Privacy Policy

Last Updated: April 2026

Welcome to Flair ("we," "our," or "us"), accessible at https://flair.community. We are committed to protecting your personal data and your privacy in compliance with international data protection standards (including GDPR and CCPA).

This Privacy Policy explains how we collect, use, and safeguard your information when you use our platform.

1. Information We Collect

We practice data minimization, collecting only the data necessary to operate our services, manage our waitlist, and ensure platform security.

  • Information You Provide: Username and Email address.
  • Platform Mechanics: Waitlist position numbers and assigned/redeemed referral codes.
  • Automatically Collected Information (Logs): IP addresses, User Agent data (browser type, device information), account creation dates, last login timestamps, and authentication audit logs (such as OTP request tracking).

2. How We Use Your Information

We use your information strictly for legitimate platform operations, including:

  • Core Functions: Account registration, waitlist management, processing referrals, sending One-Time Passwords (OTP), processing password resets, and facilitating account recovery.
  • Security & Integrity: Preventing fraud, unauthorized access, abuse, and maintaining system health.

3. Communications & Anti-Spam Commitment

We utilize Resend to deliver essential communications. By interacting with the platform, you understand that your email will be used for:

  • Authentication: Delivery of One-Time Passwords (OTP) and login verifications.
  • Service Alerts: Critical account security notifications.
  • Reservation Fulfillment: Users who reserve a username will receive a one-time 'Platform Readiness' or 'Launch Invitation' notification.

Anti-Spam Commitment: We do not send unsolicited marketing emails. We do not use purchased, rented, or third-party marketing lists. We actively monitor our email deliverability and automatically suppress addresses that result in hard bounces or complaints.

4. Legal Basis for Processing

Depending on your jurisdiction, we process your data based on:

  • Contractual Necessity: To provide the username reservation, waitlist, and authentication services you requested.
  • Legitimate Interest: To ensure network security, fraud prevention, enforce our Code of Conduct, and maintain system integrity.
  • Consent: Where explicitly provided for optional features.

5. Data Retention

We retain your personal data only as long as necessary:

  • Account Data: Maintained while your account remains active or until you request deletion.
  • Security Logs: Retained temporarily for security auditing, fraud prevention, and enforcing our anti-impersonation policies before being securely purged.

6. Data Sharing & International Transfers

We may share personal data with trusted third-party service providers as necessary to operate, secure, and improve the platform.

All third-party providers are contractually bound to process personal data only on our instructions and to maintain appropriate confidentiality and security measures.

Additional Data Use and Sharing

We may use, process, and share personal data for legitimate business purposes, including improving our services, developing new features, and supporting the growth and sustainability of the platform.

Where required by applicable law, we will provide appropriate notice, obtain consent, or offer users the ability to opt out of certain types of data sharing.

Business Transfers

In the event of a merger, acquisition, restructuring, or sale of assets, user information may be transferred as part of that transaction, subject to appropriate safeguards.

International Transfers

Where personal data is transferred outside your jurisdiction, we ensure appropriate safeguards are in place in accordance with applicable data protection laws.

7. Data Security

We implement industry-standard technical and organizational safeguards, including encryption in transit (SSL/TLS), secure token-based authentication flows (JWT), and continuous monitoring for abuse and unauthorized access.

8. Your Rights

Depending on your jurisdiction, you possess specific rights regarding your data:

  • Access & Portability: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Erasure ("Right to be Forgotten"): Request the permanent deletion of your account and associated personal data.
  • Restriction & Objection: Request limits on how we process your data.

Requests to exercise these rights can be sent to: [email protected]. We will respond within legally required timeframes.

9. Cookies and Tracking Technologies

We use cookies primarily for authentication, security, and basic session management. For detailed information on the specific cookies we use, your choices, and how to manage them, please review our complete Cookie Policy.

10. Updates to This Policy

We may update this Privacy Policy from time to time as we introduce new features. We will notify you of any significant changes by updating the "Last Updated" date. Continued use of the platform constitutes acceptance of the updated policy.

11. Contact Us

For any questions, concerns, or data requests:

Email: [email protected]
Website: https://flair.community