Privacy
Last updated: April 22, 2026
How Quippy collects, uses, and protects your data.
Quippy is an AI-powered writer for LinkedIn posts. This Privacy Policy explains what information we collect when you use the Quippy mobile app, why we collect it, who we share it with, and the choices you have. By using Quippy, you agree to the practices described here. If you do not agree, please don’t use the app.
Account information When you sign in with Apple or Google, we receive and store: A provider user ID (so we can recognize you on subsequent sign-ins) Your email address, if you choose to share it Your display name, if your provider sends one We do not receive or store your provider password. Content you create The prompts you enter (topic, tone, etc.) Post variations generated for you Your brand voice settings: industry, preferred tone, hashtag preferences, and any custom tone notes Usage data Your IP address, used at the moment of a request to enforce rate limits and prevent abuse. We do not persist your IP in your profile. Basic device information (operating system, app version) for diagnostics. Subscription state If you subscribe to Quippy Pro, our payments partner RevenueCat tracks your entitlement (active / inactive). We send RevenueCat your Quippy user ID so it can attribute your purchase. We do not receive your full payment card details — those are handled by Apple directly.
To deliver the service: generate LinkedIn posts in response to your prompts and remember your brand voice between sessions. To verify subscriptions: confirm your Quippy Pro entitlement so Pro features unlock. To prevent abuse: rate-limit by IP, detect automated misuse, and protect the service. To support you: respond to your questions when you contact us. To improve Quippy: understand which features are used and where the app fails. We do not sell your data and we do not use your prompts or generated posts to train any model.
We rely on a small set of trusted vendors to operate Quippy. Each vendor processes your data only as needed to provide their service. Anthropic (post generation) When you tap “Generate,” we send your prompt and any attached photo to Anthropic’s Claude API. Per Anthropic’s commercial terms for API customers, Anthropic does not use the inputs or outputs of API requests to train its models. We have a data processing agreement with Anthropic. Learn more at anthropic.com/privacy. RevenueCat (subscriptions) We use RevenueCat to manage subscription state and entitlements. We send RevenueCat your Quippy user ID and receive back the status of your subscription. See revenuecat.com/privacy. Apple Sign In and Google Sign In If you sign in with Apple or Google, those providers handle the authentication flow and return a token to us. Their privacy policies apply to that exchange: Apple Privacy Policy Google Privacy Policy Apple App Store (billing) All purchases are processed by the App Store. Quippy never sees or stores your payment card.
Your account data, brand voice settings, and generation history are stored in a managed PostgreSQL database hosted in the United States (Railway, Virginia region). Connections to the database are encrypted in transit. On your device, authentication tokens are stored in Apple Keychain via Expo SecureStore.
We keep your account data and generation history for as long as your account exists. When you delete your account from inside the app (Profile → Delete account), we cascade-delete your account, brand voice, generations, and subscription mapping from our database. Some operational logs (request logs, security events) may be retained for up to 30 days for abuse prevention and incident investigation, after which they are automatically purged.
Depending on where you live (e.g. the European Economic Area, the United Kingdom, or California), you may have the following rights regarding your personal data: Access: request a copy of the personal data we hold about you. Rectification: ask us to correct inaccurate data. Deletion: ask us to delete your data (the “right to be forgotten”). Portability: receive your data in a structured, machine-readable format. Objection / restriction: object to certain processing or ask us to restrict it. Withdraw consent at any time, where processing is based on consent. Lodge a complaint with your local data protection authority.
Delete your account: open the app, go to Profile → Delete account. This is immediate and irreversible. Export your data: email hello@getquippy.app from the email tied to your account. We will respond within 30 days. Any other request: email hello@getquippy.app.
All traffic between the app and our servers uses TLS (HTTPS). Authentication tokens are stored in the Apple Keychain (secure enclave). Refresh tokens are rotated on use; access tokens are short-lived. Server-side, sensitive identifiers are hashed before storage where practical. Access to production data is restricted to a minimum set of authorized engineers. No system is perfectly secure. If you believe your account has been compromised, contact us immediately.
Quippy is not intended for children under 13 (or under 16 in the European Economic Area, the United Kingdom, and other jurisdictions that set 16 as the digital age of consent). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please email hello@getquippy.app and we will delete it.
We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent revision. If we make material changes, we will notify you through an in-app notification or by email before the changes take effect. Your continued use of Quippy after the effective date means you accept the updated policy.
Questions, requests, or complaints about this policy or our data practices? Email hello@getquippy.app.
