Warning: *Privacy Not Included with this product
Jdate
Started in 1997, this dating app is targeted at Jewish men and women looking for other Jewish people to date. Free to sign up and browse profiles, users must have a subscription to message other users. It's like having access to your very own Jewish matchmaker, their Google Play store description says. The app allows people to target specific Jewish affiliations such as Conservative, Hasidic, or Reform, as well as ethnicity as part of their search. Users don't have to be Jewish to sign up, there is a "Willing to convert" profile option. Both straight and LGBTQ profile options are available on Jdate. And while users are only required to provide some basic personal information to sign up, users more open to sharing personal information will get more matches on the app.
What could happen if something goes wrong?
Here's a snag in swapping a real-life Jewish matchmaker with Jdate -- this one comes with with *Privacy Not Included. So do its Spark-Network-owned sister apps by the way, which include ChristianMingle, Elite Singles, and Zoosk. They all made their way into our bad books because of their personal-data-sharing, questionable security, and the fact that they don't guarantee all users the right to delete their data.
Jdate sure can collect a lot of personal information about its users. First there's contact information, like your name, email, address, and phone number. Then there's what counts as "sensitive information" like -- excuse me? -- your "sexual preferences and experiences". It's not unheard of for sex-related data to make its way into privacy policies but "experiences"? That is a new one for us. There's also your race, ethnicity, political affiliation, religious affiliation, union memberships, biometric information, videos, "physical characteristics" and a lot more. Basically, all the information you give about yourself while you're on the app can be collected by Jdate, including whatever you add to your profile or send in messages. And when Jdate collects your photos and videos, they can collect extra information from the files (called metadata) -- like the time the photo was taken, where, and what day. They can also scan your content with third party services to "help identify your interests and activities—such as if your photo includes pets, sports or trips—and to help [them] provide better matches for you." Better think twice about uploading those flattering fishing photos then, if that's not a hobby you want used for matching.
On top of all that, there's some information collected automatically from your device. Mostly that's information about your device, but can include personal information like your IP address and even other apps that you've downloaded. Oh, and location data. Did we mention everything you do on Jdate? That's data too. Oy vey, there is more. Jdate can collect information about you from other sources -- like other people, social media, affiliates, and "third-party information providers". And they can use your personal information to make assumptions about you, called inferences. Jdate's privacy policy also says users can import their address book and can be notified when their contacts sign up for the services. That might be awkward if your Bubbe is on Jdate, uploads her address book, and then gets a notification that you've joined after you told her you don't want to be set up because you're definitely not looking to date right now.
Phew, that's a lot! The privacy policy even says that "[w]here you do not provide the personal data detailed in this Policy, we may not be able to provide you with the Services." OK so at least some of the time, giving up all that information isn't exactly "optional" either. What is it all for? Well, aside from matchmaking, Jdate can use personal information such as your gender, age, and "usage data" to "deliver relevant website content and advertisements to you" and to measure their effectiveness. That's not good. They can also share your personal information with their affiliates -- which includes all those other apps owned by Spark Network. They can also share personal data with "marketing and strategic business partners" if you're not a resident of California, where data privacy laws are much stronger. Hmm does that mean that kind of sharing could count as "selling"? We can't be sure.
When Jdate isn't giving your data away, we're worried it could be breached or hacked -- especially since we can't confirm whether they meet our Minimum Security Standards. Whether the app encrypts your personal data or manages security vulnerabilities is a mystery to us. Yikes! That all makes it especially frustrating that not all users are guaranteed the right to delete their personal data.
What could go wrong with Jdate? Since you can be matched based on things in your photos, Jdate might decide you're a sports fan because of that photo of you at a baseball game. When really, you were only there for those super yummy kosher hot dogs with your friends. Because Jdate can use that information (that you didn't consciously give them) for matching, you might find your matches full of jocks instead of fellow processed-meat-lovers like yourself! How tragic. Maybe it's best not to dismiss your relative's rolodex just yet.
Tips to protect yourself
- Follow JDate's Safety Tips.
- Visit the app's privacy preferences at the app and opt out from personalized advertising as well as all non-essential data collection.
- Request your data be deleted once you stop using the app. Simply deleting an app from your device usually does not erase your personal data nor does close your account.
- Do not give consent to constant geolocation tracking by the app. Better provide geolocation 'only when using the app'.
- Do not share sensitive data through the app.
- Do not give access to your photos and video or camera.
- Do not log in using third-party accounts.
- Do not connect to any third party via the app, or at least make sure that a third party employs decent privacy practices.
- Do not give consent for sharing of personal data for marketing and advertising.
- Choose a strong password! You may use a password control tool like 1Password, KeePass etc.
- Do not use social media plug-ins.
- Use your device privacy controls to limit access to your personal information via app (do not give access to your camera, microphone, images, location unless necessary).
- Keep your app regularly updated.
- Limit ad tracking via your device (eg on iPhone go to Privacy -> Advertising -> Limit ad tracking) and biggest ad networks (for Google, go to Google account and turn off ad personalization).
- When starting a sign-up, do not agree to tracking of your data if possible.
Can it snoop on me?
Camera
Device: N/A
App: Yes
Microphone
Device: N/A
App: Yes
Tracks location
Device: N/A
App: Yes
What can be used to sign up?
Yes
Phone
No
Third-party account
Yes
Facebook and Apple sign-up available
What data does the company collect?
Personal
Name, email address, phone number, address, race, ethnicity, sexual preferences and experiences, political affiliation, religious affiliation, union memberships, biometric information, birth date, videos, password, billing information, credit card information, demographic information, place of work, education, your personal interests and background, gender, age, dating age range preference, physical characteristics, personal description, life experiences, geographic location, your photos; IP address, browser type, Internet service provider, platform type, cookies, device ID, IDFA, Google AdID, device type, model, manufacturer, mobile device operating system brand, model, mobile carrier, phone number, email address, cookies, web beacons, embedded scripts, location-identifying technologies, file information, similar technology, location data.
Body related
Biometric information, physical characteristics, personal description, photos and any information derived from them
Social
Dating insights, address book.
How does the company use this data?
How can you control your data?
What is the company’s known track record of protecting users’ data?
No known data breaches discovered in the last three years.
Child Privacy Information
Can this product be used offline?
User-friendly privacy information?
Links to privacy information
Does this product meet our Minimum Security Standards?
Encryption
We cannot confirm encryption at rest and in transit for this app.
Comments
Got a comment? Let us hear it.