Privacy policy

1. Who we are

Caged is a private Progressive Web App for adult couples who practise consensual chastity dynamics. It is operated by Antiagency LTD, a company registered in England and Wales under number 16843865, with its registered address at 3rd Floor, 86-90 Paul Street, London, England, United Kingdom, EC2A 4NE (“Caged”, “we”, “us”, “our”). We are the data controller for the personal data processed through caged.app and the Caged application (the “Service”).

Any question about this policy or about your personal data can be sent to support@caged.app.

2. Summary — what we actually hold on you

Caged has been deliberately built to hold as little identifiable information about you as possible. The only direct identifier we require, and the only piece of personal information that can be used to contact you or distinguish you as an individual, is your email address. Everything else that we store is either optional, self-chosen, or purely about your use of the Service.

You may also choose a display name to appear in the interface. It can be an alias, it does not need to be your real name, and we do not verify it. We never ask for, and do not store, your real name, postal address, phone number, date of birth (beyond the fact that you have confirmed you are 18 or over), photographs, video, audio, biometric data, government-issued identification, social-media profiles, or contacts.

We do not see or store your payment card details. Payments are handled by Stripe. We only keep a Stripe customer identifier so that your subscription can be linked to your account.

The practice data you log inside the Service (timer state, permission requests, events, orgasm entries, notes) is associated with your account — and therefore with your email address — but is not linked by us to your real-world identity.

3. The personal data we process

We only process what the Service actually needs. The categories below describe everything we hold.

a. Account and authentication data

Email address (required, used to identify your account and to deliver sign-in links); optional display name (an alias you choose); a role label, either Keyholder or Locked Partner; an accent colour preference; a reminders preference; a permission preference (always, sometimes, or no); the date your account was created; session tokens and authentication records issued by our authentication layer (BetterAuth). If you choose to sign in with Google, we additionally receive the email address and Google account identifier associated with that sign-in. We never receive or store your Google password.

b. Couple and pairing data

A single-use pairing invite code, which expires after 24 hours, is generated to let you pair with a partner. Once two accounts are paired, the database records that the two accounts form a couple, along with the practice-start date the couple sets during onboarding.

c. Practice and activity data (special category data)

Some of the data you log in Caged concerns your sex life and is therefore “special category data” under UK and EU data protection law (Article 9 GDPR). This includes timer state (currently locked, paused, streak length, streak history, reset count); release-timer settings, including any roulette result; permission requests, grants and denials, including the release method selected and any note or denial reason you add; orgasm records, including the type, date and any note you add; and any other event you log (for example a broken rule, a toy-use entry, or free-text notes). We process this data only on the basis of your explicit consent under Article 9(2)(a) GDPR, which you give by creating an account and actively choosing to record this information. You can withdraw consent at any time by deleting entries, deleting your account, or contacting support@caged.app. Withdrawal does not affect processing that has already happened.

d. Billing data

A Stripe customer identifier so we can link your subscription to your account; the status of your subscription (such as trialing, active, past due, cancelled, expired); and the billing interval you chose. We do not store card numbers, CVC codes, expiry dates, billing addresses, or cardholder names. Stripe processes those directly as an independent data controller in respect of the card transaction. You can review Stripe’s privacy notice at https://stripe.com/privacy.

e. Communications

Transactional emails we send to you (sign-in links, receipts, service notices) are delivered by Resend, which processes your email address to deliver the message. If you email us at support@caged.app or any other address that reaches us, we process the contents of that correspondence to reply to you and keep a record of it.

f. Technical and log data

Our hosting and logging providers see standard technical information every time your device talks to our servers: IP address, user-agent string, request timestamps, and similar metadata. If something goes wrong in the Service, an error report may be captured by Sentry. We attach only your user identifier and couple identifier (never your email) to these error reports so that we can debug problems without exposing your identity to the error-tracking tool.

g. Website analytics (only with your consent)

If — and only if — you consent through the cookie banner, our marketing site (caged.app) uses Microsoft Clarity to produce aggregated usage statistics and anonymised session recordings of the marketing site, so that we can understand how the site is used and improve it. Clarity does not load without your consent. If you withdraw consent, Clarity is disabled. See the Cookie Policy for details.

4. What we deliberately do not collect

To be explicit, we do not collect real names, postal addresses, phone numbers, government-issued identification, dates of birth beyond the 18+ eligibility check, photographs, video, audio, or biometric data. We do not collect location data beyond what can be inferred from an IP address at the moment of a request. We do not collect your contacts, your social graph, or data from third-party accounts (other than the basic sign-in information from Google if you choose Google sign-in). We do not collect any information about whether you are, or are not, in a relationship with any specific person other than the partner you yourself choose to pair with.

5. How we use your data and the legal basis

We process your data to provide the Service to you and your paired partner — to create and run your account, pair you with your partner, run timers and permission flows, log events, and compute your statistics. The legal basis for this is performance of a contract with you under Article 6(1)(b) GDPR. For the special category data described in section 3(c), the additional legal basis is your explicit consent under Article 9(2)(a) GDPR.

We process your data to take and manage your subscription on the basis of performance of a contract under Article 6(1)(b), and to comply with our legal obligations, including tax and accounting obligations, under Article 6(1)(c).

We process your email address to send transactional emails (sign-in links, receipts, service notices) on the basis of performance of a contract under Article 6(1)(b).

We process technical, log and error-report data to keep the Service secure and functional, to authenticate you, to prevent fraud and abuse, to rate-limit requests, and to debug errors, on the basis of our legitimate interests in running a secure and reliable Service under Article 6(1)(f).

We process anonymised analytics data on our marketing site only on the basis of your consent under Article 6(1)(a). You can grant or withdraw this consent at any time via the cookie banner or the “Cookie preferences” link in the footer.

Where we are required to disclose information to a competent authority or retain records to comply with the law, we do so on the basis of Article 6(1)(c).

We do not use your data for advertising, for profiling for marketing, or for any form of automated decision-making that produces legal or similarly significant effects on you.

6. Who we share your data with

We do not sell your data and we do not share it with advertisers. A small number of processors help us operate the Service. Each is bound by a data-processing agreement and may only process data on our documented instructions.

Stripe, Inc. processes payments. For the card transaction itself, Stripe acts as an independent controller (see https://stripe.com/privacy). Resend, Inc. delivers our transactional emails (see https://resend.com/legal/privacy-policy). Microsoft Corporation, through Microsoft Clarity, provides analytics for our marketing site, and only if you have consented (see https://privacy.microsoft.com/privacystatement). Functional Software, Inc., trading as Sentry, provides error and performance monitoring; we attach only an internal user identifier and couple identifier to Sentry events, never your email. Railway Corp. provides application and database hosting (PostgreSQL) for the backend and for your account data. Vercel, Inc. hosts our web frontends. Google LLC handles the OAuth flow if you choose to sign in with Google.

We may also disclose personal data if required by a valid court order, subpoena or other binding legal process from a competent authority, in which case we will, where lawful, narrowly limit what we disclose and attempt to notify you. In the event of a merger, acquisition, or sale of assets, personal data may be transferred, subject to the protections of this policy.

7. International transfers

Some of the providers listed above are based outside the United Kingdom and the European Economic Area, in particular in the United States. Where personal data is transferred outside the UK or the EEA, we rely on appropriate safeguards — typically the UK International Data Transfer Agreement or the UK Addendum, the European Standard Contractual Clauses, and, where relevant, the EU–US Data Privacy Framework. You can request a copy of the safeguards in place by writing to support@caged.app.

8. How long we keep your data

We keep account data and practice data while your account is active. If you delete your account, we delete or irreversibly anonymise that data within 30 days, except where we are required to keep specific records for longer (for example for tax, accounting, or a live legal claim).

Billing records may be retained for up to 7 years after the transaction to comply with tax and accounting obligations. Most of that retention sits with Stripe; we only hold the customer identifier and the status of your subscription.

Server logs and error reports are typically kept for up to 90 days and then deleted or rotated out. Analytics data captured by Microsoft Clarity is kept for as long as Clarity’s own retention allows (typically up to 13 months) and only for sessions where you gave consent. Support correspondence is kept for up to 24 months after the last contact, unless a legal claim requires us to keep it longer.

9. Your rights

Under the UK GDPR and the EU GDPR, you have the right to access the personal data we hold about you; to ask us to correct data that is inaccurate; to ask us to delete your data (you can also do this yourself at any time, instantly, from Settings → Delete account, which cascades and removes all related records); to ask us to restrict processing; to object to processing based on legitimate interests; to port your data to another service where technically feasible; and to withdraw any consent you have given — in particular your consent to processing special category data and your consent to analytics cookies.

You also have the right to lodge a complaint with a supervisory authority. In the United Kingdom this is the Information Commissioner’s Office (ico.org.uk). In the European Union this is your local data-protection authority.

To exercise any of these rights, email support@caged.app from the address on your account. We will respond within one month.

10. Security

We use industry-standard security measures, including TLS encryption in transit, encryption at rest on our managed database, scoped access controls on every API call, one-time magic-link authentication, session tokens, and secure secrets management. No system is ever 100% secure, but Caged has been designed around minimising data, so that in the worst case a breach would disclose as little about you as possible — in practice, an email address and a set of activity records, and nothing that identifies you by face, name, or location.

11. Children

Caged is strictly for adults. You must be 18 or over (or the legal age of majority where you live, if higher) to use the Service. We do not knowingly collect data from children. If we become aware that we hold data on a minor, we will delete it immediately.

12. Changes to this policy

We may update this Privacy Policy from time to time. If the change is material, we will notify you by email before it takes effect. The “Last updated” date at the top of the page shows the current version.