Data Security Framework

Privacy Policy

Effective Date: October 2026. How we protect your ecosystem.

Legal Language Notice

To prevent translation discrepancies, the English version of this document is the sole legally binding agreement. This translation is provided for convenience only.

1. Government ID & KYC Vaulting

Momo mandates Government-Issued ID Verification for all users attempting to Host Public Events or purchase tickets to Public Events.

  • AI Processing: Your ID is transmitted securely to Google's Gemini 2.5 Flash infrastructure for instantaneous optical character extraction (Name, DOB, and Expiration Date). The resulting metadata is pinned to your internal database row.
  • Cold Storage: The raw image file is immediately uploaded into an isolated, Private-Tier Supabase Storage Bucket (`kyc-documents`). It is strictly inaccessible from the public web and disconnected from edge caching.
  • Expiration Handling: Upon document expiration, the global state engine automatically invalidates your "Verified" privileges and forces a re-upload of a current, legally valid ID.

2. Location Metadata & Check-Ins

To facilitate "Survival Check-ins" and real-world geolocation plotting, Momo may request access to your device's geographical coordinates. This information is siloed within your Friend Circle (`friendships/status: accepted`) and is never syndicated to third-party ad networks or public indexing services.

3. Payment Routing & QR Vaulting

Momo does not process credit card transactions natively to bypass strict 30% App Store monopolistic taxation. Instead, we securely vault peer-to-peer payment vectors (Venmo Usernames, PayPal Links, and Zelle QR Codes). Uploaded QR codes are actively screened via Gemini AI to guarantee algorithmic matching and prevent sophisticated phishing swaps.

4. Automated Abusive Content Moderation

All event text payloads (Titles, Descriptions, Locations) are routed through isomorphic DOM sanitizers (`DOMPurify`) before database insertion. Momo operates a continuous user-reporting pipeline where instances of illicit activity flag offending accounts for permanent deletion.