Most apps want to know who you are, where you've been, and who you talk to. We want the opposite. FlirtSpot is engineered to facilitate the moment and then vanish. No permanent profiles. Your profile is anonymous. No tracking. Your data self-cleans within 24 hours — or wipe it instantly.
Three pillars that make data breaches impossible.
No phone numbers. No emails. No social logins. Your profile consists of just an anonymous username, a selfie, and a UUID v7 — none of which contain real personal information.
We don't use cookies, advertising IDs, or third-party analytics. We have no idea where you go after you put your phone away.
Your anonymous profile's username and selfie are retained for up to 24 hours after your last activity, then auto-wiped. Need to vanish sooner? Use the Delete Profile button in Settings to erase everything instantly — from both device and server.
The deep dive into how we protect you.
Every selfie and message from your anonymous profile is encrypted with the recipient's public key before it leaves your device. Not even our relay server can see your face or read your words. You hold the only keys.
encrypted_payload = AES-256-GCM(plaintext, recipient_public_key)
We utilize Android's FLAG_SECURE system-level protection. This automatically disables screenshots and screen recordings on all ephemeral views. If someone tries to capture your photo, they get a solid black screen.
Our server handles all traffic in volatile memory (RAM) — nothing is written to disk. Your anonymous profile's username and selfie are retained for up to 24 hours after your last activity, then permanently auto-wiped. Need it gone sooner? Use the Delete Profile button in Settings to erase everything instantly from both device and server.
For maximum privacy, use our P2P mode. Your phone communicates directly with nearby devices without touching the internet. No server, no middleman, and zero possibility of remote logging.
How a Flirt (selfie) travels from capture to complete wipe — separate from your 24-hour profile data retention.
You take a selfie (a "Flirt"). It is encrypted in the app's private, non-shared cache before being sent.
The selfie travels through an encrypted tunnel (Direct P2P or Relay).
The recipient opens the Flirt selfie. A 60-second timer begins — this is separate from the 24-hour profile auto-wipe.
At 0 seconds, the file is overwritten with random bits and deleted from the device storage. It is gone from the universe.
We collect zero PII (Personally Identifiable Information). All profiles are anonymous. We cannot share or sell what we do not have.
We verify age via Year of Birth during onboarding. This data remains on your phone and is never uploaded to a central database.
Want to leave? Hit Delete Profile in Settings to instantly erase your anonymous profile data from both the device and server. Your username and selfie will also auto-wipe 24 hours after your last activity if you simply stop using the app. No profiles to deactivate — you were always anonymous. No data archives to request. For full details, see our Delete Account & Data page.