Legal
Privacy Policy
This policy explains the MVP data model and privacy posture. A production launch should include legal review, retention policy decisions, and a final data processing inventory.
1. What we collect
Account details, profile information, opportunity postings, messages, proposals, contracts, billing metadata, moderation actions, and settings preferences.
2. How we use it
To operate discovery, matching, messaging, proposals, contracts, billing, trust and safety, and product analytics. Direct contact details remain hidden until a mutual match unlocks messaging.
3. Data controls
Users can control profile visibility, portfolio visibility, and contact exposure. Admin access should be limited to moderation and operational support functions.
4. Storage and processors
This MVP is designed around Supabase for auth, database, realtime messaging, and storage, with Stripe used for billing when configured. Local development can run entirely in mock mode without external keys.