Motivez Go back

Privacy Policy

Effective Date: June 1, 2026

This Privacy Policy explains how Motivez ("Motivez," "we," "us," or "our") collects, uses, discloses, and protects personal information when you use our website, mobile application, and related services (collectively, the "Service"). Motivez is a social discovery and event-planning app that helps users find nearby places, create and join group outings called "Motives," coordinate with friends via group chat, and optionally purchase tickets for paid events through Stripe. This policy applies to users in Canada and the United States. Additional rights may apply under PIPEDA (Canada) and the CCPA/CPRA (California).

1. Children and COPPA Compliance

The Service is intended for users who are 13 years of age or older. We do not knowingly collect personal information from children under 13. If you are under 13, do not create an account, use the Service, or submit any personal information to us. If we learn that we have collected personal information from a child under 13 without verified parental consent, we will delete that information promptly and terminate the associated account.

If you are a parent or legal guardian and believe your child under 13 has created an account or provided us with personal information, please contact us immediately at motivezapp@gmail.com. We will investigate and delete the account and data within a reasonable time.

Users between 13 and 17 may use the Service only with the knowledge and permission of a parent or legal guardian. Parents and guardians are responsible for supervising their minor's use of the Service. The Service involves real-world meetups, location sharing, and (for paid Motives) financial transactions — parents and guardians should be aware of these features before allowing a minor to participate.

We do not collect date of birth at registration. We do not knowingly allow users under 13. If you believe a user is under 13, please report it to motivezapp@gmail.com.

2. Information We Collect

Account and profile information. When you register, we collect your name (or display name), username, email address, and authentication credentials. If you sign up via Google or Apple, we receive your name, email address, and profile photo from those providers. You may also add an optional bio and profile photo. We do not collect date of birth, phone number, or government ID.

Motive and event data. When you create a Motive, we collect the title, description, category, start and end times, precise location (latitude and longitude), cover photo, capacity, privacy setting (public, friends-only, or closed), and payment settings if applicable. This information is stored and, depending on your privacy setting, may be visible to other users.

Precise location. The Service uses your device's GPS to show nearby places and Motives and to power the discovery feed. Your current location is sent to our backend on each discovery request. We store precise latitude and longitude permanently in the database for all Motives you create. We do not store a continuous log of your device's location over time — location is used at the time of a request and for Motive records only. You can disable location access in your device settings at any time; doing so will disable discovery features.

Messages and chat content. All messages you send in group chats — including text, shared media, polls, checklists, availability responses, and budget entries — are stored in our database. Messages are not end-to-end encrypted and are stored indefinitely unless you or an admin deletes them. Chat media (photos and videos) are stored in our cloud storage.

Photos and media. We store profile photos (avatars), Motive cover images, group chat avatars, and photos and videos sent in chats. All media is stored in Supabase cloud storage.

Social graph. We store your friend connections and friend request history (sent, received, accepted, declined).

Attendance and ratings. We store your RSVP status for Motives, whether your attendance was approved or declined, and host ratings you give or receive.

Push notification tokens. If you grant notification permission, we store your Expo push token on our servers to deliver push notifications. This token is device-specific and is removed when you log out.

Notification history. Notifications sent to you (friend requests, messages, Motive updates, payment confirmations, etc.) are stored in our database, including their title, body, and associated metadata.

Preferences and personalization. During onboarding, you select interest categories (e.g., food, sports, nightlife). These are stored and used to personalize your discovery feed. We also store in Redis a short-term cache (up to 7 days) of places you have liked or disliked in the swipe feed for ranking purposes.

Payment data. If you purchase a ticket to a paid Motive, payment is processed by Stripe. We do not store your card number, CVV, or full bank account details. We store in our database: the Motive's ticket price, your attendance approval status after a confirmed payment, and your Stripe payment intent ID for reconciliation. If you are a host and connect a Stripe account to receive payouts, we store your Stripe Connect account ID and onboarding status.

Technical and usage data. We collect standard server logs including IP addresses, device type, operating system, app version, and API request timestamps. Our backend logs events such as logins, place searches, and payment actions for security and debugging purposes.

Trending search cache. Anonymized search queries are cached in Redis for up to 2 weeks to power trending features, then automatically deleted.

3. How We Use Personal Information

We use the information we collect to:

  • Create and manage your account and authenticate you securely
  • Power location-based discovery — showing nearby places and Motives based on your current location
  • Allow you to create, join, and coordinate Motives and group chats
  • Personalize your discovery feed based on your interests and activity
  • Process payments for paid Motives via Stripe
  • Send push notifications for messages, friend requests, Motive updates, and payment events
  • Display social context — showing which friends are attending a Motive or have liked a place
  • Detect and prevent fraud, abuse, and unauthorized access
  • Comply with legal obligations
  • Improve and develop the Service

We do not use your personal information to serve third-party advertising. We do not sell your personal information.

4. Third-Party Services and Data Sharing

We share personal information only as described below.

Supabase. Our database, authentication, and file storage provider. All user data, messages, media, and app records are stored on Supabase infrastructure.

Google Places API. When you use the discovery feed, we send your precise latitude and longitude, search radius, and any text query to Google's Places API to retrieve nearby place results. Google's privacy policy governs this data. We do not send your name, email, or account information to Google Places.

Stripe. If you purchase a ticket or connect a Stripe account as a host, payment data is processed by Stripe under Stripe's privacy policy and PCI DSS compliance. We send Stripe your user ID, the Motive ID, and the payment amount. Stripe independently collects your payment method details. Host Stripe Connect accounts involve Stripe collecting identity and banking information directly from the host during Stripe's onboarding.

Expo. We use Expo's push notification infrastructure. Your push token is sent to Expo's servers to deliver notifications to your device. Expo's privacy policy governs this data.

Railway. Our backend API is hosted on Railway's cloud infrastructure. API request data (including location coordinates in transit) passes through Railway's servers.

Redis (RedisLabs). We use Redis to cache short-term data: liked/disliked places (up to 7 days), place details (up to 7 days), trending search terms (up to 2 weeks), and personalization data. This data is keyed by user ID, not linked to your name or email in Redis.

Other users. Depending on your Motive's privacy settings, other users may see your profile name, username, avatar, and attendance status. In public Motives, any authenticated user can see the attendee list. In friends-only or closed Motives, visibility is limited to invited or approved attendees.

Legal and safety disclosures. We may disclose information to law enforcement or other authorities if required by law, court order, or to protect the safety of users or the public.

Business transfers. If Motivez is acquired or merges with another company, personal information may be transferred as part of that transaction under appropriate confidentiality protections.

We do not share your data with advertisers, data brokers, or analytics platforms. We have no active third-party analytics or crash reporting SDKs in the app at this time.

5. Location Data — Additional Detail

Location is central to how Motivez works. Here is exactly how we handle it:

  • Your device's GPS coordinates are sent to our backend each time you load the discovery feed or search for nearby places.
  • Your coordinates are forwarded to Google Places API to retrieve nearby venue data.
  • A geohash (approximately 100m precision) derived from your location is cached in Redis for up to 3 days to power the place pool — this is not linked to your account by name.
  • When you create a Motive, the precise latitude and longitude you select for the venue is stored permanently in our database as part of the Motive record.
  • We do not record a timestamped log of everywhere you go. Location is used at the point of a request; we do not build a movement history.
  • You can revoke location permission at any time in your iOS Settings. The app will continue to work for chat and social features but discovery and Motive creation will be unavailable.

6. Messages and Chat Data

All messages sent in Motivez group chats are stored in our database indefinitely. This includes text messages, media references, poll questions and votes, availability responses, checklist items, and budget entries. Messages are not encrypted end-to-end — they are stored in plaintext in our database and are accessible to Motivez engineers with database access. We do not sell, analyze for advertising, or share message content with third parties. If you delete your account, your messages will be deleted from the database within a reasonable period, subject to our retention policy below.

7. Your Rights and Choices

You may update your profile information, username, bio, and avatar at any time within the app.

You may request deletion of your account and associated personal information by contacting us at motivezapp@gmail.com. We will delete your account, profile, messages, media, and friend connections within 30 days of your verified request, except where we are required to retain information for legal compliance, security, dispute resolution, or to complete pending transactions.

You may request a copy of the personal information we hold about you by contacting us at the email above.

You may revoke location permission at any time through your device settings.

You may disable push notifications at any time through your device settings or iOS notification preferences.

You may opt out of marketing emails (if any) by using the unsubscribe link in such emails.

8. Data Retention

We retain your personal information for as long as your account is active and as long as needed to provide the Service. Specifically:

  • Account and profile data: Retained until you delete your account or request deletion.
  • Motive records: Retained indefinitely as part of the platform's event history, unless you delete the Motive or your account.
  • Messages and chat media: Retained indefinitely unless deleted by a user or admin, or upon account deletion.
  • Notification history: Retained indefinitely unless deleted upon account deletion.
  • Push tokens: Deleted from our servers when you log out.
  • Redis cache (liked/disliked places, personalization): Up to 7 days, then automatically deleted.
  • Redis cache (trending searches): Up to 2 weeks, then automatically deleted.
  • Place photo cache: Up to 3 days in our cloud storage, then automatically deleted.
  • Server logs: Retained for a reasonable period for security and debugging, typically 30–90 days.
  • Payment records: Retained as required by financial and legal obligations (typically 7 years under Canadian law).

9. Security

We use HTTPS/TLS encryption for all data in transit between your device and our servers. Our database and file storage are hosted on Supabase, which provides encryption at rest and access controls. We use row-level security (RLS) policies in our database to restrict data access to authorized users. Our backend API verifies your identity on every request using JWT tokens signed with a secret key. Payment processing is handled entirely by Stripe, which is PCI DSS compliant.

Despite these measures, no system is perfectly secure. We cannot guarantee that unauthorized access, hacking, data loss, or breaches will never occur. If we become aware of a breach that creates a real risk of significant harm to you, we will notify affected users and report to relevant authorities (including Canada's Office of the Privacy Commissioner under PIPEDA) as soon as feasible and no later than 72 hours after we determine a reportable breach has occurred, to the extent required by applicable law.

If you discover a security vulnerability in our app or backend, please report it to motivezapp@gmail.com.

10. International Data Transfers

Motivez is operated from Canada. Our backend infrastructure (Railway) and database (Supabase) may store and process data in the United States or other countries. By using the Service, you acknowledge that your data may be transferred to and processed in jurisdictions outside your home country. We take steps to ensure appropriate protections are in place, including using reputable service providers with strong security practices.

11. California Residents (CCPA/CPRA)

Do Not Sell or Share My Personal Information: Motivez does not sell or share your personal information as those terms are defined under California law. There is no opt-out mechanism required because we do not engage in these activities. If our practices change, we will update this policy and provide an opt-out link here before doing so.

Categories collected: Identifiers (name, email, username, device ID, IP address); profile information; precise geolocation; internet activity (usage logs, app interactions); commercial information (payment history if applicable); inferences (interest categories, personalization data); audio/visual (profile photos, chat media).

Purposes: Providing and improving the Service, personalization, security and fraud prevention, payment processing, push notifications, legal compliance.

Sale and sharing: We do not sell personal information. We do not share personal information for cross-context behavioral advertising as defined under the CCPA/CPRA.

Your rights: Right to know, right to delete, right to correct, right to opt out of sale/sharing (not applicable as we do not sell), right to non-discrimination. To exercise these rights, email motivezapp@gmail.com. We will verify your identity before completing your request.

Sensitive personal information: We collect precise geolocation. We use it solely to provide the Service (discovery and Motive location features). We do not use it for advertising or profiling beyond what is necessary to operate the Service.

12. Canada (PIPEDA)

We collect, use, and disclose personal information with your knowledge and consent, except where permitted or required by law. You may withdraw consent at any time, subject to legal and contractual limitations, by contacting us — though withdrawal may limit your ability to use certain features. You have the right to access personal information we hold about you and request corrections. We will respond to access or correction requests within 30 days as required under PIPEDA. We are accountable for personal information in our custody, including information processed by our service providers under appropriate data processing agreements. If you have a complaint about our privacy practices, contact us at motivezapp@gmail.com. If you are not satisfied with our response, you may file a complaint with the Office of the Privacy Commissioner of Canada at priv.gc.ca or the applicable provincial privacy commissioner in Quebec (Commission d'accès à l'information), Alberta (Office of the Information and Privacy Commissioner of Alberta), or British Columbia (Office of the Information and Privacy Commissioner for BC).

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the app or by email. The Effective Date at the top of this page reflects the most recent update. Continued use of the Service after an update constitutes acceptance of the revised policy.

14. Contact Us

Motivez Inc.
Email: motivezapp@gmail.com
Mailing Address: 1 University Ave, Toronto, ON M5J 2P1, Canada
Website: https://motivez.app

For account deletion, data access requests, children's data concerns, or any other privacy matter, email us at the address above. We aim to respond within 30 days.