Legal

Privacy Policy

We believe privacy is a right, not a privilege. This policy explains exactly what information Vivid collects, why we collect it, and how we keep it safe.

Last updated: January 1, 2026  ·  Effective: January 1, 2026

1 Who We Are

Vivid is a next-generation SocialFi platform that enables users to connect, communicate, live-stream, trade in a peer-to-peer marketplace, and earn Diamond (DIA) rewards. When we say "Vivid," "we," "our," or "us" in this policy, we are referring to the Vivid SocialFi platform and its operating team, reachable at hello@vivid.social.

By creating an account or using any part of the Vivid app or website located at vividapp.site, you agree to the practices described in this Privacy Policy.

2 Data We Collect

We collect information in three broad ways: information you provide to us directly, information generated as you use the platform, and information we receive from third parties.

Account and Profile Information

  • Phone number
  • Email address
  • Username and display name
  • Profile photo, cover image, and additional profile pictures
  • Bio, location, country, occupation, and interest tags
  • Date of birth, gender, height, and relationship status
  • Lifestyle preferences such as religion, hobbies, education, drinking, smoking, exercise habits, and pets
  • Trust score and reputation data generated by platform activity

Content You Create

  • Posts, images, videos, and captions you publish on your feed or within communities
  • Comments, likes, bookmarks, and reactions to other users' content
  • Messages sent through private and group conversations
  • Live stream audio and video content broadcast through Common Rooms
  • Marketplace listings, item descriptions, images, and pricing

Usage and Device Information

  • Device fingerprint, device type, operating system, and app version
  • Device tokens used for push notifications (Firebase Cloud Messaging)
  • Session logs, login timestamps, and IP addresses
  • In-app activity patterns used to improve matchmaking and content recommendations

3 How We Use Your Data

We use the data we collect to provide, improve, and personalize your Vivid experience. Specifically, we use your information to:

  • Create and manage your account, authenticate your identity, and keep your session secure
  • Power our AI-driven matchmaking engine to connect you with users who share your interests and passions
  • Deliver relevant content on your feed and within communities you have joined
  • Process Diamond (DIA) wallet transactions, deposits, withdrawals, escrow agreements, and reward distributions
  • Enable real-time voice and video calls and Common Room live streams via our Agora integration
  • Send push notifications, in-app alerts, and transactional emails you have opted into
  • Detect, investigate, and prevent fraud, impersonation, and platform abuse
  • Enforce our community guidelines and respond to moderation reports
  • Comply with legal obligations, court orders, and applicable regulations
  • Measure platform performance through aggregated, anonymized analytics

We do not sell your personal information to third parties, and we never will.

4 Data Sharing

We may share your data with a limited set of trusted parties to operate the platform. We never share your personal data for advertising purposes with outside companies.

  • Service providers: We use third-party services such as Agora (video infrastructure), Paystack and Flutterwave (payment processing), Firebase (push notifications), and Google Gemini (AI features). Each provider is bound by data processing agreements and cannot use your data for their own commercial purposes.
  • Other Vivid users: Information you choose to make public, such as your display name, profile photo, bio, and public posts, is visible to other users. Private messages are end-to-end encrypted in transit and are never accessible to our team.
  • Law enforcement: We will disclose data when compelled by a valid court order, subpoena, or legal obligation. Where permitted by law, we will notify you of such a request before complying.
  • Business transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred as part of the transaction. We will notify you in advance and your rights under this policy will continue to apply.

5 Financial and Wallet Data

Vivid operates an in-app wallet system that allows you to hold, send, receive, and spend Diamond (DIA) currency. To support these features we collect and store:

  • Wallet balance, currency type, and transaction history (deposits, withdrawals, transfers, fees, rewards, escrow activity)
  • Diamond package purchase records and gifting history
  • Escrow agreement details including buyer and seller identifiers, amounts, milestones, and dispute records
  • Marketplace transaction records linked to escrow agreements

Your raw payment card or bank account details are handled exclusively by our payment partners (Paystack and Flutterwave) and are never stored on Vivid servers. Webhook events from these providers are verified by cryptographic signature before being processed.

Financial records are retained for a minimum of five years to meet anti-money-laundering and tax reporting obligations applicable in the jurisdictions where we operate.

6 Identity Verification (KYC)

Vivid offers a tiered Know Your Customer (KYC) process that unlocks higher wallet limits and additional platform features. The three tiers are:

  • Tier 0 (Unverified): Phone-verified account with basic platform access.
  • Tier 1 (Verified): Requires submission of a government-issued identity document, document number, and a selfie for liveness check.
  • Tier 2 (Premium Verified): Additionally requires BVN (Bank Verification Number), state of origin, state of residence, and a full address.

KYC documents are stored securely in encrypted storage. Access is restricted to a small number of authorized reviewers. Once a verification decision is made, raw document images are archived and access is further restricted. You may request deletion of KYC documents once your account is permanently closed, subject to our legal retention obligations.

7 Live Streams and Real-Time Content

When you participate in a Common Room live stream, your audio and video are transmitted in real time using Agora's infrastructure. Please be aware of the following:

  • Live stream sessions are not recorded or stored by Vivid by default. Session metadata such as participant counts, duration, and event logs are retained for moderation purposes.
  • Comments and reactions sent during a live stream are processed through our real-time messaging system powered by Laravel Reverb. These are stored with a short retention window for moderation review.
  • Matchmaking sessions use our AI-assisted matchmaker to pair users. Session timing, interaction signals, and outcome data are used to improve matching quality.
  • Any content reported by other users as violating our guidelines is preserved for the duration of the moderation review, regardless of whether you later delete it.

8 Cookies and Tracking

The Vivid website uses a small number of functional cookies that are strictly necessary for the site to operate correctly, such as session cookies for authenticated pages. We do not use third-party advertising cookies or cross-site tracking technologies on our website.

Within the Vivid mobile app, we collect device and usage identifiers described in Section 2. You can limit data collection by adjusting your device's privacy settings, though some features may become unavailable as a result.

9 Data Retention

We retain your personal data for as long as your account is active or as needed to provide the service. Specific retention periods include:

  • Active account data: retained for the lifetime of your account plus 30 days after deletion
  • Financial and transaction records: minimum 5 years from the transaction date
  • KYC documents: minimum 5 years from submission, or as required by local law
  • Device and session logs: 90 days rolling window
  • Audit logs for moderation actions: 2 years
  • Support communications: 3 years from the date of last contact

When data is no longer required, it is securely deleted or anonymized so that it can no longer be associated with you.

10 Your Rights

Depending on your location, you may have the following rights with respect to your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion: Request deletion of your account and associated personal data, subject to our legal retention obligations.
  • Portability: Request a machine-readable export of your data.
  • Restriction: Ask us to stop processing certain data while a dispute is resolved.
  • Objection: Object to processing based on legitimate interests.
  • Withdrawal of consent: Where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at hello@vivid.social. We will respond within 30 days. We may need to verify your identity before processing sensitive requests.

11 Children's Privacy

Vivid is not intended for children under the age of 18. We do not knowingly collect personal data from anyone under 18. During onboarding, we require users to provide a date of birth, and accounts that indicate the user is under 18 are not permitted to proceed. If we become aware that we have inadvertently collected data from a minor, we will delete that data promptly. If you believe a minor has created an account on Vivid, please contact us at hello@vivid.social.

12 Security

We take the security of your data seriously and have implemented technical and organizational measures including:

  • All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher
  • Passwords are hashed using bcrypt with a high work factor and are never stored in plain text
  • API access is protected by Sanctum token authentication with short-lived, revocable tokens
  • Sensitive wallet and financial operations are protected by multi-layer validation and a double-entry ledger system
  • Device fingerprints and fraud flags are used to detect and block suspicious login attempts
  • Our infrastructure is hosted on hardened servers with restricted network access, regular security audits, and automated threat monitoring

No system can be guaranteed to be 100% secure. If you discover a security vulnerability in Vivid, please report it responsibly to hello@vivid.social and we will investigate promptly.

13 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will notify you by posting a prominent notice within the Vivid app and, where we have your email address, by sending you a direct notification. The date at the top of this page will always reflect when the policy was last revised. Your continued use of Vivid after any changes take effect constitutes your acceptance of the updated policy.

14 Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us:

We are committed to resolving any privacy concerns you have in a timely and respectful manner.