Skip to content
← Back to app

Privacy Policy

Last updated: March 2026

What we collect

WineJourney collects the minimum data needed to provide you with a personalized wine experience:

  • Your email address (for authentication)
  • Display name, country, birthday, and gender (optional, for personalization)
  • Wine taste preferences (from the onboarding quiz and wines you like)
  • Your cellar, wishlist, and consumed-wines data
  • Wine search queries and uploaded images (processed by OpenAI for identification)
  • Sommelier conversation history (your chats with Pier, the AI sommelier)
  • Push notification subscription data (endpoint and encryption keys, if you enable notifications)

How we use your data

  • To authenticate you and maintain your session
  • To generate personalized wine recommendations
  • To store your cellar, wishlist, and taste profile
  • Wine images and search queries are sent to OpenAI for processing and are subject to OpenAI's Privacy Policy

AI-generated content

Wine information displayed in the app — including ratings, tasting notes, taste profiles, serving suggestions, and food pairings — is generated by artificial intelligence (OpenAI). This data represents AI estimates and may not be fully accurate. Ratings shown are approximate estimates and are not sourced directly from any third-party rating provider. We encourage you to verify important details (such as allergens, alcohol content, or pricing) from the wine producer or retailer directly.

Wine images

Wine bottle images are sourced from publicly available web sources to help you identify wines. These images remain the property of their respective owners. If you are a rights holder and wish to have an image removed, please contact us and we will promptly remove it.

Data storage

Your data is stored securely on Supabase (PostgreSQL) with row-level security enabled. Each user can only access their own data.

Third-party services

  • Supabase — authentication and database
  • OpenAI — wine identification, recommendations, and AI-generated content
  • Vercel — hosting, analytics, and performance monitoring
  • Google — OAuth sign-in (optional)
  • Sentry — error tracking and diagnostics (no personal data is sent; PII is stripped before transmission)
  • Upstash — rate limiting infrastructure (processes IP-based rate limit keys only)
  • Serper — image search API used to find wine bottle images from publicly available web sources
  • Resend — transactional email delivery for admin notifications
  • Vivino — external links for wine verification (we link to Vivino search pages so you can verify wine details; we do not collect data from Vivino)
  • Wine-Searcher — external links to find wine prices and stores

Data retention

Your account data (profile, cellar, wishlist, taste profiles, and conversation history) is retained as long as your account is active. When you delete your account via the Settings page, all associated data is permanently removed from our systems. Temporary data such as PKCE authentication verifiers is automatically purged after 15 minutes. Wine match cache entries may persist for up to 30 days.

Data processing location

Your data is processed and stored using cloud infrastructure provided by Supabase (AWS), Vercel, and OpenAI. These services may process data in multiple regions, including the United States and the European Union. By using WineJourney, you consent to the transfer and processing of your data in these locations.

Your rights

Depending on your jurisdiction, you may have rights under data protection laws such as the GDPR (EU) or CCPA (California). These may include the right to access, correct, delete, or export your personal data, and the right to object to or restrict certain processing.

You can exercise many of these rights directly within the app:

  • Delete your account and all associated data from the Settings page
  • Export your data as a JSON file from Settings
  • Update your personal information from Settings

For any additional data-related requests, contact us at asaffz@winejourney.co.

Children's privacy

WineJourney is intended for users of legal drinking age in their jurisdiction. We do not knowingly collect personal data from anyone under the legal drinking age. If you believe we have collected data from a minor, please contact us and we will promptly delete it.

Cookies and analytics

WineJourney uses essential cookies for authentication and language preferences. We also use Vercel Analytics for anonymous usage statistics and Sentry for error tracking. You can manage your cookie preferences from the cookie consent banner shown on your first visit.

Content removal

If you believe any content in the app infringes your intellectual property rights, please contact us with details and we will investigate and remove the content promptly.

Contact

For privacy-related questions or content removal requests, please reach out via the app settings page or email us at asaffz@winejourney.co.