Aedon
Aedon • Privacy

Privacy Policy

Last updated: February 21, 2026

This policy describes the data processed by Naboat when operating Aedon, the purposes pursued, the legal bases relied upon, the retention periods applied, and the rights available to users.

For any GDPR request, rectification or deletion request, the primary contact remains aedon@naboat.fr.
1

Data we process

  • Identity / account : encrypted and hashed email, hashed password, encrypted and hashed username, age, gender, bio, premium or banned status.
  • Approximate location : city, country, city identifier, latitude and longitude if provided.
  • Preferences : age range and desired gender.
  • Content : profile photos and audio, text and audio messages, reports.
  • Interactions : likes, dislikes, matches, read status for messages.
  • Subscriptions : platform, productId, status, expiration dates, App Store or Google Play receipts.
  • Notifications : allowMatches and allowMessages preferences.
  • Technical and security : last activity, minimal logs, NSFW checks on upload.
2

Purposes

  • Create and manage user accounts.
  • Enable matching, messaging and user interactions.
  • Ensure moderation, abuse prevention and service security.
  • Manage push notifications and Premium subscriptions.
  • Monitor storage quotas and usage to prevent abuse.
4

Where and how long

  • Main database and files stored on an S3-compatible bucket with restricted access.
  • Photos, audio and messages removed when the account is deleted; encrypted backups purged within 30 days.
  • Inactive accounts automatically deleted after 12 months of inactivity.
  • Email and reset codes retained only until expiration.
5

Sharing

  • Aedon / Naboat team on a need-to-know basis.
  • Hosting, S3 storage and email providers involved in service delivery.
  • Apple and Google for subscription validation.
  • Authorities when required by law.
6

Your rights

  • Access, rectification, erasure, restriction, objection and portability.
  • Withdrawal of consent at any time for notifications and location.
  • Contact: aedon@naboat.fr, reply within 30 days.
7

Security

  • Application-level encryption for emails and usernames.
  • bcrypt password hashing.
  • Restricted access controls, environment separation and technical monitoring.