nudgionudgioBack to home

Legal

Privacy Policy

Last updated: June 2026

Your saved content is personal. nudgio is built with care — and that care extends to how we handle your data. This policy explains what we collect, why, and the lines we don't cross. The numbered sections are the binding agreement. If anything here is unclear, write to us at hello@nudgio.one — a real person reads every message.

01

Who we are

nudgio is developed and maintained by Mar Benitez, an independent developer based in Spain. nudgio helps users save, organize, and act on content from the internet. Contact: hello@nudgio.one

02

Data we collect

We collect: (a) Email address and authentication profile data when you sign in with Google, Apple, or email magic link — this includes your name and profile photo as provided by your authentication provider; (b) URLs, titles, descriptions, and notes you save through the app, via the iOS Share Extension, or via the in-app chat agent; (c) Profile photo if you upload one manually; (d) Chat conversations with the in-app AI agent — your text messages and the agent's responses are stored in our database; (e) Voice transcriptions — when you dictate to the chat agent, audio is transcribed on-device by Apple Speech Recognition; the audio itself is never uploaded to any server, only the resulting text is stored; (f) Image attachments — when you send a screenshot or photo to the chat agent, the image is uploaded to our private storage and analyzed by our AI provider to extract items; images are auto-deleted after 30 days; (g) Anonymous usage analytics (app opens, feature usage, no personal identifiers) via PostHog, hosted in the EU; (h) Anonymous error reports (crash logs with no personal identifiers) via Sentry, hosted in the EU, to diagnose and fix bugs; (i) Collection share data — when you generate a share link for a collection, we store a unique token, the expiry date you set, and view count; when you save someone's shared collection to your library, we store a subscription record linking your account to that shared collection so it appears in your Following section. We do not collect your phone number or payment information. We automatically redact obvious personal identifiers (Social Security numbers, credit card numbers, phone numbers, email addresses) from chat content before it leaves our servers.

03

How we use your data

Your data is used to: provide and improve the nudgio service; power AI features (auto-tagging, smart titles, content summaries, natural-language search) by sending URLs, titles, and descriptions to our AI provider; generate anonymous, aggregated analytics to understand feature usage and improve the product; produce anonymized, aggregated trend reports and research (e.g. platform popularity, content category trends) — these reports contain no personal data and cannot identify individual users; send you product updates you opt into. We don't sell your personal data, and we don't share your personal data with third-party advertising networks. When you generate a collection share link, we use the resulting share token to allow you to share that collection privately with people you choose, and to let you revoke that access at any time.

04

Data storage and security

All data is stored in Supabase (PostgreSQL), hosted on servers located in the European Union (AWS eu-west-1). Profile photos are stored in Supabase Storage (EU). Data is encrypted at rest and in transit using TLS 1.3. Authentication tokens are stored securely on your device.

05

Third-party services

We use: (a) Supabase — database, authentication, file storage, and serverless functions (EU servers); chat conversations, messages, tool execution logs, and image attachments are also stored here; (b) Google OAuth — for "Sign in with Google" authentication (governed by Google's privacy policy); (c) Apple Sign In — for "Sign in with Apple" authentication (governed by Apple's privacy policy); (d) Anthropic Claude API — AI processing of your saved URLs, titles, descriptions, chat conversations, and image attachments to generate tags, summaries, smart titles, and to power the in-app chat agent (text generation, image analysis via Claude Vision, web search for content discovery); data is processed via our server-side functions and is not retained by Anthropic for model training; this involves a transfer of data to the United States under Standard Contractual Clauses; (e) Google Places API — when you share a Google Maps URL, we query Places API to retrieve structured place data (name, address, rating, photo); (f) PostHog — anonymous product analytics hosted in the EU; we track feature usage events (e.g. "save created", "item marked done") with no personal identifiers, emails, or content attached; (g) Resend — transactional email delivery for magic link authentication, from noreply@nudgio.one; (h) Sentry — anonymous error monitoring hosted in the EU; we collect crash reports and performance traces with no personal identifiers, emails, or IP addresses attached; chat content is server-side and client-side scrubbed of any user input before being sent to Sentry.

06

Legal basis for processing

Under GDPR Article 6, we process your data on the following bases: (a) Contract performance — providing the nudgio service you signed up for, including saving content, AI organization, and account management; (b) Legitimate interest — anonymous analytics to improve the product, anonymized aggregated research and trend reports, security monitoring, fraud prevention; (c) Consent — optional product update emails, optional push notifications.

07

Your rights

Under GDPR, you have the right to: access your data; correct inaccurate data; request deletion of your account and all associated data; data portability; object to processing based on legitimate interest; restrict processing; lodge a complaint with the Agencia Española de Protección de Datos (AEPD) at www.aepd.es. To exercise any of these rights, email hello@nudgio.one and we will respond within 30 days. You can delete your account directly from the app in Settings → Delete account.

08

AI and automated decisions

nudgio uses AI (Anthropic Claude) to: (a) automatically classify your saved content — generating tags, suggesting collections, determining intent (inspiration vs action), and creating smart titles; (b) power the in-app chat agent — accepting your text, voice transcriptions, and image attachments to create collections, search the web for content you describe by name, and bulk-add saves; (c) analyze images you send to extract items (restaurants, places, businesses) via Claude Vision. These are assistive features that you can modify or override at any time. AI-generated content may be inaccurate — verify critical information. No significant decisions affecting your rights are made solely by automated processing.

09

Collection sharing

When you generate a share link for a collection, the link grants read-only access to that collection's contents (title, saves, notes, tags, thumbnails) to anyone holding the link. Share links are private to the people you send them to — they are not listed in any public directory, not indexed by search engines, and not discoverable from within the app. Recipients can view the shared collection without a nudgio account. You can set an expiry (24 hours, 7 days, 30 days, or never) and revoke the link at any time from Settings → Shared links; revocation removes access for everyone instantly. If a recipient saves your shared collection to their library, a subscription record is stored linking their account to yours for that collection only — they can unsubscribe at any time, and revoking the link deletes all subscriptions immediately. Recipients never see your other collections, account details, or contact information beyond your display name.

10

Data retention

We retain your data for as long as your account is active. When you delete an individual save, it is removed from your library immediately. Chat conversations are retained until you delete them from the app. Image attachments sent to the chat agent are automatically deleted from our storage 30 days after they are processed. Tool execution logs (records of AI actions taken on your behalf) are retained for 90 days for cost analysis and abuse detection, then aggregated and anonymized. We may retain anonymized metadata (platform, content category, timestamps) for aggregated analytics before permanent deletion. If you delete your account (via Settings → Delete account), all your saves, collections, tags, chat history, message attachments, and profile data are permanently and irreversibly deleted immediately — including any retained metadata. Collection share links and subscription records are retained until you revoke the link, it expires, you delete the underlying collection, or the subscriber unsubscribes — whichever comes first. Your email address may be archived separately for a reasonable period to prevent abuse and fraud, then permanently deleted.

11

International data transfers

Your data is primarily stored and processed in the EU. When AI features are used, your saved URLs, titles, descriptions, chat messages, and image attachments are sent to Anthropic's Claude API, which processes data in the United States. This transfer is covered by Standard Contractual Clauses (SCCs) as approved by the European Commission. Google Places API queries (for Maps URL enrichment) are processed by Google in the United States, also under SCCs. PostHog analytics data remains in the EU. Voice audio is transcribed entirely on-device — no audio data is transferred internationally.

12

Children's privacy

nudgio is not directed at children under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware that a child under 16 has provided us with personal data, we will take steps to delete that information. If you believe a child under 16 is using nudgio, please contact us at hello@nudgio.one.

13

Cookies and tracking

The nudgio mobile app does not use browser cookies. The landing page (nudgio.one) uses one cookie only — NEXT_LOCALE — to remember your manual language choice on the legal pages. We do not use tracking cookies or third-party advertising cookies. In-app analytics (PostHog) use anonymous event tracking without cookies or device fingerprinting.

14

Changes to this policy

We may update this policy as the product evolves. For material changes, we'll notify you by email and in the app before they take effect. Continued use of nudgio after a material change becomes effective constitutes acceptance.

15

Contact

For any privacy-related questions: hello@nudgio.one. Data controller: Mar Benitez, Spain.

16

Content safety

To keep shared content appropriate, nudgio may process a saved item's metadata and thumbnail with an automated classifier. This runs in the background and is used only for safety, not for advertising or profiling.