fetch.app is operated by LBC Consulting ("we", "us", "our"). This page explains what personal data we collect when you use the fetch.app iOS app and related services, how we use it, who we share it with, and your rights.
1) Who we are
LBC Consulting is the data controller for personal data processed through fetch.app. You can contact us at privacy@get-fetch.app.
2) What we collect
Account information. Your email address (used to authenticate you via magic link), display name, currency preference, and a unique personal email address assigned to your account for email forwarding. This forwarding address acts as a private access credential — treat it like a password.
Order and return data. Retailer names, item descriptions, order numbers, amounts, dates, expected and actual delivery dates, return reasons, tracking numbers, and refund amounts.
Email content. When you forward order emails to your personal fetch.app address, we process the content to extract order details. Before any email content is sent to our AI provider, personally identifiable information — including your name, postal address, phone number, and payment card details — is stripped from the text. We store only the extracted order data, not the raw email body.
Chat queries. Questions you type or speak in the AI assistant, along with a record of whether the question was successfully answered.
Push notification token. A device token issued by Apple when you enable notifications, used solely to deliver push notifications to your device.
Subscription and billing status. Your subscription status (active, free trial, cancelled, expired) received from Apple via RevenueCat. We do not receive or store payment card details — all billing is handled by Apple.
API usage logs. Per-request records of token counts and processing cost, stored against your account ID. Used for internal cost management only.
Error and diagnostic data. Anonymised crash reports and error logs including device type, iOS version, app version, and where relevant your account ID, collected via Sentry.
We do not collect payment card details, bank account information, or your delivery address. We do not sell personal data.
3) How we use your data
We use your data to authenticate you and maintain your account; process forwarded emails and keep your order and return records up to date; power the AI assistant; send push notifications for status changes; display spending insights; manage your subscription; and diagnose errors.
Our lawful basis for processing is performance of a contract (providing the service you signed up for), with legitimate interests for error monitoring and cost tracking.
4) Third-party processors
The following companies process your data on our behalf, under our instruction, and may not use your data for their own purposes.
- Supabase (US): your account, orders, returns, and all app data are stored and processed in Supabase's hosted database and edge function infrastructure. Supabase also handles authentication. Transfers covered by Standard Contractual Clauses. supabase.com/privacy
- Anthropic (US): email bodies (after PII stripping) and chat messages are processed by Anthropic's Claude API to extract order details and generate responses. Anthropic does not use API data to train their models. Transfers covered by Standard Contractual Clauses. anthropic.com/privacy
- Postmark / Wildbit (US): forwarded emails are received via Postmark's inbound email service before being processed by fetch.app. Postmark retains inbound email content for up to 45 days. Transfers covered by Standard Contractual Clauses. postmarkapp.com/privacy-policy
- RevenueCat (US): subscription and purchase events from Apple are relayed to us via RevenueCat, which receives your app user ID and subscription status. Transfers covered by Standard Contractual Clauses. revenuecat.com/privacy
- Sentry (US): crash reports and error diagnostics including device type, iOS version, app version, and your account ID. Transfers covered by Standard Contractual Clauses. sentry.io/privacy
- Apple (US): push notifications are delivered through Apple's APNs infrastructure. Authentication, subscription billing, and app distribution are also handled by Apple. apple.com/legal/privacy
5) Security
We protect your data using TLS encryption in transit, row-level access controls so users can only access their own records, restricted access to production systems, and PII stripping before email content reaches our AI provider. No transmission or storage method is completely secure — contact privacy@get-fetch.app with any security concerns.
6) Data retention
We retain your personal data while your account is active. If you delete your account (Settings → Delete Account in the app), your profile, orders, returns, and chat data are permanently deleted. API usage logs may be retained in anonymised form for up to 12 months. Email deduplication records (message IDs only, no personal content) are automatically deleted after 35 days.
7) Your rights
Depending on where you live, you may have the right to access, correct, or delete your data; restrict or object to processing; and receive a portable copy of your data. You can delete your account directly via Settings → Delete Account, or contact privacy@get-fetch.app for any other request. We will respond within 30 days. UK users may complain to the ICO at ico.org.uk.
8) International transfers
fetch.app is operated from the UK. All third-party processors named above are based in the US. Transfers are made under UK International Data Transfer Agreements (IDTAs) or Standard Contractual Clauses as appropriate.
9) Changes to this policy
We may update this policy from time to time. We will notify you of significant changes via the app or email. The effective date at the top of this page reflects the most recent update.
10) Contact
LBC Consulting — privacy@get-fetch.app