Privacy Policy
Last updated: April 7, 2026
Contact Information
Data Controller: Bekon LLC
CEO: Blake Woodson
Email: contact@bekon.app
Website: https://www.bekon.app
1. Introduction
Bekon LLC ("Bekon," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use:
- Our website at https://www.bekon.app
- Our mobile application "Bekon" (available on iOS and Android)
- Any related services, features, or content we offer (collectively, the "Services")
By using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Services.
2. Data We Collect
2.1 Data You Provide Directly
| Category | Examples |
|---|---|
| Identity data | First name, last name, email address, phone number, date of birth |
| Profile data | Region/location preferences |
| Questionnaire data | Personality assessment responses, compatibility preferences, social interests |
| Event data | Event registrations, attendance history |
| Payment data | Payment method details (processed by Stripe; we do not store your full card number) |
| Communication data | Messages you send to our support team, feedback, and survey responses |
2.2 Data Collected Automatically
| Category | Examples |
|---|---|
| Device data | Device type, operating system, unique device identifiers, app version |
| Usage data | Features used, pages viewed, actions taken within the app, timestamps |
| Location data | Region selected in-app (we do not collect precise GPS location) |
| Log data | IP address, browser type, access times, referring URLs |
| Push notification tokens | Device tokens for delivering push notifications (if you opt in) |
2.3 Data From Third Parties
We may receive data from:
- Stripe — Payment confirmation and transaction status
- Firebase — Authentication tokens and analytics data
- Expo — Push notification delivery data
3. How We Use Your Data
We process your personal data for the following purposes:
| Purpose | Legal Basis (GDPR) |
|---|---|
| Account creation and management | Performance of contract |
| Event matching and group assignment | Performance of contract |
| Matching algorithm refinement using event feedback | Legitimate interest |
| Restaurant assignment and notifications | Performance of contract |
| Payment processing | Performance of contract |
| Push notifications and event reminders | Consent |
| Marketing communications | Consent |
| Service improvement and analytics | Legitimate interest |
| Fraud prevention and security | Legitimate interest |
| Legal compliance | Legal obligation |
| Customer support | Performance of contract / Legitimate interest |
Matching Algorithm
Our matching algorithm uses your questionnaire responses and event preferences to create compatible dining groups of 4–7 people. This processing is essential to delivering our core service and is performed under the legal basis of contract performance.
After each event, we collect feedback (e.g., ratings and connection preferences) which is used in combination with your questionnaire data to refine and improve our matching algorithm over time. This helps us create better group experiences for all users. This refinement processing is performed under the legal basis of legitimate interest.
No fully automated decisions with legal or similarly significant effects are made without human oversight.
4. How We Share Your Data
We do not sell your personal data. We share data only in the following circumstances:
4.1 With Other Event Participants
When you are matched for a dining event, limited profile information (first name, fun fact, and professional field) is shared with other participants in your group. This sharing is essential to the Bekon experience.
4.2 With Service Providers
We use the following third-party service providers who process data on our behalf:
| Provider | Purpose | Location |
|---|---|---|
| Google Cloud Platform | Hosting, infrastructure, and data storage | United States |
| Stripe | Payment processing | United States |
| Firebase (Google) | Authentication and analytics | United States |
| Expo (EAS) | Mobile app builds and push notifications | United States |
All service providers are contractually bound to protect your data and process it only as we instruct.
4.3 For Legal Reasons
We may disclose your data if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Bekon, our users, or others.
4.4 Business Transfers
If Bekon is involved in a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction. We will notify you of any such change.
5. Data Retention
We retain your personal data only as long as necessary for the purposes described in this policy.
| Data Type | Retention Period |
|---|---|
| Active user account data | Duration of your account |
| Inactive account data | 2 years after last activity, then deleted |
| Event participation history | Duration of your account |
| Questionnaire responses | Duration of your account |
| Payment records | 7 years (legal/tax requirements) |
| Marketing consent records | 3 years after last interaction |
| Support communications | 2 years after resolution |
| Server logs | 12 months |
| Analytics data | 26 months |
When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.
6. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Encryption of data in transit (TLS/SSL) and at rest
- Secure authentication via Firebase Authentication
- Payment data handled exclusively by PCI-compliant Stripe — we never store full card numbers
- Access controls limiting access to personal data on a need-to-know basis, including IP-restricted administrative access
If we become aware of a security incident affecting your personal information, we will investigate, take reasonable steps to address it, and notify you and any applicable regulators as required by law.
While we take reasonable measures to protect your data, no method of transmission over the internet or electronic storage is 100% secure.
7. Cookies and Tracking Technologies
7.1 Website
Our website may use:
| Type | Purpose | Duration |
|---|---|---|
| Essential cookies | Site functionality, authentication | Session |
| Analytics cookies | Understanding usage patterns | Up to 12 months |
7.2 Mobile App
Our mobile app uses standard analytics and crash reporting tools to improve the user experience. These do not use browser cookies but may collect device identifiers and usage data as described in Section 2.2.
7.3 Your Choices
You can control cookies through your browser settings. Disabling essential cookies may affect site functionality. You can opt out of analytics tracking through your device settings.
8. Your Privacy Rights
8.1 Rights for All Users
Regardless of your location, you have the right to:
- Access your personal data
- Correct inaccurate personal data
- Delete your account and personal data
- Withdraw consent for optional processing (e.g., marketing)
- Object to processing based on legitimate interest
To exercise these rights, contact us at contact@bekon.app. We will respond within 30 days.
8.2 Additional Rights Under GDPR (EEA/UK Users)
If you are located in the European Economic Area or United Kingdom, you also have the right to:
- Restrict processing of your personal data
- Data portability — receive your data in a structured, machine-readable format
- Object to profiling — opt out of automated decision-making
- Lodge a complaint with your local data protection authority
Legal Basis: We process your data under one or more of the legal bases listed in Section 3 (contract performance, consent, legitimate interest, or legal obligation).
International Transfers: Your data is stored and processed in the United States. For EEA/UK users, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to safeguard transfers of personal data outside the EEA/UK.
8.3 Additional Rights Under CCPA (California Residents)
If you are a California resident, you have the right to:
- Know what personal information we collect, use, and disclose
- Delete your personal information
- Opt out of the sale of personal information (we do not sell your data)
- Non-discrimination — we will not discriminate against you for exercising your rights
To submit a request, contact us at contact@bekon.app. We will verify your identity before processing your request.
9. Children's Privacy
Bekon is intended for users who are at least 18 years old. We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected data from a minor, we will delete it promptly.
Bekon maintains zero tolerance for child sexual abuse material (CSAM). Any such content discovered on our platform will be immediately reported to the National Center for Missing & Exploited Children (NCMEC) and appropriate law enforcement authorities.
10. Third-Party Links
Our Services may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal data.
11. Push Notifications
We send push notifications for event reminders, restaurant reveals, group assignments, and service updates. You can manage your notification preferences in the app settings or through your device's notification settings at any time.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes:
- We will update the "Last updated" date at the top of this policy
- We will notify you via email or in-app notification for significant changes
- Continued use of our Services after changes take effect constitutes acceptance
We encourage you to review this policy periodically.
13. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights:
Email: contact@bekon.app
Website: https://bekon.app
For GDPR-related inquiries, please include "GDPR Request" in the subject line of your email.
This Privacy Policy is effective as of March 31, 2026. By using Bekon, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.