Privacy Policy
Last updated: April 26, 2026
1. Who We Are
TrueMe ("we", "us", "our") is a digital identity protection service. For privacy inquiries, contact us at: privacy@trueme.com
2. Information We Collect
Account Information: Full name, email address, phone number, date of birth, country of residence, username, and password (encrypted). Payment Information: Billing is processed by Stripe. We do not store credit card numbers. Stripe stores payment data per their privacy policy. Identity Verification: Government ID and selfie data for Pro users is processed by Stripe Identity. We do not store your identity documents — only the verification result (verified/not verified). Social Account Data: Platform handles and usernames you voluntarily provide to set up your identity page. Usage Data: IP address, browser type, pages visited, time spent, and device information. Consent Records: Timestamp and record of your agreement to our Terms and Privacy Policy.
3. How We Use Your Information
We use your information to: (a) provide and improve the Service; (b) send security alerts and threat notifications; (c) process payments and manage subscriptions; (d) verify your identity (Pro users); (e) comply with legal obligations; (f) prevent fraud and abuse; (g) communicate service updates. We do NOT sell your personal data to any third party. We do NOT use your data for advertising purposes.
4. Legal Basis for Processing (GDPR)
For users in the European Union, we process your data under the following legal bases: Contract Performance — to fulfill our service agreement with you. Legitimate Interests — for security, fraud prevention, and service improvement. Legal Obligation — to comply with applicable laws. Consent — for optional communications, which you may withdraw at any time.
5. Data Sharing
We share data only with: Stripe (payment processing and identity verification), Resend (email delivery), Google (search API for impersonation scanning), Anthropic (AI analysis — no personal data is shared, only search results). We may disclose data if required by law, court order, or to protect the rights and safety of TrueMe and its users.
6. Data Retention
We retain your account data for as long as your account is active. After account deletion, we retain minimal data for 30 days in case of accidental deletion, then permanently delete it. Payment records are retained for 7 years as required by tax law. Consent records (agreement to Terms) are retained for the duration of your account and 3 years after deletion.
7. Your Rights (GDPR & CCPA)
You have the right to: Access — request a copy of your personal data. Rectification — correct inaccurate data. Erasure ("Right to be Forgotten") — request deletion of your data. Portability — receive your data in a machine-readable format. Objection — object to certain processing activities. Restriction — limit how we process your data. Withdraw Consent — at any time for consent-based processing. California residents have additional rights under CCPA including the right to know, delete, and opt-out of sale (we do not sell data). To exercise your rights, email privacy@trueme.com.
8. Data Security
We implement industry-standard security measures including: SSL/TLS encryption for all data in transit, encrypted password storage (bcrypt), access controls limiting who can view your data, regular security audits, and secure third-party processors. No method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to protecting your data.
9. Children's Privacy
TrueMe is strictly for users 18 years of age and older. We do not knowingly collect personal information from anyone under 18. If we discover that a minor has created an account, we will immediately terminate the account and delete all associated data. If you believe a minor has registered, please contact us at privacy@trueme.com.
10. Cookies
We use essential cookies to maintain your session and preferences. See our Cookie Policy for details. You may disable non-essential cookies in your browser settings.
11. Communications & SMS Policy
Email Communications: We send transactional emails for account verification, security threat alerts, subscription billing, and service updates. These are necessary for operating the Service. By registering, you consent to receive these essential communications. SMS Text Messages: If you provide a mobile phone number and opt in to SMS communications during registration, we will send you security alerts and verification codes via text message. You can opt out at any time by replying STOP to any SMS or updating your preferences in account settings. Message frequency depends on account activity and threat detections. Message and data rates may apply. Supported carriers are not liable for delayed or undelivered messages. SMS Data: Your phone number is used solely to deliver security notifications and verification codes. We do not sell or share your phone number with third parties for marketing purposes. Your phone number is stored encrypted and shared only with our SMS delivery provider (Twilio) for message transmission. Opt-Out: To stop receiving SMS: reply STOP to any text. To stop receiving emails: use the unsubscribe link in any email or visit Settings > Notifications. Note that opting out of security alerts may reduce your protection.
12. International Data Transfers
Your data may be processed in the United States. For EU users, we ensure appropriate safeguards are in place for international transfers in compliance with GDPR, including Standard Contractual Clauses with our processors.
13. Changes to This Policy
We will notify you of material changes to this Privacy Policy via email at least 30 days before they take effect. Your continued use of the Service after changes constitutes acceptance.
14. Contact Us
Privacy Officer: privacy@trueme.com General: support@trueme.com For GDPR inquiries or to exercise your rights, email privacy@trueme.com with subject "Privacy Request".