Privacy Policy

Last updated: May 31, 2026

Loopalong is a personal taste journal app that helps you track and share the things you love — restaurants, films, shows, music, books, and hotels. This policy explains what data we collect, how we use it, who we share it with, and what rights you have.

1. Who we are

Loopalong is operated by Luca Silberberg ("we," "us"). For privacy questions, contact us at privacy@loopalong.com.

2. What we collect

Account information

• Email address (from sign-up or from Apple/Google Sign-In)
• Name (provided by Apple/Google during Sign-In)
• Username you choose

Profile information you provide

• Profile photo (optional)
• Bio (optional)

Content you create

• Items you save: name, category, rating, your private note, optional metadata (address, release year, etc.)
• Wishlist items, pinned items
• Follow relationships and blocked users

Technical information

• Approximate location (only if you grant permission, used to surface nearby restaurants and hotels)
• Device locale

3. How we use your data

• To provide the core app: show your collection, sync across devices, display your profile, enable follows and discovery
• To respect your privacy settings (per-item Shared / Just me, account-level Private)
• To respond to your support requests
• To enforce app rules (handling blocks, abuse reports)

We do not use your data for advertising. We do not sell your data to third parties. We do not use your content to train AI models.

4. Third parties we share data with

Backend infrastructure

Supabase stores your account, profile, and content data on secure infrastructure (hosted on AWS).

Sign-in providers

Apple and Google authenticate you on our behalf and receive only the information needed for sign-in.

Content search APIs (only when you use search, and only the search term plus optional location):

• Google Places API — restaurants and hotels
• TMDB — films and shows
• Google Books API — books
• Spotify Web API — music

These third parties do not receive your account identifier or personal profile data — only the search query and, for Places, your optional approximate location.

5. Public vs. private content

By default, items you save have Shared visibility — followers can see them. You can change any item to Just me at any time, and you can set your entire account to Private (requires manual follow-request approval).

6. Children

Loopalong is not directed at children under 13 (under 16 in the EU/UK). If a child has registered without consent, contact us at privacy@loopalong.com and we'll delete the account.

7. Your rights

At any time you can:

• View and edit your data inside the app
• Adjust privacy settings (account-level and per-item)
• Block or unfollow users
• Delete your account (Profile → Settings → Delete Account). Deletion is irreversible and removes all your data including marks, follows, profile, and avatar.
• Contact us at privacy@loopalong.com to request data export, correction, or specific deletion

If you're in the EU/UK/Switzerland, you have additional rights under GDPR (access, rectification, erasure, portability). If you're in California, you have rights under CCPA. Email us to exercise these rights.

8. Data retention

We retain your data as long as your account exists. When you delete your account, all data is removed from our active databases via cascading deletion. Backup snapshots retained by our infrastructure providers may persist for up to 30 days before final purge.

9. Security

We use industry-standard security: TLS encryption in transit, OAuth for third-party sign-in, and database-level access controls (Row-Level Security on Supabase). No system is perfectly secure, but we work to protect your data.

10. Changes to this policy

If we update this policy, we'll post the new version at this URL and update the "Last updated" date. Significant changes may also be communicated in-app.

11. Contact

Privacy questions or requests: privacy@loopalong.com

---

© 2026 Loopalong. All rights reserved.