Privacy Policy
Vetted · Last updated 21 June 2026
Vetted is a curated guide to specialty coffee. This policy explains what we collect and why. We do not sell your data, we do not show ads, and we do not track you across other apps or websites. Detailed usage analytics are optional and stay off until you turn them on; separately, we keep an anonymous, aggregate count of how many devices use Vetted each day, which contains no personal data (see below).
What we collect
- Account identity. If you sign in with Apple, we store the anonymous Apple user identifier and, if you share it, your email address (which may be an Apple private-relay address). This is used only to keep you signed in and to sync your saved cafés.
- Saved cafés. The cafés you bookmark, linked to your account so they appear on your devices.
- Approximate area. If you grant location permission or choose an area manually, we use that area to show relevant cafés and sort them by distance. Device location stays in the app; only a reduced-precision area is sent with discovery requests, and we do not store location history on our servers.
- Usage analytics — optional, off by default. If you turn analytics on (a one-time prompt, and Profile → Privacy anytime), we record which screens and features you use — for example opening a café, tapping “Take me there”, or saving a café — so we can understand what’s useful and improve the app. This is first-party product analytics, processed on our behalf by Mixpanel and linked to your account. It is never used for advertising, never combined with data from other apps or websites, and never shared for anyone else’s use. We send only structural facts (which action, counts, café/curator identifiers) — never your search text, notes, or precise location.
- Anonymous usage counts — always on, no personal data. So we can tell how many people use Vetted each day — including those who leave the optional analytics above switched off — we keep a privacy-preserving daily tally of active devices. It records only an anonymous aggregate count: it derives a coarse, daily-changing fingerprint that cannot be traced back to you and cannot be linked from one day to the next, is never tied to your account, never leaves our own servers (it is not sent to Mixpanel or anyone else), and is never used for advertising or profiling. We cannot identify you from it.
What we don't do
- No advertising, no ad identifiers, no cross-app or cross-site tracking — and no “Allow Tracking” (ATT) prompt, because we don’t do it.
- No selling or sharing of personal data with third parties for their own use.
- No third-party advertising or behavioural-profiling SDKs. The only analytics are the optional, first-party ones described above, which you can switch off at any time.
How it's stored
Data is stored on Cloudflare infrastructure. Authentication uses short-lived tokens. Café photography is served from third-party image hosts referenced by URL. If you have turned on usage analytics, those events are processed and stored by Mixpanel as our processor.
Deleting your account
You can delete your account at any time from Profile → Delete account in the app. This permanently removes your account record, saved cafés, and sign-in, revokes the associated Sign in with Apple token, and deletes your analytics profile. You can also stop analytics without deleting your account from Profile → Privacy.
Contact
Questions or requests: rxv2dev@gmail.com.