Skip to content
← Back to home

Privacy Policy

Last updated: May 2026

KnowMe is built on the principle that your data is yours. This policy explains what we collect, why, and how we protect it.

Who we are

KnowMe is a product by Gianluca Mazza, based in Italy. For data protection enquiries: privacy@gianlucamazza.it.

Data we collect

When you join the waitlist we collect your email address and the language you used to access the page. When you use the app we collect: account information (email, display name, birth date), your onboarding interview answers, compatibility scores computed by AI, messages exchanged within the platform, and media you choose to share (voice, photo). We never sell your data.

Attribution data

When you join the waitlist we also collect, where present: the traffic source (utm_source), marketing channel (utm_medium), the HTTP referrer of your browser, the landing page path you visited, and a referral code if you followed a friend's invite link. These fields are used solely for marketing attribution — to understand which channels bring users to the waitlist. They are not used for commercial profiling or advertising targeting. The legal basis is legitimate interest (GDPR Art. 6(1)(f); Recital 47): we have a legitimate interest in knowing whether our outreach efforts are working, and this processing does not override your interests or fundamental rights.

Legal basis (GDPR)

Processing of waitlist data is based on your consent (Art. 6(1)(a) GDPR). Processing of app data is based on the performance of a contract (Art. 6(1)(b) GDPR) and, for AI profiling, on your explicit consent (Art. 9(2)(a) GDPR).

AI profiling and matching

KnowMe uses AI to build a latent compatibility profile from your interview answers. This profile is never shown to you or your match in raw form — it is used solely for compatibility matching. Matching weights are fixed: values 35%, intent 30%, communication style 25%, safety score −10%. They never depend on your subscription status.

Special category data (Art. 9 GDPR)

If you grant the optional Sensitive Categories Profiling consent, the interviewer may explore religious beliefs, political opinions, mental health, and sexual orientation. These signals are stored separately and stripped before reaching the matchmaking AI — they are not used as direct matching criteria. You can revoke this consent at any time in app settings.

Automated decision-making (Art. 22 GDPR)

Matching is an automated decision that significantly affects you. You have the right to request a human review of any match you believe resulted from an error. Contact privacy@gianlucamazza.it. Every AI decision is logged in an immutable audit record for 12 months.

Match termination reflection

When a match ends, you may optionally receive a one-time private AI reflection. This requires bilateral consent from both participants. It is delivered silently in the app — no push notification, no email. It uses only your own conversation responses and is generated once only.

Data retention

Waitlist emails are retained until you request removal or the product launches. App data is retained for the duration of your account and deleted within 30 days of account closure. Matchmaking waitlist entries expire after 7 days. Payment records are retained for 10 years per Italian accounting law.

Your rights

Under GDPR you have the right to access, rectify, erase, restrict, and port your data, and to object to processing. To exercise any right, email privacy@gianlucamazza.it. You may also lodge a complaint with the Italian Data Protection Authority (Garante).

Cookies and sub-processors

The landing page uses no tracking cookies. The app uses only a strictly necessary session cookie. AI processing uses EU-based providers (Azure OpenAI EU, Anthropic Bedrock EU) for roles that handle personal data. Full sub-processor list at /sub-processors.

Changes to this policy

We will notify you by email of any material changes before they take effect.