Privacy Policy

1. Who we are

FindMeBlue is an anonymous identification and lost-item recovery service.

Contact: contact@findme.blue

2. Data collected

• Email address: authentication, notifications
• Unique alphanumeric code: anonymous identification
• Item status and history: service operation
• Access and scan logs: security
• Private information (sizes, health, emergency): personal use only, explicit consent

3. Health data

Health information entered in "My private information" is optional, stored securely, accessible only by you, never shared, and deleted when the account is closed.

4. Subprocessors

• Supabase: database (EU Frankfurt)
• Resend: transactional emails (DPA signed)
• Cloudflare: DNS and CDN (DPA signed)

No data is sold to third parties.

5. Retention

• Account and items: until account deletion
• Access logs: 12 months
• Transactional emails: 30 days
• Inactive accounts: 24 months then deleted

6. Your rights (GDPR)

Access, rectification, erasure, portability, objection. To exercise your rights: contact@findme.blue

You may file a complaint with the CNIL (cnil.fr).

7. Security

HTTPS/TLS, RLS on all sensitive tables, rate limiting, audit log, no personal data publicly visible.

8. Cookies

• Session cookie (necessary)
• Language cookie (functional)

No advertising cookies.