Privacy Policy

RedCheck is the data controller for personal data processed by the Service.

Contact us through the RedCheck Support Center or at support@redcheck.app.

Account and profile data

• Email address, user ID, authentication provider, and session information.
• First name, last name, nickname, language preference, AI voice preference, theme, sound, and haptic settings.
• Avatar image if you choose to upload one. Avatar files are stored using public Storage URLs, so anyone with the avatar URL can view or download the file without signing in.

Content you provide in the app

• Text situations, optional context, screenshots, and photos you submit for analysis.
• Voice recordings and transcripts when you use voice-note scanning or transcription.
• AI chat messages, verdicts, explanations, notes, folders, saved library articles, generated personal library articles, daily oracle/library progress, and achievement progress.
• Sensitive information that you choose to include in your submissions, such as relationship, work, health, emotional, or personal context.

Subscription and purchase data

• Product ID, entitlement status, subscription expiration, renewal status, grace-period status, and RevenueCat app user ID.
• Purchase and renewal event data from RevenueCat and the applicable app store. We do not receive or store your full payment card details.

Website, support, and contact data

• Email address and source if you leave your email for questions, feedback, collaboration, or product inquiries.
• Messages, email address, and attachments or details you choose to include when contacting support.
• Website analytics and performance information from Vercel Analytics and Speed Insights.
• Technical request data used for security and abuse prevention, including hashed IP addresses for rate limiting.

Device and technical data

• Device type, operating system, app version, feature interactions, diagnostics, error logs, and network metadata.
• Local app data such as session tokens, preferences, pending verdict persistence, revealed daily oracle state, and cached chat state stored on your device.

We use personal data to:

• Create, authenticate, and secure accounts.
• Provide text, photo, voice, verdict, explanation, chat, library, note, folder, daily oracle, and profile features.
• Process AI requests, moderation checks, transcriptions, and generated library content.
• Provide subscriptions, check entitlements, restore purchases, and sync subscription status.
• Show usage limits, prevent abuse, rate-limit requests, debug failures, and improve reliability.
• Respond to support requests and contact, feedback, collaboration, or product inquiry emails.
• Maintain, protect, and improve the Service.

RedCheck uses AI systems to analyze user submissions, moderate unsafe content, transcribe voice recordings, generate explanations, answer follow-up chat messages, and create app/library content.

Your text, context, images, audio, transcripts, and relevant chat or verdict context may be sent to AI providers such as OpenAI so the requested feature can work. AI outputs can be incomplete, inaccurate, or inappropriate and are not professional advice.

To reduce repeated processing and improve reliability, RedCheck may cache generated outputs and hashed references for similar AI requests. Scanner verdict history and notes that you save remain linked to your account until you delete them or delete your account.

If GDPR or similar law applies, we process data based on:

• Contract necessity, to provide the Service you request.
• Consent, when you provide optional content, leave your email for follow-up, allow microphone or photo-library access, or contact support.
• Legitimate interests, to secure the Service, prevent abuse, maintain reliability, improve product quality, and understand product usage.
• Legal obligations, where we must keep or disclose information to comply with law.

We do not sell personal data and we do not use app data for third-party advertising tracking.

We may share data with service providers that help us operate the Service, including:

• Supabase for authentication, database, storage, edge functions, and account deletion.
• OpenAI for AI analysis, moderation, transcription, and content generation.
• RevenueCat and the applicable app store for subscriptions, entitlements, purchase events, customer center, and restore flows.
• Apple and Google for sign-in or platform account services when you choose those options.
• Vercel for website hosting, analytics, and performance insights.
• Support, email, infrastructure, security, and legal providers where needed to operate or protect the Service.
• Authorities or other parties if required by law or to protect rights, safety, users, or the Service.

We and our processors may process data in countries other than your own. Where required, we use appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms.

We keep personal data only as long as needed for the purposes above, unless a longer period is required or permitted by law.

• Account, profile, verdict, notes, folder, library, achievement, and subscription mirror data are generally kept while your account is active.
• Contact lead data is kept until it is no longer needed to respond to your question, feedback, collaboration idea, or product inquiry, or until you ask us to remove it.
• Rate-limit, diagnostic, cache, and security data may be retained for a limited period to protect and operate the Service.
• When you delete your account in the app, RedCheck requests deletion of your Supabase user and related profile, verdict, folder, note, and account-linked data through cascading database rules. Some records may remain if required for legal, security, backup, or payment/audit reasons.

We use technical and organizational measures designed to protect personal data, including secure session storage on native devices, Row Level Security for user-owned database records, HTTPS requests, file validation, rate limiting, and service-role restrictions for backend-only operations.

No system can be guaranteed fully secure.

Depending on your location, you may have rights to:

• Access your personal data.
• Correct inaccurate data.
• Delete your data.
• Restrict or object to processing.
• Receive a portable copy of your data.
• Withdraw consent where processing is based on consent.
• Complain to a data protection authority.

To exercise these rights, contact us through the Support Center or at support@redcheck.app.

The Service is not intended for users under 18.

We may update this policy from time to time. When changes are material, we will take reasonable steps to notify users, such as by updating this page or providing an in-app notice where appropriate.

Support Center: redcheck.app/support
Email: support@redcheck.app