Google user data only for purposes reasonably necessary to provide and protect your account and
the Application, including to:
- Authenticate you and let you sign in.
- Create, locate, and associate your Sparky account and profile with your authenticated identity.
- Prevent duplicate, fraudulent, abusive, unauthorized, or policy-violating account use.
- Maintain account security, support account recovery, and troubleshoot sign-in issues.
- Support account deletion, privacy requests, compliance requests, and user support.
- Maintain records that you accepted Sparky's Safety Pact and End User License Agreement.
How Sparky Does Not Use Google User Data
- Sparky does not use Google user data to create connection matches between users.
- Sparky does not use Google user data to build advertising profiles.
- Sparky does not sell Google user data.
- Sparky does not transfer Google user data to third parties for sale, advertising, or unrelated uses.
- Sparky does not send Google user data to AI services for matching, moderation, or conversation
generation unless that information is separately included by you in message text or other User Content
you submit.
How Sparky Handles Google User Data
Google user data is handled with account access controls, security practices, retention practices, and
deletion practices described in this Privacy Policy. Access is limited to application systems and authorized
operational, security, compliance, or support use needed to provide, secure, maintain, or comply with
obligations for the Application. Sparky's use and transfer of Google user data are intended to comply with
the Google API Services User Data Policy, including applicable Limited Use requirements.
3. How We May Use Information
- Authenticate users, maintain accounts, complete onboarding, and associate accounts with profiles.
- Provide Sparky chat, AI responses, connection suggestions, invites, rooms, reports, read state,
moderation, account controls, and account deletion features.
- Moderate content, enforce the Safety Pact and EULA, prevent abuse, detect fraud, investigate reports,
protect users, protect the Application, and preserve evidence.
- Generate and use derived information such as safe topics, summaries, moderation classifications,
matching signals, compatibility signals, and operational metrics.
- Provide support, respond to requests, troubleshoot issues, debug failures, measure reliability, develop
features, and improve the Application.
- Comply with law, respond to legal process, enforce agreements, preserve legal rights, and maintain
security or compliance records.
- Complete business, security, legal, or operational transactions such as reorganization, transfer,
migration, merger, acquisition, financing, sale of assets, bankruptcy, or change of control.
4. AI and Automated Processing
Text you submit, plus bounded recent context and related derived information, may be processed by third-party
AI services and internal automated systems for moderation, safety, conversation responses, topic
classification, matching, connection suggestions, summaries, prompts, support, debugging, and service
improvement. AI and automated processing may produce incomplete or incorrect outputs. Sparky does not use
Google Sign-In user data as a matching signal, except to the extent you separately include that information
in message text or other User Content.
5. Sharing and Disclosure
Sparky may share or disclose information as described below, subject to applicable law and our operational
needs:
- Other users: Sparky does not show your private solo Sparky chat transcript to other
users as a transcript. To provide the Application, Sparky may share display name snapshots, high-level
topics, connection setup lines, visible room messages, reports or report-related context where
appropriate, invite state, room state, and other information needed for shared conversations and safety
workflows.
- Service providers: Sparky may share information with vendors and service providers
that host, store, authenticate, analyze, secure, process, moderate, support, or operate the Application,
including Firebase, Google Cloud, analytics providers, AI providers, infrastructure providers, and
communications providers.
- Safety, security, and enforcement: Sparky may disclose information to investigate,
prevent, or respond to abuse, fraud, security incidents, policy violations, threats, illegal activity,
disputes, user reports, or risks to any person, property, rights, or service.
- Legal and compliance: Sparky may disclose information to comply with law, regulation,
subpoena, court order, legal process, government request, or to establish, exercise, or defend legal
claims.
- Business transfers: Sparky may disclose or transfer information in connection with a
merger, acquisition, financing, reorganization, bankruptcy, sale of assets, change of control, or
similar transaction.
- No sale of Google user data: Sparky does not sell Google user data. Sparky does not
sell personal information for third-party advertising purposes.
6. Storage, Security, and Access Controls
Sparky stores information in cloud systems and service-provider systems used to operate the Application.
Sparky uses administrative, technical, and organizational safeguards intended to protect information, but no
system can be guaranteed to be secure, error-free, or continuously available. You use the Application with
the understanding that security incidents, unauthorized access, data loss, service outages, and technical
failures can occur despite safeguards.
The Application is intended to limit authenticated users to their own profile, their own solo Sparky
messages, their own invites, and rooms or messages where membership and visibility rules allow access.
Backend systems, administrators, service providers, and support or security workflows may have broader
access where needed to provide, moderate, secure, support, debug, improve, enforce, or comply with
obligations for the Application.
Operational logs and analytics are intended to avoid raw chat text, AI prompts and responses, emails, tokens,
display names, and raw Firebase UIDs except where collection or access is needed for authorized support,
security, debugging, compliance, legal, abuse-prevention, or operational workflows.
7. Retention and Deletion
Sparky retains information for as long as reasonably necessary for the purposes described in this Privacy
Policy, including to provide the Application, maintain accounts, preserve shared room history, enforce
agreements, prevent abuse, comply with law, resolve disputes, maintain security, debug issues, improve the
service, and preserve backup or business records.
- Account and profile records: Retained while your account exists and removed through the
account deletion process, subject to legal, security, abuse-prevention, backup, dispute, compliance, and
operational exceptions.
- Solo Sparky chat: Retained until account deletion unless Sparky manually deletes it,
introduces a future deletion policy, or retains limited records for legal, safety, backup, or abuse
prevention purposes.
- Shared room records: Shared room messages and related room records may remain visible
to remaining room members after your account is deleted. Historical messages from deleted users may
resolve to an anonymous display fallback.
- Moderation, safety, and legal records: Reports, enforcement records, security records,
abuse-prevention records, and compliance records may be retained as long as Sparky reasonably determines
they are needed.
- Operational records: Some records, such as sign-in nonces, rate-limit counters,
operational events, cooldowns, and pipeline records, may have expiration timestamps. Deletion after
expiration is eventual and may not happen immediately.
- Backups and caches: Information may persist in backups, caches, logs, archives, and
disaster-recovery systems for a limited period after deletion from active systems.
To request access, correction, export, or deletion where applicable law provides those rights, contact
privacy@sparkyapp.org. We may need to verify your identity,
request additional information, decline or limit requests where permitted by law, and retain records of the
request and response.
8. Your Choices
- You may choose whether to use email-link, Google, or Apple sign-in where those options are available.
- You may choose what to include in messages and profile fields, subject to the EULA and Safety Pact.
- You may stop using the Application at any time.
- You may request account deletion where available, subject to the retention exceptions described in this
Privacy Policy and the EULA.
- Your browser, device, operating system, app store, authentication provider, or analytics settings may
provide additional privacy controls.
9. Children's Privacy
Sparky is for adults only. You must be at least 18 years old, or the age of majority in your jurisdiction if
higher, to use Sparky. The Application is not intended for minors, and minors must not use it. If we learn
or reasonably suspect that a minor has used the Application, we may suspend the account, restrict access,
delete information, retain information as needed for safety or legal reasons, or take other appropriate
action.
10. International Use
Sparky and its service providers may process and store information in the United States or other locations
where we or our service providers operate. Privacy laws in those locations may differ from laws where you
live. By using the Application, you understand that information may be transferred to and processed in those
locations where permitted by applicable law.
11. Changes to This Policy
We may update this Privacy Policy as Sparky, our practices, legal requirements, security needs, or
operational needs change. We may provide notice by posting the updated Privacy Policy, updating the "Last
Updated" date, requiring renewed acknowledgement, or using another method reasonably appropriate for the
change. Your continued use of the Application after an update means you acknowledge the updated policy,
unless applicable law requires a different process.
12. Contact
Privacy contact: privacy@sparkyapp.org
Related terms: End User License Agreement & Terms of Service