Privacy Policy

Last updated: April 1, 2026

Cinq ("we," "us," or "our") operates the Cinq application and website (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information.

1. Information We Collect

Account Information: When you create an account, we collect your phone number for verification purposes. If you choose to link a Google account, we also receive your email address and display name from Google.

Event Data: When you create or respond to events, we store event titles, proposed dates and times, availability selections, and RSVP responses. Respondent names are provided voluntarily by each participant.

Device Information: We may collect basic device and usage information such as device type, operating system version, and app interaction data to improve the Service.

2. How We Use Your Information

We use the information we collect to:

— Provide, maintain, and improve the Service

— Verify your identity via SMS one-time passcodes

— Link your account across platforms (iMessage extension and web)

— Send transactional messages (verification codes only)

— Respond to support requests

3. SMS and Phone Number Usage

We collect your phone number solely for account verification. We send SMS messages only to deliver one-time verification codes when you sign in or create an account. We do not send marketing messages, promotional texts, or any other SMS communications. Your phone number is not shared with third parties for marketing purposes. Message and data rates may apply. You can text STOP to opt out of SMS messages or text HELP for assistance.

4. Third-Party Services

We use the following third-party services to operate Cinq: Supabase (database and authentication), Twilio (SMS delivery), Vercel (hosting), and Apple (iMessage extension platform). These providers process data on our behalf and are bound by their own privacy policies. We do not sell, rent, or share your personal information with third parties for their own marketing purposes.

5. Data Retention

We retain your account information and event data for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data at any time by contacting us.

6. Data Security

We implement industry-standard security measures to protect your information, including encrypted data transmission (TLS/HTTPS), secure token storage, and access controls. However, no method of electronic transmission or storage is 100% secure.

7. Children's Privacy

The Service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will take steps to delete it.

8. Your Rights

You may request access to, correction of, or deletion of your personal information at any time. California residents and users in other jurisdictions with applicable privacy laws may have additional rights. To exercise any of these rights, contact us at the address below.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or your data, contact us at: nbellows@wesleyan.edu