Privacy Policy
Last updated · May 19, 2026
At Glim, privacy is not a feature — it's a foundation. This policy explains what we collect, why, who we share it with, and the rights you have. We collect as little as we can, share with as few people as possible, and never sell your data or use it to target ads.
Information We Collect
We collect only what we need to run Glim. When you create an account, we collect your phone number (for verification and sign-in) and, optionally, basic profile details you choose to provide — such as a name, photo, or other information you add to your profile. We collect content you create or upload while using the app — including text, photos, and other media — along with the connections you choose to make with other people on Glim. We also collect a limited set of technical data that the app needs to function, such as a push-notification token, the timestamps of your activity, and standard logs (including IP address) generated by our infrastructure providers.
Contacts and Device Permissions
Glim asks for access to your device contacts so you can find and invite people you already know. We only read contacts on your device when you take an action that requires it, and we use phone numbers solely to match against existing Glim accounts or to send invites you choose to send. We do not upload your full address book in the background. Other device permissions Glim may request — such as access to your photo library or the ability to send notifications — are used only for the specific feature you are interacting with, and you can change them at any time in your device settings.
How We Use Your Information
We use your information to operate Glim: to create and secure your account, to deliver the experience inside the app, to enable the people you connect with to see what you choose to share with them, and to send you notifications related to your activity. We do not sell your data. We do not show you ads. We do not build advertising profiles, and we do not share your information with data brokers or advertisers.
Sharing and Visibility
Glim is designed for small, private circles. Content you create is, by default, visible only to the people you have connected with — there is no public profile, no global feed, and no way for strangers to discover or follow you. Some media is delivered via links that, while technically public if known, are long, random, and only shared inside the app with people you have connected with. If you choose to send an invite by SMS, the recipient will see your name and the invite message you send. You are always in control of what you share and with whom.
Data Retention
Some content on Glim is ephemeral by design and is removed automatically after a short period. Other content — such as your profile, your connections, and content you have chosen to keep — persists until you delete it or close your account. When you delete content from the app, we remove it from our active systems promptly; residual copies may remain in routine backups for a limited period before being overwritten.
Account Deletion
You can request deletion of your account and associated personal data at any time by emailing info@helloglim.com from the address or phone number associated with your account. We will confirm the request, delete your account and personal content from our active systems within 30 days, and remove residual copies from backups on our standard rotation. Some information may be retained where required by law or to resolve disputes.
Service Providers
Glim runs on a small set of trusted third-party services that process data on our behalf under contract, only to deliver the service. These include: Supabase (database, authentication, and file storage), Twilio (SMS delivery for phone-number verification and invites), and Expo (push-notification delivery). These providers receive only the data needed to perform their function and are not permitted to use it for any other purpose. We do not currently use any third-party advertising, analytics, or AI services that process your personal data. A current list of sub-processors is available on request.
Security
We use industry-standard encryption to protect your data in transit and at rest, and we restrict access to personal information to the small number of people who need it to operate the service. No system is perfectly secure, but we take security seriously, review our practices regularly, and will notify affected users and regulators promptly in the unlikely event of a data breach that materially affects you.
Your Rights
Depending on where you live, you may have the right to access, correct, export, or delete the personal data we hold about you, to object to or restrict certain processing, and to withdraw any consent you previously gave. You can exercise these rights by emailing info@helloglim.com. We will respond within 30 days. If you are in the European Economic Area, the United Kingdom, or California, you also have the right to lodge a complaint with your local data-protection authority.
Children's Privacy
Glim is not intended for people under 16 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it.
International Transfers
Glim is operated from the European Union and may be accessed worldwide. If we transfer personal data outside your country of residence, we rely on appropriate safeguards — such as the European Commission's Standard Contractual Clauses or equivalent mechanisms — to protect your information.
Changes to This Policy
We may update this policy from time to time. When we make material changes, we will notify you through the app or by email before the changes take effect. Continued use of Glim after the effective date means you accept the updated policy.
Contact
Questions about this policy or how your data is handled? Email us at info@helloglim.com. We read every message.