Privacy Policy

Last Updated: February 24, 2026

Filtered ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our AI-powered communication filtering service.

Information We Collect

We collect the following types of information to provide and improve our service:

• Account Information: Email address, name, and authentication credentials when you create an account
• Messages: Messages sent through the Filtered app are encrypted and stored to enable our filtering service
• Notification Preferences: Your per-chat notification settings including schedule type (immediate, daily, every other day, weekly, or off), preferred notification time, and day of week for weekly notifications. We also track when notifications were last sent to properly space every-other-day notifications.
• Usage Data: App usage patterns, feature interactions, and preferences to improve our service
• Device Information: Device type, operating system, and push notification tokens for delivering alerts
• Payment Information: Billing details processed securely through our payment provider (we do not store full credit card numbers)

How We Use Your Information

We use the information we collect to:

• Provide AI-powered message filtering and content analysis
• Deliver messages between you and your contact through our app
• Send push notifications about important or urgent messages
• Generate response suggestions to help you communicate effectively
• Improve our filtering algorithms and overall service quality
• Process subscription payments and manage your account
• Communicate with you about service updates and support

Data Security

We take data security seriously and implement multiple layers of protection:

• Encryption at Rest: All messages are encrypted using AES-256 encryption
• Encryption in Transit: All data transmitted uses TLS 1.3 encryption
• Access Controls: Strict access limitations to user data
• Secure Infrastructure: Hosted on SOC 2 compliant cloud infrastructure

Data Sharing

We do not sell your personal information. We may share data with:

• AI Processing (Anthropic): Message content is processed by Claude AI (Anthropic) for filtering and analysis. Anthropic does not retain your message content for training purposes when accessed via their API.
• SMS Provider (Twilio): Phone numbers and message content for SMS delivery
• Authentication (Supabase): Account credentials and authentication tokens
• Payment Processing (Stripe): Billing information (we do not store credit card numbers)
• Cloud Hosting (Fly.io): All processed data for service delivery
• Legal Requirements: When required by law, court order, or to protect the rights, safety, and security of our users and service

Data Retention

We retain different types of data for different periods:

• Message Content: 2 years from receipt (encrypted)
• AI Analysis Results: 2 years from generation
• Account Information: Duration of account + 90 days
• Payment Records: 7 years (tax/legal compliance)
• Usage Logs: 90 days
• Notification Preferences: Duration of account (deleted with account closure)

You may request earlier deletion of your data by contacting us. Account data is deleted within 30 days of account closure.

Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (subject to legal retention requirements)
• Export: Receive your data in a portable format
• Opt-out: Unsubscribe from marketing communications at any time

Your California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

• Right to Know: Request disclosure of personal information collected, sources, purposes, and third parties with whom we share it
• Right to Delete: Request deletion of your personal information (subject to exceptions)
• Right to Correct: Request correction of inaccurate personal information
• Right to Opt-Out of Sale/Sharing: Our website uses Google Analytics, which may constitute "sharing" under CPRA. You can opt out via our Do Not Sell or Share My Personal Information page or by enabling Global Privacy Control (GPC) in your browser. We do not sell personal information for monetary consideration.
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

Categories of Personal Information Collected: Identifiers (name, email, phone), commercial information (subscription history), internet activity (app usage), and sensitive personal information (message content).

To exercise your California privacy rights, contact us at [email protected] or use the "Delete My Data" option in app Settings. We will respond within 45 days.

Global Privacy Control (GPC): We honor the Global Privacy Control signal. When your browser sends a GPC signal, we will not load analytics tracking that could constitute sharing of your personal information under CPRA.

Additional State Privacy Rights

Residents of Virginia, Colorado, Connecticut, and other states with comprehensive privacy laws have similar rights to access, correct, delete, and port their data. Contact us at [email protected] to exercise your rights.

Children's Privacy

Filtered is designed for adults. We do not knowingly collect information from children under 18. If you believe a child has provided us with personal information, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the app. Continued use of Filtered after changes constitutes acceptance of the updated policy.

Contact Us

Filtered is a DBA of Alec Kleinman, a sole proprietor.

For privacy questions, data requests, or concerns, contact us at:

Email: [email protected]

Address: 740 E 2320 N, Provo, UT 84604