Privacy Policy

Our Commitment to Privacy

At Ran-Doe, we are committed to protecting your privacy while providing a safe video chat platform. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

Information We Collect

Authentication & Identity

• Display Name: The nickname you choose (stored locally and in session data)
• Device Fingerprint: An anonymous identifier created using FingerprintJS
• Anonymous Authentication: Firebase anonymous auth tokens (no personal info)
• Age Verification: Confirmation that you are 18+ (stored locally)

Chat & Communication Data

• Text Messages: Text chat messages are stored in Firebase Firestore during active conversations with room IDs, sender fingerprints, and timestamps
• Session Data: Temporary connection information including room IDs, participant names, and device types stored during active sessions
• Bot Chat History: Conversations with our Ran-Doe bot are temporarily stored in your browser's session storage

Safety & Moderation Data

• User Reports: When you report another user, we collect the report description, reporter and reported user fingerprints, timestamps, and connection duration
• Screenshots: If you choose to include evidence when reporting, screenshots are captured using html2canvas and stored in Firebase Storage
• Blocked Users: Fingerprints of blocked users are maintained to prevent access to the platform
• Report Actions: Administrative actions taken on reports are logged

Technical Data

• Connection Information: WebRTC connection data, ICE candidates, and STUN/TURN server interactions for video chat functionality
• Device Information: Device type (mobile/tablet/desktop), browser info, and network type for optimizing performance
• Socket.IO Data: Real-time connection state, queue position, and room information during active sessions

Information We Do NOT Collect

• Real names or government-issued identification
• Email addresses or phone numbers
• Payment information or credit card data
• Precise location data or GPS coordinates
• Video or audio recordings (video streams are peer-to-peer only)
• Social media accounts or profiles
• IP addresses for tracking (only used for connection establishment)

How We Use Information

The information we collect is used to:

• Enable video and text chat connections between users
• Maintain your session and enable reconnection if disconnected
• Process and investigate user reports for safety
• Block users who violate our terms of service
• Provide customer support through bot interactions
• Ensure age verification compliance
• Improve service performance and user experience
• Generate anonymous usage statistics
• Prevent abuse and maintain platform safety

Data Storage and Security

• Firebase Infrastructure: User data, messages, and reports are stored in Firebase Firestore and Storage with security rules
• Peer-to-Peer Video: Video/audio streams use WebRTC for direct peer-to-peer connections - we don't record or store video/audio
• Encryption: All data transmission uses HTTPS/WSS encryption
• Server Memory: Active session data is held in server memory and cleared when sessions end
• Browser Storage: Local preferences and bot chats use browser storage (localStorage and sessionStorage)

Data Retention

• Messages: Text chat messages are retained in Firestore for moderation purposes and may be deleted periodically
• Reports: User reports and evidence are retained for investigation and legal compliance
• Blocked Users: Block records are maintained indefinitely to prevent banned users from returning
• Session Data: Temporary session data is cleared from server memory when you disconnect
• Browser Storage: Local data persists until you clear your browser data or it expires

Third-Party Services

We use the following third-party services:

• Firebase (Google): Authentication, database (Firestore), and file storage for reports
• WebRTC: Peer-to-peer video/audio connections using STUN/TURN servers
• FingerprintJS: Device fingerprinting for anonymous identification
• Socket.IO: Real-time signaling and connection management
• html2canvas: Screenshot capture for report evidence (with user consent)
• Vercel/Render: Hosting and deployment infrastructure

These services have their own privacy policies and data practices.

Your Rights

You have the right to:

• Use the service with a pseudonym (display name)
• Clear your local browser data at any time
• Disconnect from any conversation immediately
• Report users who violate our terms
• Request deletion of your messages and reports (contact support)
• Know what data we collect about you
• Opt-out by not using the service

Cookies and Tracking

We use minimal technical cookies and browser storage for functionality:

• Session cookies for maintaining your connection
• localStorage for display name and age verification
• sessionStorage for bot chat history and temporary data
• No third-party tracking or advertising cookies
• No cross-site tracking

Age Restriction

Ran-Doe is strictly for users 18 years and older. We implement age verification to comply with applicable laws and ensure the safety of minors. If we become aware that a user is under 18, we will immediately block access and delete any associated data.

International Users

Ran-Doe operates primarily in North America with servers in the United States. By using our service from other regions, you consent to the transfer and processing of your data in accordance with this policy and applicable U.S. laws.

Law Enforcement

We may disclose information if required by law, court order, or legal process. We will only share data that we actually possess (fingerprints, messages, reports) as we do not collect personal identification information.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by posting the new policy on this page with an updated revision date. Your continued use of the service after changes constitutes acceptance.

Contact Us

If you have questions about this Privacy Policy, our data practices, or to request data deletion, please contact us through the app's report system or support channels.