Footnote Privacy Policy

Last updated: 2026-05-15

This Privacy Policy explains how Footnote collects, uses, shares, and protects information when you use the Footnote mobile app.

For privacy questions or requests, contact Footnote support: support@footnote-app.com.

Information We Collect

Account information

When you create or use an account, we collect information needed to provide authentication and account access, including:

• email address
• account identifier
• authentication/session information managed by Supabase Auth
• account settings such as onboarding, preferences, and profile visibility

Profile and user content

Footnote is a taste-tracking and social app. Depending on how you use the app, we may collect and store:

• username, display name, bio, avatar, and profile settings
• media ratings, favorites, statuses, logs, notes, reviews, lists, threads, replies, and related timestamps
• privacy settings for reviews, lists, and profile content
• follows, activity records, notifications, and other app interaction records
• beta feedback reports and content reports that you choose to submit

Some user content may be visible to other signed-in users when you mark it public or when the app feature is designed for public/profile/community display. Personal or draft content is intended to remain visible only to you, subject to the app's access controls.

Imported data

If you use import features, Footnote processes the files or archive contents you select so it can preview and import your media history. Imported rows may include titles, dates, ratings, reviews, privacy flags, favorites, and status information contained in the import file.

Device, app, and diagnostics information

For beta operations, reliability, and support, Footnote may collect limited technical information such as:

• app version and build number
• platform and coarse device class
• operating system summary
• current app route or screen
• crash reports, error reports, and limited beta telemetry events
• counts, status values, media types, provider names, and safe reason codes related to app operations

Footnote is designed not to send user-authored review text, thread/reply text, list descriptions, private notes, import row text, raw search queries, or AI prompt content to diagnostics telemetry.

Search, provider, and recommendation data

When you search for or open media from external catalogs, Footnote may send search terms, provider identifiers, and selected media metadata through its backend services to third-party data providers such as TMDB, Open Library, and IGDB.

Footnote may also use your taste data, such as ratings, favorites, statuses, and media history, to generate or improve recommendation features. Recommendation processing is handled through backend services so provider and AI service credentials are not stored in the app.

How We Use Information

We use information to:

• create, authenticate, and manage your account
• provide media logging, reviews, lists, recommendations, search, import, profile, notification, and community features
• show your public content to other users where applicable
• keep personal, draft, or restricted content scoped according to app access rules
• operate the closed beta, investigate bugs, respond to feedback, and improve reliability
• detect, investigate, and respond to abuse, content reports, security issues, or support requests
• maintain app security, backups, operational logs, and audit records

How We Share Information

Footnote does not sell personal information.

We may share or process information with service providers used to run the app, including:

• Supabase, for authentication, database, storage, and backend functions
• Sentry, for crash reporting, diagnostics, and limited beta telemetry
• Expo/EAS, for app builds, distribution, and runtime platform services
• media and metadata providers such as TMDB, Open Library, and IGDB when you use search or catalog-backed features
• AI or backend processing providers when recommendation features are generated or maintained

We may disclose information if required by law, to protect rights and safety, to investigate abuse or security issues, or to operate and maintain the app.

Data Security

Footnote uses hosted backend services, authenticated API access, row-level access controls, and server-side functions to help protect user data. Administrative secrets and provider credentials are kept out of the mobile app bundle.

No internet service can be guaranteed to be completely secure, but we take reasonable steps to protect personal information against unauthorized access, loss, misuse, or alteration.

Data Retention and Deletion

We keep account and app data while your account is active or as needed to provide the app, operate the beta, comply with legal obligations, resolve disputes, and maintain security.

You can delete your account from the app where the account deletion feature is available. Account deletion removes the authenticated account and is designed to cascade deletion of account-owned database records. Avatar storage objects are removed as part of the account deletion process.

Some records may remain for a limited period in backups, logs, security records, app store records, or provider systems where deletion is not immediate or is controlled by a third-party service. Public or shared content may also remain if it has been copied, exported, cached, or independently stored by others before deletion.

For privacy or deletion requests, contact: support@footnote-app.com.

Children

Footnote is not directed to children under 13. Do not use Footnote if you are under 13.

International Processing

Footnote uses cloud services that may process information in countries other than where you live. By using the app, you understand that your information may be processed through those services where they operate.

Changes to This Policy

We may update this Privacy Policy as the app changes. The updated version will be identified by the "Last updated" date above.