Privacy Policy

Last updated: March 28, 2026

1. Information We Collect

We collect the following information when you use Lapel:

  • Account information: Email address provided during registration
  • Usage data: Pages visited, searches performed, and features used
  • Watchlist & preferences: Entities you follow and notification preferences
  • Payment information: Processed securely by Stripe; we do not store card details

2. How We Use Your Information

  • To provide and improve the Service
  • To send account-related emails and notifications you have opted into
  • To personalize your experience (watchlist alerts, relevant changes)
  • To process payments and manage subscriptions
  • To analyze usage patterns and improve product features

3. Third-Party Services

We use the following third-party services to operate Lapel:

  • Supabase: Database and authentication (data stored in the US)
  • Stripe: Payment processing
  • SendGrid: Email delivery for account notifications
  • Anthropic: AI-powered content generation (no personal data is sent to AI models)
  • Vercel: Application hosting

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

4. Cookies

Lapel uses essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising pixels.

5. Data Retention

Account data is retained as long as your account is active. Analytics data is retained for up to 12 months. You may request deletion of your data at any time.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Opt out of non-essential emails at any time
  • Export your data in a portable format

California residents have additional rights under the CCPA, including the right to know what personal information is collected and the right to opt out of data sales (we do not sell data).

7. Security

We use industry-standard security measures including encrypted connections (HTTPS), secure authentication, and access controls. However, no method of transmission over the internet is 100% secure.

8. Children's Privacy

Lapel is not intended for use by individuals under 13 years of age. We do not knowingly collect information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notice.

10. Contact

For privacy questions, data requests, or account deletion, email hello@lapel.app.

See also: Terms of Service