Starting Ran-Doe…
This page explains what Ran-Doe knows about you and what it does with that. Plain English, no tricks — and where the law gives you rights over your data, this page tells you how to use them.
Updated May 2026.
Ran-Doe is operated by Azalea Cyber Development, a registered partnership based in Calgary, Alberta, Canada ("Ran-Doe", "we", "us"). We are the controller responsible for the personal data described here. For any privacy question or request, email hello@randoe.chat; for formal legal or data-protection notices, use hello@azaleacd.ca.
Identity.
Chat.
Safety.
Technical.
We don't build a profile from your IP address or use it to track you between sessions. But like every internet service, an IP address is part of how a connection works:
An IP address can count as personal data under laws like the GDPR, so we treat it that way.
For users in the EEA, UK, and similar regimes, here is the lawful basis for each use:
We don't record or store your video or audio. Calls connect directly between you and the other person where possible; when a direct connection can't be made, the encrypted stream is relayed through a TURN server but still isn't recorded or kept by us. The one exception is a still screenshot — captured only when a report is filed, so a moderator can see what was reported.
We don't sell your data. We use a small set of trusted providers who process data on our behalf:
Each has its own privacy policy — worth a look. We also share data when the law requires it (Section 17) and to meet the child-safety duties in Section 12.
Our servers and most of our providers are in the United States. If you use Ran-Doe from outside the US — including from Canada, the EEA, or the UK — your data is processed in the US. Our hosting and infrastructure providers (Firebase, Cloudflare, Vercel) make these cross-border transfers under recognized safeguards such as the European Commission's Standard Contractual Clauses and the EU-US Data Privacy Framework. As a small operator, we rely on those provider safeguards rather than holding separate transfer agreements of our own.
If you visit from the European Economic Area, the United Kingdom, or Switzerland, you'll see a one-time consent prompt — served by Google's certified Consent Management Platform — before any personalized ad cookie is set, with clear choices to consent, refuse, or manage individual purposes. Visitors from California get the equivalent "Do Not Sell or Share" control under the CCPA/CPRA, and similar choices are offered to visitors from other regions with comparable laws. You can change your choice at any time by clearing site data and reloading.
Ran-Doe is for adults 18 and over. Before you enter we ask your date of birth to confirm you're an adult (a self-declaration, not ID verification) and we don't store it. We don't knowingly allow anyone under 18 or knowingly collect their data. If we learn a user is under 18, we block them right away and delete what we hold.
We have zero tolerance for child sexual abuse material (CSAM) or any sexualization of minors. Where we become aware of such material, we preserve the relevant evidence, permanently ban those involved, and report it to the authorities the law requires — including the U.S. National Center for Missing & Exploited Children (NCMEC) and Canada's tipline at Cybertip.ca — and cooperate with law enforcement.
We protect data in transit with HTTPS/WSS and rely on our providers' security for data at rest. No system is perfectly secure, but if a breach affects your personal data we will notify you and the relevant regulators where the law requires it.
Bans are triggered by device fingerprint and report review. If you think a ban was a mistake, email hello@randoe.chat and a person will look at it.
Depending on where you live — for example under the GDPR, UK GDPR, Canada's PIPEDA and Alberta's PIPA, or California's CCPA/CPRA — you can:
To exercise any of these, email hello@randoe.chat. We respond within the time the law allows (generally within 30 days). Because Ran-Doe is anonymous, we may only be able to act on data we can actually tie to you (such as a report id or device id you give us).
You can also complain to a data-protection regulator — for example your local EU authority, the UK's ICO, the Office of the Privacy Commissioner of Canada, or the Office of the Information and Privacy Commissioner of Alberta.
Ran-Doe is run from Canada; our servers are in the United States. See Section 10 for what that means for your data. We also block access from locations we can't lawfully serve, such as comprehensively sanctioned countries and regions (see the Terms).
We're a small, independent partnership — not a multinational with offices around the world. The core promises on this page apply to everyone, everywhere, whatever country you're in: what we collect, what we never collect, that we don't sell your data, and that we honor the rights in Section 15. What we can't honestly claim is that we've put in place every country-specific formality that some laws expect — for example, a separately appointed local data-protection representative in each region. We don't hold ourselves out as registered, licensed, or established in every country Ran-Doe can be reached from.
None of that takes away the rights your own law gives you. If your country's law grants you a right, or a way to complain such as going to your national data-protection authority, that still stands. You can always reach us directly at hello@randoe.chat, and we'll act on what the law requires and what we reasonably can.
We hand over what we have when a valid court order or law requires it, and as needed for the child-safety duties in Section 12. We only hold what this page describes.
When this page changes, we update the date at the top. Keeping on using the app means you accept the new version.
Privacy questions or data requests: hello@randoe.chat. Formal legal or data-protection notices: hello@azaleacd.ca. General help is on the Contact page. For rule-breaking during a chat, use the in-app report button.
— End of file —