Legal Document

Privacy Policy

We believe in full transparency about how your data is used. This policy explains exactly what we collect, why we collect it, and how we protect it.

📅Last updated: June 2026
🌍Applies worldwide
⏱ī¸5 min read
1

Information We Collect

We collect only what's necessary to provide the Pricly service. Here's exactly what we collect and why:

Data typeWhat it includesWhy we need it
Account infoName, email, password (hashed)Account creation and authentication
Scan dataProduct images, barcodesPrice identification via AI
LocationApproximate city/countryLocal pricing context — only during scans
Device infoDevice type, OS, FCM tokenPush notifications and app performance
Usage dataScan history, price submissionsTrust score calculation and app improvement
ℹī¸

We never collect your precise GPS coordinates. Location data is city-level only, and only collected when you actively use the scan feature.

2

How We Use Your Information

Your data is used exclusively to provide and improve the Pricly service:

  • To provide accurate, hyperlocal price comparisons across 180+ countries
  • To improve our AI pricing models and product identification accuracy
  • To send price drop alerts and notifications you've explicitly subscribed to
  • To calculate your Trust Score based on community contributions
  • To process subscription payments securely through Paddle
  • To respond to your support requests and account inquiries

We do not use your data for advertising, profiling, or any purpose beyond what is listed above.

3

Data Sharing

We do not sell your personal data. Ever. We share data only with the following trusted service providers, and only to the extent necessary to operate Pricly:

  • Anthropic (Claude AI): Product images are sent for identification and pricing. No personal data, name, email, or account information is included in these requests.
  • Firebase (Google): Used for authentication, push notifications, and device token management. Governed by Google's privacy policy.
  • Paddle: Handles subscription payment processing. Pricly never sees or stores your card details. Governed by Paddle's privacy policy.
  • Contabo (VPS hosting): Our server infrastructure. Data is stored on servers in Germany under strict EU data protection standards.
🔒

We may disclose data if required by law or to protect the safety of our users. We will notify you unless prohibited by law from doing so.

4

Data Retention

We retain your data only as long as necessary:

  • Active account: data is retained while your account is active and for up to 90 days after account deletion to allow recovery.
  • Deleted account: all personal data is permanently and irreversibly deleted within 30 days of account deletion.
  • Scan data: anonymised scan history may be retained to improve our pricing models, with all personally identifiable information removed.
  • Payment records: retained for 7 years for legal and tax compliance. Card details are never stored by Pricly.
5

Your Rights

You have full control over your data. You can exercise any of the following rights at any time:

  • Access: Request a complete copy of all data we hold about you.
  • Correction: Request correction of any inaccurate personal data.
  • Deletion: Delete your account and all associated data directly from the app, or by contacting us.
  • Portability: Request your data in a machine-readable format.
  • Opt-out: Unsubscribe from any marketing or notification emails at any time.
  • Objection: Object to any processing of your data that you believe is not justified.

To exercise any right, email privacy@pricly.app or use the account deletion page at pricly.app/delete-account. We will respond within 30 days.

6

Security

We take security seriously and implement industry-standard protections:

  • Encryption in transit: All data is transmitted over HTTPS/TLS. Cleartext HTTP is disabled at the server level.
  • Password security: Passwords are hashed using bcrypt. We never store or have access to your raw password.
  • Payment security: Payments are processed by Paddle (PCI DSS Level 1). Pricly never handles or stores card data.
  • Access controls: Internal access to user data is strictly limited and logged.
  • Biometric data: Biometric authentication is handled entirely on your device. We never receive or store biometric data.
⚠ī¸

If you believe your account has been compromised, contact us immediately at security@pricly.app.

7

Children's Privacy

Pricly is not directed at or intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@pricly.app and we will delete that information promptly.

8

Contact Us

For any privacy questions, data requests, or concerns, please contact us:

We respond to all privacy inquiries within 30 days. For urgent matters, please include "URGENT" in your email subject line.