Privacy Policy
Your stuff is yours.
Last updated: June 26, 2026
Bonfire is built for tight friend groups, not advertisers. We collect the minimum we need to run the app, we don't sell or share your data, and you can delete your account at any time from inside the app.
What we collect
You give us
- Phone number. Used to sign you in and to identify you to friends who already have your number.
- Display name. What your group sees instead of your phone number.
- Birthday (optional). Used to show the group when to celebrate. You can leave it blank.
- Recovery email (optional). Used to get you back in if you lose your phone number.
- Profile photo (optional). Shown next to your name in groups.
- Messages, photos, reactions, polls, events, and other content you create inside your groups. Visible only to members of those groups.
Your device gives us
- Push notification token. A device-specific string Apple gives us so we can deliver notifications. It does not identify you personally.
- Basic device info (OS version, app version). Used to debug crashes and ship updates.
What we don't collect
- We do not track your location.
- We do not access your contacts.
- We do not use third-party analytics or advertising SDKs.
- We do not read or scan your messages — they're stored encrypted in transit and we have no automated systems looking at their contents.
How we use it
- To run the app. Show you your groups, deliver messages, send notifications, sign you in.
- To improve it. Diagnose crashes from anonymized error reports, fix what's broken.
- To contact you (rarely). Service announcements, security notices, or replies to support emails you send.
We do not use your content to train AI models. We do not sell your data to anyone, ever.
Who we share it with
To run Bonfire, your data passes through a few service providers. Each is bound by contract to only use your data to provide their service to us:
- Supabase — hosts our database, handles authentication, and stores uploaded files (profile photos, group covers, chat photos).
- Twilio — sends the SMS code that signs you in. They see your phone number and the verification code; they don't see anything else.
- Apple Push Notification Service — delivers push notifications to your device. Notification payloads are short and visible to Apple in transit.
- Expo — hosts the app's over-the-air updates and crash reports. Crash reports do not include your messages.
We do not share your data with advertisers, data brokers, or anyone else.
What members of your group can see
Anyone in a group with you can see your display name, profile photo, birthday (if set), and the messages, photos, and reactions you post in that group. They cannot see your phone number, your recovery email, or your activity in other groups.
Your controls
- Edit your profile at any time from Profile → Edit Profile.
- Leave a group from the group's settings. Your past messages stay; new ones won't be sent.
- Delete a message by long-pressing it and choosing Delete. It's removed from everyone's view.
- Delete your account from Profile → Account → Delete account. This permanently removes your profile, the messages you've sent, and your group memberships. There is no undo.
- Turn off notifications for specific kinds of events from Profile → Notifications.
SMS messages
Bonfire sends SMS for one purpose: delivering one-time verification codes that sign you into your account. We do not send marketing SMS, promotional SMS, or any other category of text.
- Message frequency. You receive one SMS per sign-in attempt — typically 1–3 messages per month, depending on how often you sign in on a new device.
- Standard rates apply. Message and data rates may apply depending on your mobile phone service plan.
- HELP and STOP. Reply HELP to any Bonfire SMS for help. Reply STOP to opt out of future messages at any time.
- Mobile numbers are not shared or sold. We do not share or sell mobile phone numbers — including yours — to third parties for marketing, advertising, lead generation, affiliate sharing, or any other purpose. The only third party that ever sees your phone number is our SMS delivery provider (Twilio), which is bound by contract to use it solely to deliver verification codes on our behalf.
How long we keep it
We keep your account and content for as long as your account is active. When you delete your account, your profile and the messages you sent are removed within 30 days. Backups are overwritten on a rolling 30-day cycle, so any residual copies are gone by then.
Group content posted by other members remains in the group after you leave — your name on it is anonymized.
Security
Bonfire uses HTTPS for all network traffic. Authentication tokens are stored in iOS's encrypted Keychain. Files are stored in private storage buckets that require an authenticated session to access. We follow standard practices to protect your data, but no system is perfectly secure — if you spot something, email us.
Children
Bonfire is rated 17+ and is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe a child under 13 has signed up, email us and we will delete the account.
Changes to this policy
If we change this policy in a way that meaningfully affects what we collect or how we use it, we will notify you in the app before the change takes effect. Smaller updates (clarifications, contact info) will be reflected on this page with a new "last updated" date.