Plirosi ("we", "us", or "our") is committed to protecting your privacy.
This Privacy Policy explains how we collect, use, store, and share information
about you when you use our mobile application and website at plirosi.com
(collectively, the "Service"). Please read it carefully. By using Plirosi,
you agree to the practices described in this policy.
Section 01
Who We Are
Plirosi is a social platform that combines two distinct features: a spontaneous
in-person meetup system ("Life's Connections") and a collaborative family tree
and history builder. The service is operated by Odra Dynamics, based in Kenya.
For questions about this policy, contact us at
privacy@plirosi.com.
Section 02
Information We Collect
We collect information in three ways: information you give us directly,
information generated by your use of the Service, and information from
third-party services you connect.
SendGrid (email delivery — we share your email address for transactional emails only)
Section 03
Organisation Accounts
Plirosi allows users to create and manage organisation profiles for event venues,
student unions, clubs, and businesses.
When you create an organisation account we collect:
Organisation name, type, and description
Organisation logo and location
Information about events created by the organisation
When you join an organisation as a team member we collect:
Your role title and role type within the organisation
Any documents you upload for role verification — contract or appointment letter
Start and end dates associated with your role
Organisation documents
Documents uploaded for role verification are reviewed by Plirosi staff and stored
securely on our servers. They are not shared with third parties. When your role ends,
your documents are retained for audit purposes for 12 months, then
permanently deleted.
If you created an organisation and later delete your personal Plirosi account, the
organisation profile continues to exist but ownership is transferred to the next
administrator in the organisation.
Section 04
Guest Connect (No Account)
Guest connect allows people to participate in event-based matching without creating
a Plirosi account. It is available at events where an organisation has generated a
QR code.
When you use guest connect we collect:
A selfie photo taken at check-in
Your activity preference for the session
Your GPS location at the time of check-in
A hashed device identifier used only for rate limiting — it cannot be used to identify you
✓ Automatic deletion
ALL guest session data — including your selfie, location, activity preference, and
hashed device identifier — is automatically and permanently deleted after
4 hours without exception. Guest sessions are never linked to any
Plirosi account.
Before joining a guest session, you confirm that you are 18 years of age or older.
The hashed device identifier is deleted along with the rest of the session data and
cannot be reversed to identify you or your device.
Section 05
How We Use Your Information
We use the information we collect to:
Create and manage your account
Match you with nearby users who share compatible meetup intents
Display your family tree and enable collaboration with blood relatives
Send you push notifications and transactional emails (match alerts, password resets)
Verify photo authenticity and enforce community safety standards
Detect and prevent fraud, abuse, and violations of our Terms of Service
Improve and develop the Service
Comply with legal obligations
✓ What we do not do
We do not sell your personal data to third parties. We do not use your
data for advertising purposes. We do not share your location with other users —
only a computed geographic midpoint between matched users is ever shown,
never your precise coordinates.
Section 06
Location Data
Location is the most sensitive data we handle. Here is exactly how it works:
When collected: Only when you explicitly create a meetup intent by pressing "Post Intent". We never collect location in the background.
What is stored: Your GPS coordinates (latitude and longitude) are stored temporarily on our servers while your intent is active.
What other users see: Never your precise location. When two users are matched, we compute a geographic midpoint and suggest a meeting location near it. Your coordinates remain private.
How long it is kept: Your location is deleted when your intent expires (after 4 hours) or when you cancel it — whichever comes first.
Group intents: The location name you specify for a group meetup (e.g. "Bison Bar, JOOUST") is visible to other users who can see that intent. This is a place name you type yourself, not your GPS coordinates.
⚠ Location permission
The app will request location permission when you first try to create a meetup intent.
You can decline and still use all other features of the app including the family tree,
family history, and group meetups where you specify a location manually.
Section 07
Family Tree and History Data
The family tree and family memory features involve data about people who
may not be users of Plirosi. We take this responsibility seriously.
Who can see your family tree: Your family tree is visible to confirmed blood relatives within the app and, if you choose to share it, via a public share link. You control whether a public link is generated.
Data about non-users: When you add a family member who is not a Plirosi user, you are providing their name, gender, and date of birth on their behalf. Please ensure you have appropriate consent to do so, particularly for living adults.
Family history content: Stories, answers, and photos in the Family Memory section are shared among all confirmed blood relatives in your family network. This content is not publicly visible.
Deceased individuals: Information about deceased family members is stored with the same protections as living members.
Section 08
Photos and Media
Plirosi requires two photos for the meetup feature: a profile photo and a
full-body photo. These are required so that matched users can recognise
each other in person.
Photos are stored securely on our servers and served over HTTPS
Profile photos are visible to other users in the app
Full-body photos are visible to your confirmed matches only
We may use automated systems to verify that photos show a real person and comply with our community guidelines. Photos are not used to train AI models.
You can delete your photos at any time from your profile settings
Family album photos are visible only to confirmed blood relatives in your family network
Section 09
Matching and Connections
The meetup matching system works by comparing your intent (activity,
preferences, location) with other active intents nearby. Here is what
the other person sees when you are matched:
Your profile photo, full-body photo, first name, age, and gender
The activity you posted
A suggested meeting location (geographic midpoint — not your actual location)
You can hide your intent from family members and from people you have
previously met through the app using the privacy controls on the intent
creation screen.
✓ Your control
You can cancel your intent at any time, which immediately removes you
from the matching pool and deletes your stored location.
Section 10
Data Sharing
We do not sell your data. We share your information only in the following limited circumstances:
Other users: As described in this policy — profile information visible to matches, family data visible to confirmed relatives
Service providers: Firebase (push notifications), SendGrid (email), DigitalOcean (cloud hosting). These providers are contractually prohibited from using your data for any purpose other than providing the service
Moderation: When you report a user or content, we collect the report details and notify the app administrator. Reports are used solely for moderation purposes and are not shared with third parties
Legal requirements: We may disclose information if required by law, court order, or to protect the rights and safety of our users or the public
Business transfers: If Plirosi is acquired or merges with another company, your data may be transferred as part of that transaction. We will notify you before this happens.
Section 11
Data Security
We implement the following security measures to protect your data:
All data is transmitted over HTTPS (TLS encryption)
Passwords are hashed using Django's PBKDF2 algorithm — we never store plain-text passwords
Database access is restricted to application servers only — not publicly accessible
API keys and credentials are stored as environment variables, not in source code
Regular security updates applied to server software
⚠ Important
No system is completely secure. If you believe your account has been
compromised, change your password immediately and contact us at
privacy@plirosi.com.
Section 12
Data Retention
Active accounts: We retain your data for as long as your account is active
Location data: Deleted within 4 hours of intent creation or immediately on cancellation
Expired intents: Intent data (activity, preferences) is retained for 30 days then deleted
Deleted accounts: When you delete your account, your personal data is permanently deleted within 30 days. Family tree nodes you created that are linked to other users' trees are anonymised rather than deleted, to preserve the integrity of other users' family records.
Organisation accounts: If you created an organisation and delete your personal account, the organisation profile continues to exist but ownership transfers to the next administrator. If no administrator remains, the organisation is archived and scheduled for deletion after 90 days.
Organisation documents: Contracts and appointment letters uploaded for role verification are retained for 12 months after the role ends, then permanently deleted.
Guest sessions: All guest session data — selfie, location, activity preference, and hashed device identifier — is automatically and permanently deleted after 4 hours, regardless of any account deletion request. No manual action is required.
Photos: Deleted immediately when you remove them, or within 30 days of account deletion
Section 13
Your Rights
You have the following rights regarding your personal data:
Access: Request a copy of all data we hold about you
Correction: Update or correct inaccurate information via your profile settings
Deletion: Delete your account and associated data at any time from profile settings
Portability: Request your data in a machine-readable format
Objection: Object to how we process your data in certain circumstances
Withdrawal of consent: Withdraw location permission at any time via your device settings
To exercise any of these rights, contact us at privacy@plirosi.com.
We will respond within 30 days.
Section 14
Children's Privacy
Plirosi's meetup features are intended for users aged 18 and over.
We do not knowingly collect personal data from anyone under 18 for
the purpose of meetup matching.
The family tree feature may include records of minors as family members,
added by adult relatives. Such records contain only a name, gender, and
date of birth, and are visible only within the family network.
If you believe a child's data has been collected without appropriate consent,
contact us at privacy@plirosi.com and we will delete it promptly.
Section 15
Changes to This Policy
We may update this Privacy Policy from time to time. When we make material
changes, we will notify you by email or by displaying a prominent notice in
the app at least 14 days before the changes take effect.
Your continued use of Plirosi after the effective date of any changes
constitutes your acceptance of the updated policy. If you disagree with
the changes, you may delete your account before they take effect.
Section 16
Contact Us
If you have questions, concerns, or requests relating to this Privacy Policy
or your personal data, please contact us:
Email: privacy@plirosi.com
Website: plirosi.com
Response time: Within 30 days for all requests
Questions about your data?
We take every privacy concern seriously and respond within 30 days.