Last updated: May 2026

Privacy Policy

Vibe is a music discovery app. We designed it so that the app, our team, and even our database can never see your real-time identity, exact location, or social graph. This page lists exactly what we collect, what we don't, and how to delete it.

What we collect

• Spotify account info — your Spotify user ID and display name. Email is not requested. Used only to identify your account inside Vibe.
• Currently playing & recently played tracks — fetched via Spotify's read-only APIs while you have Vibe open. Stored as listening events for up to 7 days, then automatically deleted.
• Approximate location — when you allow location, we receive your coordinates one time and immediately convert them to a coarse geohash bucket (≈600 metres on a side). The raw coordinates are never written to our database.
• City and region — derived on your device from the coordinates so we can show citywide listings.

What we never collect

• Your real name, phone number, contacts, photos, or biographic info.
• Your exact GPS coordinates. We don't have them, ever.
• The content of any messages (there are no messages in Vibe).
• The identities of nearby Vibe users when you view the feed. We use k-anonymity (≥3 sharers per bucket) so a single listener can never be singled out.
• Your Spotify password. Spotify handles authentication; we only get a short-lived access token.

What other people see about you

• By default: "Someone nearby". That's it.
• If you opt into a Vibe ID: a randomly generated handle (e.g. "Late Drive 🌙"). Still no real name and no photo.
• If you choose Browse Only: nothing. Your listening activity is not visible to anyone.

How we secure data

• All data in transit is TLS 1.2+.
• Spotify tokens are encrypted at rest in our database using pgsodium keys held server-side.
• Edge Functions are the only path to those tokens; clients never receive refresh tokens.

Your controls

In Settings you can:

• Toggle sharing off at any time.
• Switch to Browse Only.
• Disconnect Spotify (clears all tokens).
• Clear your listening history (immediate delete).
• Delete your account (irreversible cascade delete).

Likes and area insights

When you tap like on a feed song, we store one row per like: your user id, the listening event id, the track identifier, and the same coarse geohash used for nearby (not exact GPS). We use this only for aggregated statistics—for example, how often tracks are liked in an area over time. We do not sell identifiable listening histories; any partner-facing metrics would be aggregate and non-identifying, consistent with this policy and applicable law.

Data retention

• Listening events: 7 days, then automatically purged by a scheduled job.
• Saved tracks: kept until you remove them.
• Account record: kept until you delete the account.