RATEMYFEET

Privacy Policy

Last updated: April 12, 2026

1. Introduction

RateMyFeet ("we", "our", "the Platform") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data when you use our service. By using RateMyFeet, you agree to the practices described in this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and password (stored in hashed form). A random username is generated for you, which you can customize later along with an optional avatar and bio.

2.2 Content You Upload

When you upload a photo, we store the image file, its title, a unique file hash (used for duplicate detection), and metadata such as upload date and moderation status.

2.3 Usage Data

We collect data about how you interact with the Platform, including: pages viewed, content viewed, votes cast, profiles bookmarked ("lassoed"), search queries, and your timezone (stored via a cookie for localized date display).

2.4 Automatically Collected Data

We use Vercel Analytics to collect anonymized performance and usage metrics. This service does not use cookies and does not collect personally identifiable information.

3. How We Use Your Information

  • Provide the service: Display your content, calculate rankings, and enable community interactions (voting, bookmarking).
  • Content moderation: Analyze uploaded images using automated image analysis technology to detect prohibited content (explicit material, faces, off-topic images) before publication.
  • Improve the Platform: Understand usage patterns, optimize performance, and develop new features.
  • Security: Detect and prevent abuse, spam, and unauthorized access.
  • Communication: Send important service-related notifications (e.g., account issues, policy changes).

4. Data Processing & Storage

Your data is processed and stored using the following third-party services:

  • Supabase: Handles authentication and file storage. Data may be hosted in the EU or US depending on infrastructure availability.
  • PostgreSQL (via Supabase): Stores account data, content metadata, votes, and interaction records.
  • Google Cloud Vision API: Processes uploaded images for automated content moderation. Images are sent to Google's servers for analysis and are not retained by Google after processing.
  • Vercel: Hosts the Platform and provides anonymized analytics.

5. Cookies & Local Storage

We use minimal cookies and browser storage:

  • Session cookies: Essential for authentication. These keep you signed in.
  • Timezone cookie: Stores your timezone to display dates in your local time.
  • Local storage: Stores UI preferences (layout mode) and interaction states (votes, reports) for a smoother experience.

We do not use any advertising or third-party tracking cookies.

6. Data Sharing

We do not sell, rent, or trade your personal data. We share data only with the third-party services listed in Section 4, strictly for the purposes described in this policy.

We may disclose your information if required by law or to protect the rights, safety, or property of RateMyFeet, our users, or the public.

7. Data Retention

We retain your account data and content for as long as your account is active. If you delete your account, we will remove your personal data and uploaded content within 30 days. Some anonymized usage data (e.g., aggregated analytics) may be retained indefinitely.

8. Your Rights (GDPR & EU Residents)

If you are located in the European Union, you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Correct inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to data portability: Receive your data in a structured, machine-readable format.
  • Right to object: Object to processing of your data for certain purposes.
  • Right to restriction: Request limitation of processing in certain circumstances.

To exercise any of these rights, contact us at privacy@ratemyfeet.com. We will respond within 30 days.

9. Children's Privacy

RateMyFeet is not intended for anyone under the age of 18. We do not knowingly collect personal data from minors. If we become aware that a minor has created an account, we will take steps to terminate the account and delete the associated data.

10. International Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). Where such transfers occur, we ensure that appropriate safeguards are in place in accordance with applicable data protection laws, including Standard Contractual Clauses (SCCs) where required.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the revised policy on this page and updating the "Last updated" date. Your continued use of the Platform after changes are posted constitutes acceptance of the updated policy.

12. Contact

For any questions or concerns about this Privacy Policy or your personal data, contact us at privacy@ratemyfeet.com.