Last updated: May 2026

Data Collection Policy

This page explains in plain language exactly what data MenurutLo collects, why we collect it, and what third-party services process it. We believe in radical transparency about data.

What We Collect & Why

📱 Account & Profile Data

What: Name, username, email, phone number, date of birth, profile photo, bio
Why: Required to create and maintain your account; age verification to keep the platform safe
Stored: Supabase database (Singapore region)

📝 Content Data

What: Posts, videos, photos, testimonials, Ask questions, comments, DMs
Why: Core platform functionality
Stored: Supabase (text), Cloudflare R2/Stream (media)

📍 Location Data

What: GPS coordinates (only when you use Check-in or Nearby)
Why: Show who else checked in at a location; show nearby users (opt-in, 18+ only)
Stored: PostGIS on Supabase; not retained after session ends
Control: You can disable location access in your phone settings at any time

🎤 Voice Data

What: Audio recordings when you use Voice-to-Text
Why: Transcription to text via Google Speech-to-Text
Stored: Deleted within 24 hours of transcription
Third party: Google Cloud Speech-to-Text (Indonesian model)

🤖 AI Processing

What: Text content you submit (posts, comments, testimoni, ask questions)
Why: Content moderation (anti-bullying, illegal content detection); AI Refine feature
Third party: Anthropic Claude Haiku (moderation API calls; content is not retained for model training)

📊 Analytics Data

What: Feature usage events, screen views, tap patterns
Why: Understand how users use the app to improve it
Third party: Mixpanel (event analytics)
Control: You can opt out in Settings → Privacy

🚨 Crash & Error Data

What: App crashes, error logs, device info
Why: Fix bugs and improve stability
Third party: Sentry

🔔 Push Notifications

What: Expo push token, FCM registration ID
Why: Send you in-app notifications
Control: Disable anytime in Settings → Notifications or your phone's settings

What We Never Collect

KTP (ID card) images — processed for verification then permanently deleted
Face biometrics — verification status only is retained
Full payment data — payments are processed by Midtrans (we receive status only)
Anonymous Testimoni sender identity in accessible form — encrypted at rest, never exposed
Your contact list without explicit permission

Third-Party Services Summary

Service	Purpose	Privacy Policy
Supabase	Database, Auth, Realtime	supabase.com/privacy
Cloudflare	Media CDN, video streaming	cloudflare.com/privacypolicy
Anthropic	AI content moderation & text refine	anthropic.com/privacy
Google Cloud	Speech-to-Text, analytics	policies.google.com/privacy
Mixpanel	Product analytics	mixpanel.com/legal/privacy-policy
Sentry	Error monitoring	sentry.io/privacy
Midtrans	Payment processing	midtrans.com/en/privacy-policy

Questions about data collection?

Email our Data Protection Officer: privacy@menurutlo.com