Privacy Policy

1. Introduction

At Transfrly, privacy isn't an add-on it's the foundation.

This Privacy Policy explains the minimal, short-lived data our Service processes and how it disappears.

No sign-ups. No tracking. No permanent storage. When your session ends, it's gone.

2. Children's Privacy

Transfrly complies with COPPA and all applicable international child-data protection laws. Our Service is not intended for children under 13, and because Transfrly has no accounts, no tracking, and no data collection, we cannot identify, profile, or retain information about any user.

All interactions vanish automatically as part of our architecture the moment a session ends.

Parents or guardians who believe their child has accessed our Service may contact us at support@transfrly.com. While we cannot identify users, we are always available to provide clarity, reassurance, and guidance. Our commitment to privacy applies equally to all users and no personal data is ever retained.

To use Transfrly, you must be at least 16 years old, or the minimum legal age required in your jurisdiction to consent to online services. By using the Service, you represent that you meet this requirement.

3. Information We Process (Ephemeral Only)

Transfrly collects only the minimal, non-identifiable technical signals required to establish a secure, functional connection. These may include:

• One-time session tokens used solely to enter a private room
• Basic, anonymized technical details required for compatibility, performance, and privacy-compliant analytics (via Plausible)
• Short-lived, non-identifiable network signals used momentarily to prevent automated abuse. We do not collect or store chat messages, media, personal identifiers, or any data traceable to an individual.

All technical signals used during a session are automatically and irreversibly deleted after a brief inactivity window. They cannot be recovered, reconstructed, or linked to you.

3.5 Extend Control (No Change to Data Collection)

Extend Control is an optional, time-based session capability that allows a Transfrly room to remain active for a longer duration and unlock additional session controls.

Extend Control does not introduce user accounts, identity tracking, message retention, or data storage. Conversations, shared files, and session-related technical signals remain ephemeral and are automatically deleted when the session ends. Temporary access codes used to enable Extend Control are not associated with user identity, are valid for a limited time, and are never retained or recoverable by Transfrly.

Extend Control affects session duration and available controls only and does not alter how Transfrly processes or retains data.

4. Cookies & Analytics

• Essential, short-lived cookies only: Used exclusively for secure, temporary session functionality. No tracking, profiling, or cross-site identifiers.
• No third-party surveillance: Our Service contains zero advertising cookies, tracking pixels, fingerprinting scripts, or behavioral analytics.
• Privacy-preserving analytics: We use Plausible Analytics, a fully GDPR-compliant, cookie-free platform that provides aggregate, anonymized insights only. no personal data, no identifiers, and no ability to track individual users.

Your activity cannot be followed, reconstructed, or tied to you. Every interaction remains yours and disappears when you're done.

4.5 Payments & Financial Information

Payments for optional service capabilities are processed exclusively by Stripe, an independent third-party payment processor. Transfrly does not collect, store, or have access to payment card information, billing details, or financial credentials. Payment activity is not linked to chat sessions, access codes, or user activity.

Stripe independently manages payment processing and compliance obligations in accordance with its own privacy and security practices. Extend Control access is issued instantly upon successful payment and cannot be revoked or reversed. Because activation occurs immediately and access is temporary by design, all purchases are final and non-refundable.

5. Security Measures

• Encrypted transport: All connections use modern HTTPS/TLS encryption to safeguard data in transit.
• Isolated session architecture: Each room is created using a randomly generated, single-session access code with sufficient entropy to deter unauthorized entry. Sessions operate in fully isolated environments with no shared data, shared state, or cross-session exposure.
• Continuously maintained infrastructure: Our systems undergo regular updates, integrity checks, and real-time monitoring to maintain resilience, stability, and secure operations.

While no system can claim absolute invulnerability, Transfrly combines industry-standard security with a vanish-by-design architecture, ensuring your sessions remain protected, contained, and temporary.

6. Your Rights (Under GDPR and Global Privacy Laws)

You have the right to understand what limited, non-identifiable data our Service processes and to request clarification at any time.

Because Transfrly operates without accounts, profiles, or persistent storage, many rights including access, correction, deletion, and portability are inherently fulfilled by design. All session data disappears automatically when activity ends, leaving no records for us to retain, retrieve, or transfer.

Your privacy rights are upheld not only through policy but through the architecture itself.

For more information about your rights under GDPR, visit the official European Commission resource: https://commission.europa.eu/law/law-topic/data-protection_en

7. Changes to This Policy

We may update this Privacy Policy periodically. The effective date will be updated accordingly.

Continued use of Transfrly after an update constitutes acceptance of the latest version.

8. Contact

Transfrly

support@transfrly.com