Privacy is one of the main objectives of Quivre's design.
A minimum of sensitive information is collected from you to support core functionality. And what is collected, is kept encrypted whenever possible (using your own secret password).
Quivre is fully GDPR compliant, and offers the same privacy to both EU and non-EU users.
I'd like this page to be as easy to understand as possible: please let me know if anything's unclear so that I can try improve it!
No personal data is ever shared with any 3rd parties!
| What data | When it's collected | Why it's collected | How it's stored, and for how long | Comments |
| Part of your IP address (x.y.z.000) | Automatically when you visit Quivre | Security: rate-limiting, and to help detect malicious requests | On my server, for 14 days | Doesn't directly identify you, but can identify your country and city |
| Your browser data (user agent) | Automatically when you visit Quivre | Analytics: so I know which devices to optimise for | On my server, for 14 days | Doesn't directly identify you |
| Your email address | If you choose to share it (optional) | To allow email login or to allow notification emails when a partner shares their desires | On my server, until your account is (auto) deleted | Never used for any other other reason (marketing, spam, etc.) |
Quivre does not track you, and it does not enable any 3rd parties to track you. Quivre's only cookie is used only for secure authentication (when you log-in, and during the onboarding process).
A "session-style" authentication cookie is used that will expire if you close your browser, choose to log out, or after some hours of inactivity.
The storage method depends on if you choose to enable the optional email login or not.
All your Quivre data is stored on my server unencrypted by necessity. This is the traditional way that the vast majority of internet account data is stored, and allows a forgotten password to be reset.
This is a high-security option uniquely available to Quivre.
Your answers to the Quivre quiz are associated with your Quivre code and are stored in 2 ways:
On my server, AES-encrypted using your secret password (which I do not store). Your encrypted answers are used to support updating your answers, and to support sharing desires when you and a partner both consent to do so.
On my server, in an unencrypted format with random noise (for plausible deniability). This is used to support approximate matching without the need for consent.
Note that for extra privacy, you can also choose to keep your Quivre code private (i.e. just between you and your trusted partners). This way, even if there's a total data leak - there'll be no way to tell which (encrypted, or noisy) data even belongs to you.
See the responsible use page for more details.
Anyone who has your code (meaning anyone you share it with, or anyone they share it with) can see:
See the responsible use page for more details.
You can optionally consent to share your sexual desires with a specific Quivre code (partner). You can choose to:
If you and your partner both consent, then you'll each be able to see the relevant desires for exactly 8 days. After 8 days, this data will be automatically deleted.
Your quiz answers may be combined with answers from other users to generate aggregated, anonymous community statistics.
This data is made public, and intended for fun/curiosity. There's no way to infer anything about you in particular from the public aggregate data.
If you send me a direct message (e.g. by email, contact form, or social media), I'll normally archive the message along with with whatever personal information was included in/with the message (e.g. your email address).
If you'd prefer I instead delete a message after receipt, please just mention so in the message.
It is solely your responsibility to ensure that you keep private any credentials used to log in to your Quivre account.
If you have a Quivre password, use a strong password (some minimums are enforced) and keep your password private.
If you have email login enabled, use a strong email password, and follow any other security recommendations from your email provider.
You can export and/or permanently delete all your data on Quivre at any time by logging in and going to your account options (coming soon, in the meantime please contact me).
Note that for security, you must be authenticated (logged in) to do this.
Important: if you have not enabled email login and you forget your password - I cannot help you to delete or export your data.
As a security measure, all your data (including your answers to the Quivre quiz) will be automatically deleted if you don't log in for more than 18 months.
Quivre is designed, built, and deployed following conservative security best practices including: