Namerly

Legal

Privacy Policy

Effective

The short version

Namerly is a couples’ baby-name swiper. We collect the minimum needed to run it: your email (to sign you in), the names you swipe on, who your partner is, and basic device info for crash reporting. We do not sell your data, we do not share it with advertisers, and we do not use it to train AI models.

Who we are

The data controller is Koode, a sole proprietorship registered in the Netherlands. See the Imprint for full legal details, including how to reach us.

What we collect

You give us, directly

  • Email address — to sign you in via magic link or passkey. We do not require a password.
  • Display name — what your partner sees in matches and lists. You can change it any time.
  • Onboarding selections — region, era, and gender preferences that shape your name deck.
  • Verdicts — your love / pass / favorite / hard-pass on each name. Only mutual matches are visible to your partner; everything else stays private to you.

Collected automatically

  • Device + app diagnostics — operating system, app version, and crash logs, used to fix bugs. No advertising IDs.
  • Authentication tokens — stored in iOS Keychain or Android Keystore on your device, sent to our server to keep you signed in.

What we do not collect

  • We do not collect your contacts, photos, location, or microphone.
  • We do not embed third-party trackers, ad SDKs, or analytics that profile you.
  • We do not sell, rent, or share personal data with advertisers or data brokers.

How we use it

  • To run the app: serve you a name deck, record your verdicts, surface mutual matches with your partner.
  • To send you transactional email: magic-link sign-in codes, partner-invite confirmations.
  • To keep the app running: detect crashes, fix bugs, prevent abuse.

We do not send marketing email. If we ever launch a newsletter, it will be opt-in and unrelated to your account email.

Where your data lives

Namerly runs on Cloudflare Workers and Cloudflare D1. Data is stored in Cloudflare’s global infrastructure and may be processed in regions outside the EEA. Cloudflare is GDPR-committed and we rely on standard contractual clauses where applicable. Authentication is handled in-process by us — we do not use a third-party identity provider.

How long we keep it

  • Your verdicts and matches are kept for as long as your account exists.
  • Crash diagnostics are retained for up to 90 days, then discarded.
  • If you delete your account, we erase your personal data within 30 days, except where law requires longer retention.

Your rights

If you’re in the EEA, UK, or Switzerland, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data (right to erasure).
  • Export your data in a portable format.
  • Object to processing or restrict it.
  • Lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

To exercise any of these, email privacy@namerly.club. We’ll respond within 30 days.

Children

Namerly is for adults considering a name. We do not knowingly collect data from anyone under 16. If you believe a child has signed up, contact privacy@namerly.cluband we’ll delete the account.

Cookies

The marketing site (this website) uses no cookies and no analytics. The mobile app does not use web cookies; it uses an authentication token stored locally on your device.

Changes to this policy

If we make material changes, we’ll update the effective date at the top of this page and notify you in-app or by email before the change takes effect.

Contact

Privacy questions: privacy@namerly.club
Postal: see Imprint