Bump Privacy Policy

Effective Date: March 5, 2026

Bump ("we," "us," or "our") operates the Bump mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our App. Please read this policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• First and last name
• Email address (UWO email required for verification)
• Profile photo (optional)
• Major, year, hometown, and other optional profile fields

1.2 Bluetooth Low Energy (BLE) Data

Bump uses Bluetooth Low Energy to detect nearby users. We collect:

• Randomized advertising identifiers (advId) — short-lived, non-personal identifiers that rotate periodically
• Encounter timestamps and frequency

We do not collect precise GPS location. BLE proximity detection only determines whether another Bump user is nearby, not your geographic coordinates.

1.3 Chat and Message Data

• Messages you send through the App
• Message metadata (timestamps, read status)
• Friend request and connection data

Ephemeral conversations expire and are deleted after 30–60 hours unless both users become friends.

1.4 Device Information

• Device type and operating system
• App version
• Crash logs and performance data (via Firebase)

2. How We Use Your Information

We use the information we collect to:

• Provide and operate the Bump service
• Facilitate proximity-based encounters and ephemeral chats
• Verify your UWO student status
• Send you notifications about new bumps, messages, and friend requests
• Improve and optimize the App
• Enforce our Terms of Service and prevent abuse

3. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

• With other users: Your first name and profile fields you mark as public are visible to users you encounter. Additional profile information is visible to friends.
• Service providers: We use Firebase (Google) for authentication, data storage, cloud functions, and analytics.
• Legal requirements: We may disclose information if required by law or to protect the safety of our users.

4. Data Retention

• Ephemeral chats: Automatically deleted 30–60 hours after creation unless users become friends.
• Encounter data: Retained for a limited period to support the bumping experience.
• Account data: Retained as long as your account is active. You may request deletion at any time.
• BLE advertising identifiers: Rotate periodically and expire automatically.

5. Privacy Controls

You control your privacy through:

• Public fields: Choose which profile fields (e.g., major, hometown) are visible to non-friends. By default, only your first name is public.
• Bump toggle: Disable BLE broadcasting and scanning at any time.
• Quiet hours: Schedule times when bumping is automatically paused.
• Account deletion: Permanently delete your account and all associated data from Settings → Account → Delete Account.

6. Security

We use industry-standard measures to protect your data, including Firebase Authentication, Firestore security rules, and encrypted communication. However, no method of electronic transmission or storage is 100% secure.

7. Bluetooth and Background Permissions

Bump requires Bluetooth permissions to function. On Android, the App may run a foreground service to maintain BLE scanning in the background. You can disable this at any time through the App settings or your device settings. We only use Bluetooth for proximity detection — never for tracking your location.

8. Children's Privacy

Bump is intended for university students aged 17 and older. We do not knowingly collect information from anyone under the age of 17. If we learn we have collected personal information from someone under 17, we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy in the App or on our website. Your continued use of the App after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Email: support@uwobump.ca