Namerly

Legal

Privacy Policy

Effective

The short version

Namerly is a couples’ baby-name swiper. We collect the minimum needed to run it: your email (to sign you in), the names you swipe on, who your partner is, and basic device info for crash reporting. We do not sell your data, we do not share it with advertisers, and we do not use it to train AI models.

Who we are

The data controller is Koode, a sole proprietorship registered in the Netherlands. See the Imprint for full legal details, including how to reach us.

What we collect

You give us, directly

  • Email address. Used to sign you in via magic link or passkey. We do not require a password.
  • Display name. What your partner sees in matches and lists. You can change it any time.
  • Onboarding selections. Region, era, and gender preferences that shape your name deck.
  • Verdicts. Your love / pass / favorite / hard-pass on each name. Only mutual matches are visible to your partner; everything else stays private to you.

Collected automatically

  • Stability diagnostics. When the app crashes, hits a JavaScript error, freezes (an app hang), or stalls the JS event loop, the mobile app sends a diagnostic report to our error-tracking provider, Sentry. The report contains the operating system, app version, a stack trace pointing at the line of code that failed, the route name where it happened, and your opaque account ID (a random string we use to group multiple reports from the same person). We strip the email address and IP address that the SDK would otherwise attach. We do not record your screen, do not log swipes or taps, and do not run behavioural profiling. No advertising IDs.
  • Authentication tokens. Stored in iOS Keychain or Android Keystore on your device, sent to our server to keep you signed in.
  • Session metadata. When you sign in, we store the IP address and User-Agent of the device that signed in, alongside the session token. This lets us show you (and you alone) the active devices on your account, expire stale sessions, and investigate suspicious activity. Both are included in your data export.

What we do not collect

  • We do not collect your contacts, photos, location, or microphone.
  • We do not embed advertising trackers, marketing analytics, or behavioural-profiling tools. The only third-party SDK in the mobile app is Sentry for stability diagnostics (see above). It is scoped to crashes, errors, app hangs, and JS stalls; CPU profiling, session replay, native frame timing, and touch-event tracking are all turned off. A small share of navigation events is sampled so stall measurements have a transaction to attach to. The trace records the route name and duration only, no inputs or content.
  • We do not sell, rent, or share personal data with advertisers or data brokers.

How we use it

  • To run the app: serve you a name deck, record your verdicts, surface mutual matches with your partner.
  • To send you transactional email: magic-link sign-in codes, partner-invite confirmations.
  • To keep the app running: detect crashes, fix bugs, prevent abuse.

We do not send marketing email. If we ever launch a newsletter, it will be opt-in and unrelated to your account email.

Where your data lives

Namerly runs on Cloudflare Workers and Cloudflare D1. Data is stored in Cloudflare’s global infrastructure and may be processed in regions outside the EEA. Cloudflare is GDPR-committed and we rely on standard contractual clauses where applicable. Authentication is handled in-process by us. We do not use a third-party identity provider.

Sub-processors

We use a small number of vetted sub-processors to operate the service. Each one only receives the data necessary for its specific function:

  • Cloudflare, Inc. — hosting (Workers), database (D1), and transactional email delivery (Cloudflare Email Service). Email Service handles outbound magic-link sign-in codes, partner invitations, data-export deliveries, and account-deletion confirmations. Your email address is shared with Email Service for this delivery.
  • Functional Software, Inc. (Sentry). Stability and error reporting for the mobile app: crashes, JavaScript errors, app hangs, and JS event-loop stalls. Sentry receives stack traces, device + app version, route names, and your opaque account ID for grouping. It does not receive your email, IP address, swipes, name lists, or any marketing or behavioural signal. CPU profiling, session replay, native frame timing, and touch tracking are disabled. Sentry acts as our data processor under its DPA: it cannot sell, share, or otherwise use your data for its own purposes, only process it on our instructions to deliver the error-tracking service.

We do not use third-party marketing-email vendors, behavioural-analytics platforms, ad networks, or identity providers. If we ever add a sub-processor, we will update this list before they receive any data.

How long we keep it

  • Your verdicts and matches are kept for as long as your account exists.
  • Stability diagnostics are retained for up to 90 days, then discarded.
  • If you delete your account, we erase your personal data within 30 days, except where law requires longer retention.

Your rights

If you’re in the EEA, UK, or Switzerland, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Delete your data (right to erasure).
  • Export your data in a portable format.
  • Object to processing or restrict it.
  • Lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or your local supervisory authority.

To exercise any of these, email privacy@namerly.club. We’ll respond within 30 days.

Children

Namerly is for adults considering a name. We do not knowingly collect data from anyone under 16. If you believe a child has signed up, contact privacy@namerly.cluband we’ll delete the account.

Cookies

The marketing site (this website) uses no cookies and no analytics. The mobile app does not use web cookies; it uses an authentication token stored locally on your device.

Changes to this policy

If we make material changes, we’ll update the effective date at the top of this page and notify you in-app or by email before the change takes effect.

Contact

Privacy questions: privacy@namerly.club
Postal: see Imprint