Privacy Policy – Get2Date.com

Effective Date: 25 November 2025

Data Controller
ESH Media House LLC
30 N Gould St Ste N, Sheridan, WY 82801, United States

EU/UK Representative & Data Protection Officer
privacy@get2date.eu

1. Introduction & Binding Acceptance

This Privacy Policy governs all processing of personal data on Get2Date.com and its mobile applications (the “Service”). By accessing or using the Service you explicitly accept this Privacy Policy in its entirety. Continued use after any update constitutes renewed acceptance. This introduction is deliberately repeated for emphasis.

2. Nature of the Service – Repeated for Legal Clarity

Get2Date is an adult fantasy entertainment platform only. 100 % of all profiles (male, female, non-binary or any other gender presentation) are virtual entertainers operated by trained human operators. No real-life meetings, dates or physical contact are possible or permitted. All interactions are virtual and fictional role-play for amusement. This fact is repeated in every relevant section to eliminate any possible misunderstanding.

3. Definitions (Repeated Throughout)

• Personal Data – any information relating to an identified or identifiable natural person
• Sensitive Personal Data – data revealing racial/ethnic origin, political opinions, religious beliefs, trade union membership, genetic/biometric data, health data, sex life or sexual orientation
• Entertainer Content – all messages, photos, videos, voice notes and live streams created by operators
• Virtual Profile – any profile on the platform (regardless of displayed gender)
• Credits – virtual currency with no monetary value outside the Service

4. Categories of Data We Collect

We collect only the minimum data necessary:

• Account data: email address, chosen username, password (hashed), declared age, declared gender, sexual orientation preferences
• Profile data: photos, videos, text descriptions uploaded by you
• Chat data: full message history (including sexual content, nudity descriptions, adult toy references, fantasy role-play from both male and female virtual profiles)
• Usage data: pages viewed, time spent, features used
• Technical data: IP address, device ID, browser fingerprint, operating system, approximate location (country/city level only)
• Payment data: processed exclusively by CCBill – we never receive or store full card numbers

We do NOT collect: real names (unless voluntarily provided), exact street address, government ID numbers (unless required for age verification), precise geolocation or banking details.

5. Cookies & Tracking Technologies

We use:

• Strictly necessary cookies (login sessions)
• Performance cookies (Google Analytics – fully anonymised)
• Functionality cookies (language preference)
• No advertising or cross-site tracking cookies without explicit consent

You can manage cookies in your browser settings.

6. Purposes of Processing & Legal Bases

We process your data only for the following purposes and on the following legal bases:

• Providing the entertainment service → Legal basis: Contract performance → Example: Delivering messages from virtual profiles
• Moderation and platform safety → Legal basis: Legitimate interest → Example: Detecting illegal or prohibited content
• Fraud prevention and chargeback handling → Legal basis: Legitimate interest → Example: IP and device checks
• Processing payments → Legal basis: Contract performance → Example: Forwarding transaction data to CCBill
• Sending service-related emails → Legal basis: Contract performance → Example: Password reset, account notifications
• Marketing and newsletters → Legal basis: Consent (opt-in) → Example: New feature announcements
• Analytics and service improvement → Legal basis: Legitimate interest (anonymised data) → Example: Google Analytics reports

Sensitive data (sexual orientation, explicit chat content) is processed under GDPR Article 9(2)(a) – explicit consent or Article 9(2)(f) – establishment/exercise of legal claims.

7. Virtual Profiles & Explicit Content – Repeated Disclaimer

Every single profile is operated by a human operator. Photos and videos are of models or licensed stock material – never the actual operator. All content is fictional fantasy entertainment. This disclaimer is repeated for emphasis.

8. Children’s Data

We do not knowingly collect data from persons under 18. Any account found to belong to a minor is immediately terminated and all data permanently deleted.

9. Your Rights (GDPR / CCPA / UK GDPR)

You have the right to:

• Access your data
• Rectify inaccurate data
• Erasure (“right to be forgotten”)
• Restrict processing
• Data portability
• Object to processing
• Withdraw consent at any time
• Lodge a complaint with a supervisory authority

Requests are free and answered within 30 days. Contact: privacy@get2date.eu (subject: “GDPR Request”).

10. Consent Withdrawal

You may withdraw marketing consent at any time via account settings or by emailing privacy@get2date.eu. Withdrawal does not affect prior lawful processing.

11. Data Retention Schedule

• Chat messages – 90 days after last activity
• Account data – until deletion request + 30 days
• Payment records (via CCBill) – 7 years (legal requirement)
• Technical logs – 90 days
• Deleted accounts – permanent erasure within 30 days

All periods are reviewed annually.

12. Third-Party Recipients (Data Processors)

• CCBill – payment processing
• Proton Technologies AG – encrypted email
• Google Firebase – app backend
• Cloudflare Inc. – CDN & security
• Google Analytics – anonymised analytics

All are bound by strict Data Processing Agreements. No data is ever sold.

13. International Data Transfers

Data may be transferred to the United States under:

• EU-US Data Privacy Framework (self-certified)
• UK Extension to EU-US DPF
• Standard Contractual Clauses (2021/914)

Transfers are limited to the absolute minimum necessary.

14. Security Measures

• TLS 1.3 encryption in transit
• AES-256 encryption at rest
• Cloudflare Web Application Firewall & DDoS protection
• Annual penetration testing
• Monthly vulnerability scans
• Multi-factor authentication for all staff
• Data breach response plan – notification within 72 hours when required

15. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects.

16. Data Breach Notification

In the unlikely event of a breach, we will notify affected users and the supervisory authority within 72 hours where required.

17. Changes to this Policy

We may update this Policy at any time. Material changes will be notified by email or banner. Continued use = acceptance.

18. Contact

Data Protection Officer: privacy@get2date.eu

Postal address: ESH Media House LLC, 30 N Gould St Ste N, Sheridan, WY 82801, USA

Last updated: 25 November 2025