Privacy Policy

This Privacy Policy describes how Jodhpur Labs collects, uses, and protects your information when you use WhoCharged.

Interpretation and Definitions

Definitions

• Application refers to WhoCharged, the software program provided by the Company.
• Company (referred to as "We", "Us" or "Our") refers to Jodhpur Labs.
• Country refers to Massachusetts, United States.
• Device means any device that can access the Service such as a cell phone or digital tablet.
• Personal Data is any information that relates to an identified or identifiable individual.
• Service refers to the Application.
• You means the individual accessing or using the Service.

Collecting and Using Your Personal Data

Types of Data Collected

Anonymous Lookups

When you look up a charge descriptor without an account, we log the descriptor string and whether it matched a known merchant. This data is not linked to you and is used solely to improve our merchant database — specifically to identify which unknown descriptors are most frequently searched so we can prioritize adding them.

Personal Data (Authenticated Users)

If you create an account, we collect your email address for sign-in and to notify you about contributions you make. Authenticated lookups are associated with your account to power your contribution history.

Contributions

If you submit a merchant identification or correction, we store the descriptor, your proposed merchant information, and your account ID (if signed in). Approved contributions become part of our shared merchant database.

Usage Data

We may collect basic usage data including device type, operating system version, and diagnostic information necessary to maintain the Service.

What We Do Not Collect

• Your actual bank account numbers or financial account credentials
• Transaction amounts or dates
• Location data
• Contacts
• Browsing history

Use of Your Personal Data

We use your data solely to provide and improve the Service, operate the community merchant database, and communicate with you about your contributions. We do not sell your data or use it for advertising purposes.

Service Providers

We use Supabase (supabase.com) as our backend infrastructure provider. Your data is stored in Supabase's infrastructure. Supabase's privacy policy is available at supabase.com/privacy.

We use Anthropic's Claude API to help identify unknown charge descriptors. Descriptor strings may be sent to Anthropic's API for processing. Anthropic's privacy policy is available at anthropic.com/privacy.

Retention of Your Personal Data

We retain anonymous lookup data indefinitely as part of our merchant database improvement process. If you have an account, we retain your personal data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us.

Security of Your Personal Data

We implement commercially reasonable security measures to protect your data. All data is transmitted over encrypted connections (HTTPS). Row-level security policies ensure users can only access their own data.

Children's Privacy

Our Service does not address anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under 16.

Your Rights

You have the right to access, correct, or delete your personal data at any time. You can manage your account within the app or by contacting us directly.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy: