Privacy Policy

This Privacy Policy describes how information about visitors of the Surpriz.date website is collected, processed, and stored. We follow applicable international data protection standards, including GDPR, CCPA/CPRA, and UK GDPR.

Our goal is to ensure data security and maintain transparency in our relationship with users.

Information We Collect

When you visit our website, we automatically collect technical data, including:

• IP address;
• Browser type and operating system;
• Date and time of visit;
• Pages viewed and on-site interactions.

Account Registration

When creating an account, we process the following personal data:

• Email address;
• Password (stored in encrypted/hashed form);
• IP address used during registration and login;
• Date and time of registration and visits;
• Additional information voluntarily provided by the user (e.g., name, website, interests).

This data is used solely for authentication, protection against unauthorized access, and providing website functionality.

Cookies

The website uses cookies to ensure proper functionality and analyze traffic. You may disable cookies in your browser settings, but doing so may affect certain features of the website.

Purpose of Data Processing

The collected information is used for:

• Ensuring security;
• Internal analytics and statistics;
• Improving website performance and content quality;
• Compliance with legal requirements.

We do not use personal data for profiling or marketing purposes.

Sharing Data with Third Parties

Data may be shared with:

• Hosting providers;
• Analytics services;
• Government authorities when required by law.

We do not sell personal data to third parties.

User Rights

You have the right to:

• Access your personal data;
• Correct inaccurate data;
• Request deletion (“right to be forgotten”);
• Restrict processing;
• Data portability (GDPR);
• Opt out of the sale of personal information (CCPA);
• Be free from discrimination when exercising these rights.

For questions related to personal data processing, please contact us.

Do Not Sell My Personal Information

Under the California Consumer Privacy Act (CCPA), California residents have the right to prohibit the sale of their personal information. We do not sell personal data; however, you may exercise your “Do Not Sell My Personal Information” right through the dedicated page.

Data Retention

• Technical data: up to 12 months;
• User accounts: until deleted by the user;
• Cookies: according to browser settings.

Data Storage and Protection

All data is stored on secure servers and processed using appropriate security measures to prevent unauthorized access.

User Consent

Consent to the use of cookies is recorded via a notification/banner displayed during the first visit to the website.

Changes to This Policy

We reserve the right to update this Privacy Policy. Changes take effect upon publication on the website.