PrivacyEffective June 11, 2026Version 1.3
Privacy

What we keep,
and what we don’t.

This page describes what Bygone stores about you and what it does with that information. If you ever find a gap between this page and how the app behaves, please write to privacy@bygoneapp.com.

Summary. We store the things you put on Bygone so they work as a social app. We don’t sell anything to advertisers, we don’t embed third-party behavioural analytics, and we don’t track you across other apps or websites. There is no behavioural profile of you in our systems.

What we store

Location

Location is strictly opt-in and only happens when you ask for it in the moment. Bygone never reads your location in the background, on a timer, or when the app is closed. There are exactly two places it comes up:

We only ever request foreground (“while using the app”) location, and only after you tap. The position we read is precise — the same full-resolution coordinates your device’s GPS reports — which is why both app stores list precise location among the data Bygone can collect. If you decline, both features still work — you just type a place name or skip the nearby view.

What we don’t do

How ads work

The free tier shows one sponsored post for every ten organic posts in the home feed. Those slots are untargeted — the same sponsored post runs for everyone in a given window. Each one carries a “Why am I seeing this?” link explaining what triggered it. Bygone Plus shows no ads.

Your controls

Subprocessors

Bygone runs on a small set of subprocessors. Each one gets the minimum data it needs to do its job, and each is contractually required to protect it and use it only on our instructions.

If a new subprocessor is added, this page is updated first.

Your rights

Access. Request a copy of your data from inside the app: Settings → Export my data.

Deletion. Delete your account from inside the app or from the web account-deletion page.

Object or restrict. Email privacy@bygoneapp.com to object to a specific use of your data.

GDPR (EEA and UK). The rights above are your legal entitlement under GDPR. CCPA (California). You have the right to know, to delete, and to opt out of sale. Bygone does not sell personal information.

Children

Bygone is for people 13 and older. We age-gate signup using your birth year. If we find out a child under 13 has created an account, we delete it.

Where data lives

Images are stored on Cloudflare R2. Account, social graph, and message data are stored in Supabase Postgres (us-east). Bygone is a US-based project. We honour GDPR data subject requests regardless of where you live.

Data retention

Active account: we keep your data as long as your account exists. Deleted account: 30-day soft-delete, then permanent erase. Server logs: 14 days.

Changes to this policy

When this page changes, the version and date at the top change. Substantial changes are also surfaced inside the app as a banner.

Get in touch

Questions about anything on this page: privacy@bygoneapp.com. We aim to respond within five working days.