Privacy Policy

Last updated: 2026-06-07

This Privacy Policy explains what Waffle ("we", "us") collects when you use the Waffle mobile app, why we collect it, and what choices you have. We try to keep it short and plain.

If anything here is unclear, email us at wafflingwafflerswaffle@gmail.com.

1. Who we are

Waffle is a small social app for sharing short video and audio messages — "waffles" — with a fixed circle of friends in private groups. The service is operated by Yegin.

2. What we collect

You give us the following directly:

We also collect a small amount of activity and technical data automatically:

We do not collect: contacts from your address book, precise location, photo-library contents, advertising identifiers, or behavioural analytics that track you across other apps and websites.

3. Why we collect it

4. Who we share it with

We use a small number of trusted processors. Your content does not leave these systems.

ProcessorWhat they do for usWhere data may be stored
SupabaseAuthentication and Postgres databaseEU and US regions
Cloudflare R2Storage of your waffle audio/video filesGlobal edge, US-anchored
Firebase Cloud MessagingDelivers push notifications to your deviceUS
SentryCrash and error diagnostics, so we can fix bugsUS

We do not sell your data. We do not share it with advertisers. We do not allow third parties to track you across other apps.

5. International transfers

Waffle is based in the UK. Some of the processors above operate in the United States. By using Waffle you accept that your data may be transferred to and stored in the US under appropriate safeguards (standard contractual clauses where required by UK GDPR / EU GDPR).

6. Notifications and quiet hours

By default we only send push notifications between 08:00 and 22:00 in your device's local timezone, and you can adjust these quiet hours in the app. We will never push you in the middle of the night unless you change this yourself.

7. Retention and deletion

8. Your rights (UK & EU)

If you are in the UK or EU, GDPR gives you the right to:

To exercise any of these rights, email wafflingwafflerswaffle@gmail.com.

9. Security

We use TLS in transit and rely on Supabase and Cloudflare for at-rest encryption of their respective stores. No system is perfectly secure; if you discover a vulnerability, please email wafflingwafflerswaffle@gmail.com.

10. Children

Waffle is not directed at children under 13 (or under 16 in the European Economic Area). We do not knowingly collect personal data from children. If you believe a child has created an account, email us and we will delete it.

11. Changes to this policy

If we change this policy we will update the "Last updated" date at the top and, where the change is material, surface it in the app before it takes effect.

12. Contact

Questions, requests, or complaints: wafflingwafflerswaffle@gmail.com.