← All industries

GDPR Data Request to a Dating App

Dating apps hold some of the most sensitive personal data imaginable — your location history, private messages, and detailed behavioural profiles built from every swipe. Some data, such as inferred sexual orientation, is special category data under Article 9 GDPR and attracts the highest level of protection.

Data typically held by dating apps

Note: Sexual orientation and similar inferences may constitute Article 9 special category data, which requires explicit consent to process. If the app has inferred sensitive attributes from your behaviour, you can request confirmation of that processing and its legal basis.
Tip: Send your request to the company's Data Protection Officer. Explicitly ask for your full profile data, matching algorithm inputs, inferred categories, and any data shared with third-party advertisers or analytics providers.

Generate your request letter

Fill in your details below. The letter covers all nine data points required under Article 15 GDPR. Copy it or send it via email to the organisation's Data Protection Officer.

Need help finding the right contact? Check our DPO directory for major companies, or search for "[company name] data protection officer" to find their contact details.

Dear Data Protection Officer,

I am writing to exercise my rights under the General Data Protection Regulation (GDPR). As an individual whose personal data you process, I am requesting the following information:

  1. Confirmation that you are processing my personal data.
  2. A copy of my personal data.
  3. The purposes of the processing.
  4. The categories of personal data concerned.
  5. The recipients or categories of recipients to whom my personal data has been or will be disclosed.
  6. The envisaged period for which my personal data will be stored, or the criteria used to determine that period.
  7. The existence of my right to request rectification or erasure of my personal data, or restriction of processing, or to object to such processing.
  8. Information about the source of my personal data if it was not collected directly from me.
  9. The existence of automated decision-making, including profiling, and meaningful information about the logic involved.

Below is my information for your reference:

Name:
Email:
Address:

This request is of utmost importance to me and should not be ignored. The GDPR mandates that you respond within one month. Failure to comply may result in further action being taken.

Thank you for your prompt attention to this matter.

Sincerely,

Text copied to clipboard

1. Copy and send this letter to the data controller of the organisation.

2. Follow up until you hear back. The GDPR requires a response within one month.

3. No response? Lodge a complaint with your local data protection authority.

No response after one month? File a complaint with your DPA →

Select your country to find your data protection authority:

Share: