Apply
Legal

Privacy Policy

Effective date: April 2, 2026

See also: Terms of Service

1. Introduction

SipCoin ("we," "us," or "our") operates the SipCoin mobile application and website platform (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Service. Please read this policy carefully. If you disagree with its terms, please discontinue use of the Service.

For contractual terms governing use of the Service, see our Terms of Service.

2. Information We Collect

Information You Provide

  • Account registration data (name, email address, password)
  • Venue application data (business name, address, owner contact information)
  • Receipt images and transaction data submitted for reward processing
  • Communications you send us (support requests, feedback)

Information Collected Automatically

  • Device identifiers and mobile operating system information
  • Check-in and location data (only when you actively use check-in features)
  • App usage analytics and crash reports
  • IP addresses and browser type for web app sessions

3. How We Use Your Information

We use collected information to:

  • Create and manage your account and loyalty profile
  • Process receipt confirmations and award SipCoin points
  • Enable check-in functionality at partner venues
  • Send transactional email tied to your activity in the app (for example after a receipt is confirmed and points are added, when you redeem a reward, or when you reach a loyalty milestone)
  • Operate the venue staff dashboard and analytics
  • Detect and prevent fraud and unauthorized activity
  • Improve, personalize, and expand our Service
  • Comply with applicable legal obligations

4. Information Sharing and Disclosure

We do not sell your personal information. We may share information with:

  • Partner Venues: Venue staff can see your check-in activity and reward redemption history at their specific venue.
  • Service Providers: Third-party vendors (cloud hosting, OCR processing, email delivery, crash reporting) who process data on our behalf under confidentiality obligations.
  • Legal Requirements: When required by law, court order, or to protect the rights and safety of SipCoin, our users, or the public.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate notice to affected users.

Named Third-Party Services

The following third-party services are integrated into the SipCoin mobile app and web platform and may receive data as described:

  • Sentry (sentry.io): Crash reporting and error monitoring. When the app or website encounters an unhandled error, Sentry automatically collects diagnostic data including the error message, stack trace, device type, operating system version, and app version. Sentry does not receive your name, email address, or receipt images. Data is retained by Sentry according to their Privacy Policy.
  • Supabase (supabase.com): Database, authentication, and file storage. All user account data, receipt records, points balances, and uploaded receipt images are stored in our Supabase project hosted in the United States.
  • Google Document AI: Optical character recognition (OCR) for receipt images. Receipt photos are transmitted to Google Document AI for text extraction and immediately discarded after processing; they are not used for Google model training.
  • Stripe (stripe.com): Payment processing for venue subscriptions. Stripe handles payment card data directly; SipCoin does not store card numbers.
  • Resend (resend.com): Transactional email delivery (points earned, reward redeemed, account notifications).

5. Data Security

We implement industry-standard security measures including encryption in transit (TLS), row-level security on our database, hardware-backed token storage on mobile devices, and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data at any time by contacting us at privacy@sipcoin.app. Transaction records may be retained for up to 7 years for legal and tax compliance purposes.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Object to or restrict certain processing activities
  • Data portability (receive your data in a structured format)
  • Withdraw consent at any time (where processing is consent-based)

To exercise any of these rights, contact us at privacy@sipcoin.app.

8. Children's Privacy

The Service is not directed to individuals under the age of 21. We do not knowingly collect personal information from anyone under 21. If we become aware that we have collected data from a person under 21, we will take steps to delete that information promptly.

9. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated effective date and, where appropriate, by sending an email notification.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

SipCoin
Email: privacy@sipcoin.app