Viewinger ("we", "us", "our") operates the Viewinger platform, a marketplace connecting people who cannot attend a scheduled property viewing in person with independent local individuals who attend on their behalf and deliver structured reports. For the purposes of the GDPR, Viewinger is the data controller. Contact: viewingerapp@gmail.com.

We collect the following categories of personal data:

• Account data — first name, last name, email address, password (hashed by Supabase Auth), phone number including country dial code.
• Profile data — profile photo, bio, base country and city, spoken languages, years of experience, equipment/credentials (Viewers only).
• Identity verification data — selfie photograph uploaded during the viewer onboarding process to verify your identity.
• Mission and booking data — mission details (property address, scheduled date and time, agreed fee, deliverables), application records, booking status, proof submissions (photos, videos, written notes), dispute records, review text and ratings.
• Financial data — payment amounts, Stripe payment intent IDs, Stripe Connect account ID, payout records, cancellation counts. Full card details are handled exclusively by Stripe and never stored by us.
• Communications — messages sent between users on the platform, including message text and timestamps.
• Behavioural and account flags — cancellation counts (viewer and poster), no-show flags and timestamps, suspension status and expiry date, dispute escalation records, Stripe onboarding status, profile completion status, invite token redemption records.
• Usage data — IP address, browser type, pages visited, and timestamps, collected via server logs and Supabase.

We use your personal data for the following purposes:

• To provide and operate the Platform, including matching Posters with Viewers and facilitating mission bookings.
• To process payments, hold funds in escrow, and release payouts via Stripe.
• To send transactional emails — including booking confirmations, application notifications, mission reminders, proof submission alerts, review requests, cancellation notices, and payout confirmations — via Resend.
• To verify user identity and maintain the integrity of the invite-only viewer network.
• To enforce our Terms of Service, including automated suspension of accounts that exceed the cancellation threshold.
• To run automated platform jobs: sending reminders before scheduled viewings, expiring unfilled missions, detecting viewer no-shows and issuing automatic refunds, processing delayed refunds, and cleaning up proof storage after mission closure.
• To monitor critical booking states (e.g. unresolved disputes, held payouts, escalated cases) for internal operational purposes, and to enable manual admin review and resolution where required.
• To display public profile information (name shown as first initial and last name, profile photo, rating, reviews, cancellation count) to other users.
• To comply with legal and tax obligations.
• To improve the Platform through aggregated, anonymised analytics.

We process your personal data on the following legal bases: (a) performance of a contract — to fulfil booking and payment obligations; (b) legitimate interests — fraud prevention, platform security, enforcing cancellation policies, and automated trust and safety mechanisms; (c) legal obligation — tax and financial record-keeping as required by Dutch law; (d) consent — identity verification selfie and any optional marketing communications.

We share data with the following third-party processors:

• Stripe — payment processing and Stripe Connect payouts. Stripe acts as an independent data controller for payment data.
• Supabase — database, file storage, authentication, and real-time messaging infrastructure.
• Resend — transactional email delivery.
• Vercel — platform hosting and serverless function execution.
• Law enforcement or regulatory authorities where required by law or to protect the rights of our users.

We do not sell your personal data to any third party.

Certain information is visible to other registered users of the Platform, including: your display name (shown as first initial and last name, e.g. "M. Magyar"), profile photo, bio, base city and country, spoken languages, rating and reviews, years of experience, and cancellation count. Your full name, email address, phone number, and verification selfie are never publicly displayed.

• Account and profile data — retained for the duration of your account plus 3 years, as required by Dutch financial record-keeping law.
• Proof materials (photos, videos submitted for missions) — automatically deleted from storage within 24 hours of mission closure.
• Identity verification selfies — deleted within 90 days of account closure.
• Messages — retained for the duration of your account. You may request earlier deletion.
• Financial records — retained for 7 years as required by Dutch law.

You may request deletion of your account and personal data at any time (see Section 9).

We use strictly necessary cookies to maintain your authenticated session (managed by Supabase Auth). We do not use third-party advertising or tracking cookies. You can control cookies through your browser settings, though disabling session cookies will prevent you from using the Platform.

Under the GDPR you have the right to: access a copy of your personal data; rectify inaccurate data; request erasure ("right to be forgotten"); restrict processing; receive your data in a portable format; object to processing based on legitimate interests; and withdraw consent at any time without affecting prior processing. To exercise any of these rights, email us at viewingerapp@gmail.com. We will respond within 30 days. Deletion requests result in anonymisation of your personal data while retaining financial records required by law.

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest (Supabase), row-level security policies ensuring users can only access their own data, and access-controlled API routes requiring authenticated sessions. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security and encourage you to use a strong, unique password.

Your data may be processed outside the EEA by our sub-processors (Stripe, Supabase, Resend, Vercel). These transfers are conducted under appropriate safeguards, including Standard Contractual Clauses approved by the European Commission.

The Platform is not directed at persons under 18. We do not knowingly collect data from children. If you believe a child has provided us with personal data, contact us immediately at viewingerapp@gmail.com and we will delete it promptly.

We may update this policy periodically. Material changes will be notified via email or a prominent notice on the Platform. The effective date at the top of this page reflects when the policy was last updated. Continued use after the effective date constitutes acceptance.

Questions or complaints about how we handle your data: viewingerapp@gmail.com. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.