Your data, your rules.

1Who we are

Collide ("we," "us," "our") is a location-based professional networking application currently in pre-launch, based in Cairo, Egypt. This Privacy Policy explains how we collect, use, store, and protect personal information from people who visit our website (collideme.com), join our waitlist, respond to our survey, or use the Collide application when it launches.

This policy is governed by and interpreted in accordance with the laws of the Arab Republic of Egypt, in particular the Personal Data Protection Law No. 151 of 2020 (PDPL) and its Executive Regulations, as well as the related regulations of the National Telecom Regulatory Authority (NTRA) where applicable.

2What data we collect

When you join the waitlist

• Your email address — so we can notify you when Collide launches.
• Basic analytics — anonymous data about how you arrived at our site (e.g., referrer, device type). We do not use tracking cookies that identify you personally at this stage.

When you respond to our survey

• Survey responses — your answers to questions about professional networking habits, preferences, and opinions.
• Optional contact info — if you choose to share your name and WhatsApp number to be contacted about an early version of the app.
• Survey responses are stored via Google Forms, which applies its own privacy practices (see Google's Privacy Policy).

When you use the Collide app (after launch)

• Account information: name, email address, phone number (for verification), profession, company, LinkedIn profile (if provided), profile photo, short bio.
• Check-in and location data: when you actively check in at a venue, we record which venue, the time, and your chosen visibility status. We do not continuously track your location in the background.
• Interaction data: waves, messages, connections, and reports you make within the app.
• Technical data: device type, operating system, app version, IP address, and basic usage logs needed for security and debugging.

3Why we collect it (legal basis and purpose)

Under the PDPL, personal data may only be collected for legitimate, specific, and declared purposes. Here are ours:

• To provide the service: create your account, show you nearby professionals, enable messaging, process waves and check-ins.
• To communicate with you: send important service notifications, respond to support requests, and (with your consent) send product updates.
• To keep Collide safe: detect fake profiles, prevent harassment, enforce our Community Guidelines, and investigate reports.
• To improve the product: understand how people use Collide so we can make it better. Where possible, we use aggregated or anonymized data for this.
• To comply with legal obligations: cooperate with law enforcement when legally compelled to do so.

We do not use your data for automated decision-making that has significant effects on you, nor do we sell or rent your data to third parties.

4Consent and how to withdraw it

Under Article 2 of the PDPL, we only process your personal data with your explicit consent, or where we have another lawful basis (e.g., performance of a contract with you, or legal obligation).

When you sign up, check in at a venue, or submit a survey, you are giving consent for the specific purposes described at that moment.

5Your rights under the PDPL

As a data subject, you have the following rights:

• Right to access: request a copy of the personal data we hold about you.
• Right to correction: ask us to fix inaccurate or incomplete data.
• Right to deletion: ask us to delete your data ("right to be forgotten"), subject to legal retention requirements.
• Right to object: object to the processing of your data for specific purposes.
• Right to withdraw consent: as described in Section 4.
• Right to data portability: receive a copy of your data in a structured, commonly-used format.
• Right to be informed of breaches: be notified without undue delay if a breach is likely to affect your rights.
• Right to complain: file a complaint with the Egyptian Personal Data Protection Center (PDPC) if you believe your rights have been violated.

To exercise any of these rights, contact us at privacy@collideme.com. We will respond within 30 days.

6How we store and protect your data

We use industry-standard security practices to protect your information:

• Encryption in transit: all data sent between your device and our servers is encrypted using TLS/HTTPS.
• Encryption at rest: sensitive data stored in our databases is encrypted.
• Access controls: only authorized personnel can access user data, and only when necessary.
• Third-party providers: we use reputable infrastructure providers (Supabase for database, Vercel for hosting, Formspree or equivalent for form handling) who maintain their own strong security standards.
• Regular reviews: we review our security posture regularly and update practices as threats evolve.

No system is perfectly secure. If we become aware of a data breach that is likely to affect your rights, we will notify you and the relevant authorities (including the Egyptian Personal Data Protection Center) without undue delay, in accordance with Article 7 of the PDPL.

7Cross-border data transfers

Some of the infrastructure services we use (database, hosting, email) are operated from data centers located outside Egypt, primarily in the European Union and the United States.

Under Article 14 of the PDPL, transferring personal data outside Egypt requires specific safeguards. By using Collide, you consent to your data being transferred to and processed in these jurisdictions. We choose providers who:

• Offer a level of data protection comparable to the PDPL;
• Are bound by contractual data protection commitments with us;
• Comply with recognized international standards (e.g., GDPR, ISO 27001, SOC 2).

If you prefer your data to remain within Egypt, email us and we will do our best to accommodate, though some features may be limited.

8Data retention

We only keep your personal data for as long as we need it for the purposes described in this policy.

• Waitlist emails: kept until Collide launches and you become an active user, or until you unsubscribe. If you never activate an account after launch, we delete your email within 12 months.
• Survey responses: kept for up to 24 months for product research purposes, then anonymized or deleted.
• Active account data: kept for as long as your account is active.
• Deleted accounts: when you delete your account, your personal data is removed from our active systems within 30 days. Some information may be retained in backups for up to 90 additional days before being permanently erased.
• Legal retention: certain data may be retained longer if required by law (e.g., for tax, regulatory, or legal dispute purposes).

9Sharing with third parties

We do not sell, rent, or trade your personal data. We share data only in limited circumstances:

• With other Collide users: when you check in, your profile becomes visible to others at the same venue, per your visibility settings. You choose what to show.
• With service providers: we use trusted infrastructure partners (for example, Supabase for database, Vercel for hosting, email service providers, analytics tools). They process data on our behalf under strict confidentiality obligations.
• For legal reasons: we may disclose data if required by a valid legal process (e.g., court order, subpoena) or to protect safety, prevent fraud, or enforce our Terms of Service.
• In the event of a business change: if Collide is acquired, merged, or undergoes a change of ownership, your data may transfer to the new entity. You will be notified in advance and given the option to delete your data before transfer.

10Cookies and tracking technologies

Our website uses minimal cookies and similar technologies:

• Essential cookies: needed for the site to function (e.g., remembering your dark mode preference). These do not require consent under PDPL.
• Analytics: we may use privacy-respecting analytics (such as Plausible or Fathom) that do not use cookies or track individual users. If we ever add analytics that require consent, you will see a banner before any tracking begins.
• No advertising cookies: we do not run ads and do not use advertising trackers.

You can control cookies through your browser settings. Blocking essential cookies may break some features.

11Children's privacy

Collide is intended for users 18 years of age or older. We do not knowingly collect personal data from children under 18. If we discover that we have collected data from a person under 18, we will delete it promptly.

If you believe a minor has submitted personal data to us, please contact privacy@collideme.com and we will investigate and remove the data.

12Changes to this policy

As Collide evolves, this policy may be updated to reflect new features, legal requirements, or clearer language. When we make significant changes, we will:

• Update the "Last updated" date at the top of this page;
• Notify you by email (if we have your email address) or through an in-app message;
• For material changes that expand how we use your data, request fresh consent before the changes take effect.

Continued use of Collide after changes take effect means you accept the updated policy.