Effective Date: February 28, 2026
This Privacy Policy describes how Write Me, Maybe ("we," "our," or "us") collects, uses, and shares your personal information when you use our website at https://writememaybe.com, our mobile applications, and related services (collectively, the "Service").
This policy applies to all users of Write Me, Maybe, regardless of how you access the Service — whether through our website, iOS app, Android app, or desktop application.
We may collect the following categories of personal information:
We collect personal information through the following methods:
We use your personal information for the following purposes:
To maintain platform safety and comply with applicable laws, all images uploaded to our servers are automatically scanned using Google Cloud Vision SafeSearch detection. This is a fully automated process — no human views your images during scanning. Images are transmitted securely to Google Cloud Vision for automated analysis and processed in accordance with Google's Cloud Privacy Notice.
What is scanned: All uploaded images, including avatars, community banners, thread images, and direct message images.
What is stored: Numerical safety scores generated by the automated scan are stored alongside the upload record. These scores indicate the likelihood of explicit, violent, or medical content.
How results are used:
Legal obligations: If automated systems or other lawful processes identify known or suspected child sexual abuse material (CSAM), we are legally required to report it to the National Center for Missing & Exploited Children (NCMEC) and appropriate authorities.
Deletion: When an image is rejected through moderation or you delete your account, the image and associated safety scores are permanently deleted.
Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal bases:
We may share your information with the following third-party service providers: Apple Inc., Google LLC, and Stripe LLC. We enter into appropriate data processing agreements where required.
We may transfer your personal information to countries other than your own, including the United States where our servers are located. When we do so, we implement appropriate safeguards to protect your information, including Standard Contractual Clauses or reliance on adequacy decisions where applicable, and additional technical and organizational measures where required.
If we transfer personal data outside the European Economic Area, we rely on adequacy decisions or on appropriate safeguards such as the EU Standard Contractual Clauses. We implement supplementary measures where required.
For transfers from the United Kingdom, we use the UK Addendum to the EU Standard Contractual Clauses or other approved transfer tools.
International transfers of Swiss personal data are based on the Swiss adequacy list or on appropriate safeguards such as the Swiss Standard Contractual Clauses.
International transfers follow LGPD mechanisms such as adequacy decisions or contractual safeguards.
For international transfers of personal data from Japan, we obtain prior consent or rely on adequacy decisions and safeguards required by APPI.
If we disclose personal information overseas, we take reasonable steps to ensure recipients protect it as required by the Australian Privacy Principles.
Depending on your location and applicable privacy laws, you may have the following rights regarding your personal information. To exercise any of these rights, please contact us at richard@writememaybe.com.
EU residents have rights of access, rectification, erasure, restriction, portability, and objection. You may also withdraw consent at any time where we rely on consent as our legal basis. You may lodge a complaint with your local EU supervisory authority.
UK residents have similar rights under the UK GDPR, including access, rectification, erasure, restriction, portability, and objection. You may contact the Information Commissioner's Office (ICO) regarding complaints.
California residents have rights to know, access, delete, correct, and opt out of the sale or sharing of personal information, and to limit the use of sensitive personal information. We do not sell or share personal information for cross-context behavioral advertising as defined under California law.
Residents of Colorado, Virginia, Connecticut, Utah, Oregon, Texas, Montana, Indiana, Iowa, Tennessee, Delaware, New Jersey, New Hampshire, Nebraska, Kentucky, Minnesota, and Florida have rights to access, delete, and correct personal information and to opt out of targeted advertising, sale of personal data, and certain profiling.
Appeals Process: If we deny a privacy rights request, you may appeal by replying to our response email. If the matter remains unresolved, you may contact your state Attorney General.
Brazil residents have rights of confirmation, access, correction, anonymization, portability, deletion, information about sharing, and the right to review automated decisions.
Swiss residents have rights of access, rectification, deletion, and objection under the nFADP.
Japan residents may request disclosure, correction, suspension of use, or deletion of retained personal data.
Residents of Canada have rights of access and correction, subject to limited exceptions.
South Africa residents have rights to access and correct personal information and to lodge a complaint with the Information Regulator.
Australian residents have rights to access and correct personal information and to complain to the Office of the Australian Information Commissioner (OAIC).
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. When your data is no longer needed, we will securely delete or anonymize it.
If you delete your account, we will delete your personal data within 30 days, except where we are required to retain certain data for legal, regulatory, or fraud prevention purposes. In such cases, we will inform you of the specific retention period and the reason for retention. Account deletion can be completed directly within the app through Settings. We retain transaction records for up to 7 years to comply with tax and accounting obligations.
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, access controls, regular security assessments, and secure development practices.
However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee its absolute security.
You may delete your account at any time directly within the app. Go to Settings, tap "Delete Account", then tap the "Delete My Account" button and confirm. Your account will be deleted immediately. When you delete your account, we will delete all personal data associated with your account in accordance with our data retention practices described above. For full instructions, visit https://writememaybe.com/deleteme.
Our Service is not directed to children under the age of 13. We do not permit individuals under 13 years of age to create accounts or use the Service.
If a user indicates that they are under 13, we will prevent account creation and will not collect or retain their personal information.
In certain jurisdictions, including parts of the European Union and the United Kingdom, the age of consent for data processing may be higher than 13 (for example, between 13 and 16 depending on local law). Users are responsible for ensuring that they meet the minimum age requirements applicable in their jurisdiction before using the Service.
If we become aware that we have collected personal information from a child in violation of applicable law, we will promptly delete such information. If you believe we have collected personal information from a child, please contact us at support.72h1@writememaybe.com
We do not knowingly collect personal information from children without appropriate consent where required by law.
Our website does not currently respond to Do Not Track (DNT) browser signals. However, you can manage your privacy preferences through your browser settings, device settings, and the options provided in this policy, including opting out of advertising tracking as described in the Advertising Identifiers section above.
If you have consented to receive marketing communications, you can opt out at any time by clicking the unsubscribe link included in our marketing emails, contacting us at support.72h1@writememaybe.com, or updating your communication preferences in your account settings.
Opting out of marketing communications will not affect transactional messages related to your account, such as purchase confirmations, security alerts, and service updates.
Our website and application may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.
We may update this Privacy Policy from time to time. The effective date at the top of this policy indicates when it was last revised. We will notify you of material changes through our website, in-app notifications, email, or other appropriate means as required by applicable law. Your continued use of the Service after such changes constitutes your acceptance of the updated policy.
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to contact our Data Protection Officer, please reach out to us: