Summary of key points
- We process personal information based on how you use Dabbler and the choices you make in our services.
- We do not process sensitive personal information and do not collect personal data from third parties.
- We process data to provide and improve services, manage accounts, communicate with users, prevent fraud, and comply with legal obligations.
- We may share personal information in specific situations and with specific categories of providers.
- Security controls are in place, but no electronic transmission or storage system can be guaranteed to be 100% secure.
- You can exercise your rights by submitting a data subject access request or by contacting us.
1. What information do we collect?
We collect personal information you provide when registering, using features, participating in service activities, or contacting us. Depending on context, this may include names, email addresses, usernames, and passwords.
We do not process sensitive personal information. Information you provide must be accurate and kept up to date.
Application data and permissions
- Mobile device access may include features such as camera, microphone, and other device functions based on permission settings.
- Device and app data may include mobile device ID, model, manufacturer, operating system and version, app identifiers, browser type/version, network and carrier details, and IP address.
- If enabled, push notifications may be sent regarding account or app features, and can be disabled in device settings.
Information automatically collected
We automatically collect technical and usage information such as IP address, browser and device characteristics, operating system, language preferences, referral URLs, country/location signals, and interaction data. This supports service security, reliability, analytics, and reporting.
Our use of information received from Google APIs follows the Google API Services User Data Policy, including the Limited Use requirements.
2. How do we process your information?
We process personal information only where there is a valid legal reason and for specified service purposes. These purposes include:
- Facilitating account creation, authentication, and account management.
- Providing, improving, and administering services.
- Personalized content and targeted advertising based on interests and location.
- Security monitoring, fraud prevention, legal compliance, and vital-interest protection.
- Additional processing where you provide prior explicit consent.
3. What legal bases do we rely on?
For users in the EU/UK, GDPR and UK GDPR legal bases may include consent, legitimate interests, legal obligations, and vital interests.
- Consent: You may withdraw consent at any time.
- Legitimate interests: For example, developing and showing relevant advertising content.
- Legal obligations: Including compliance with regulators, law enforcement, and legal proceedings.
- Vital interests: To help protect a person from harm.
For users in Canada, processing may rely on express or implied consent, and in limited cases may be permitted without consent (for example fraud prevention, legal compliance, certain business transactions, public-interest exceptions, and approved de-identified research/statistics projects with safeguards).
5. How long do we keep your information?
We retain personal information only as long as necessary for the purposes in this notice, unless a longer retention period is required or permitted by law (for example tax, accounting, or legal obligations).
Where possible, we delete or anonymize data when it is no longer needed. If deletion is not immediately possible (for example in backups), we securely store and isolate the information until deletion can be completed.
6. How do we keep your information safe?
We use reasonable technical and organizational safeguards designed to protect personal information. However, no system can guarantee absolute security, and data transmission to and from our services is at your own risk. Use secure networks and environments when accessing services.
7. What are your privacy rights?
Depending on location (including the EEA, UK, Switzerland, Canada, and certain US states), you may have rights to access, correct, erase, restrict processing, object to processing, receive a portable copy of your data, and request human review for significant automated decisions.
You can exercise rights by contacting us or submitting a data subject access request. We evaluate each request according to applicable law.
Regional complaint channels
- Member State data protection authority (EEA)
- UK data protection authority (ICO)
- Swiss Federal Data Protection and Information Commissioner
Consent withdrawal and account controls
If processing relies on consent, you may withdraw it at any time. Withdrawal does not affect processing already completed on a lawful basis before withdrawal.
To review or change account details, log in to account settings. If you request account termination, we will deactivate or delete account data from active systems, subject to lawful retention for fraud prevention, legal compliance, dispute handling, and enforcement.
8. Controls for Do-Not-Track features
Most browsers and some mobile platforms offer a Do-Not-Track (DNT) setting. Because there is no uniform standard for recognizing and implementing DNT signals, we do not currently respond to DNT signals or similar automatic browser requests. If a recognized standard is adopted in the future, this notice will be updated.
California law also requires disclosure on this point; our practice remains not to respond to DNT signals at this time.
9. Do United States residents have specific privacy rights?
Residents of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia may have rights to access, correct, copy, and delete personal information, and to withdraw consent where applicable, subject to legal limitations.
Categories of personal information collected in the previous 12 months
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Real name, alias, postal address, telephone number, online identifier, IP address, email address, and account name. | Yes |
| B. Personal information under California customer records law | Name, contact information, education, employment history, and financial information. | Yes |
| C. Protected classification characteristics | Gender, age, date of birth, race and ethnicity, national origin, marital status. | No |
| D. Commercial information | Transaction information, purchase history, financial details, and payment information. | No |
| E. Biometric information | Fingerprints and voiceprints. | No |
| F. Internet or network activity | Browsing history, search history, online behavior, interest data, and interactions with websites, apps, systems, and advertisements. | Yes |
| G. Geolocation data | Device location. | No |
| H. Audio, electronic, sensory, or similar information | Images, audio, video, or call recordings created in connection with business activities. | No |
| I. Professional or employment-related information | Business contact details, job title, work history, and professional qualifications. | No |
| J. Education information | Student records and directory information. | No |
| K. Inferences drawn from collected personal information | Profile or summary about user preferences and characteristics. | Yes |
| L. Sensitive personal information | Sensitive data categories as defined by applicable state privacy laws. | No |
Additional personal information may be collected through support interactions, surveys/contests, and service-delivery communications. Categories A, B, F, and K are retained as long as the user has an account with us.
We have not sold or shared personal information with third parties for business or commercial purposes in the previous 12 months. We have disclosed personal information to service providers for business purposes as described in this notice.
US rights may include
- Knowing whether we process personal data and accessing that data.
- Correcting inaccuracies and requesting deletion.
- Obtaining a copy of data previously shared with us.
- Non-discrimination for exercising privacy rights.
- Opting out of targeted advertising, sale/sharing of personal data (where defined by law), and profiling that produces legal or similarly significant effects.
- Depending on state law, receiving category/specific third-party disclosure details and certain sensitive-data controls.
How to exercise US rights
- Submit a data subject access request.
- Contact us via /contact or dabbler-social.com/contact.
- Authorized agents may submit requests where valid authority is provided. We may verify identity and authority before fulfilling requests.
- If a request is denied, eligible users may appeal by emailing dabbler@dabbler-social.com and may have the right to complain to their state attorney general.
10. Do we make updates to this notice?
Yes. We may update this Privacy Notice as laws and practices change. The revised date at the top of this page indicates when updates took effect. For material changes, we may provide prominent notice inside the services or direct notification.
11. How can you contact us about this notice?
For privacy questions or comments, email dabbler@dabbler-social.com.
Postal contact: Dabbler Social, United States.
12. How can you review, update, or delete your data?
Depending on your location and applicable law, you may request access to collected personal information, request corrections, request deletion, and withdraw consent where available. Some rights may be limited by law.
To submit a review, update, or deletion request, complete our data subject access request form.