last updated: june 2026
privacy policy
passport is built by people who hate dark patterns. we don't sell your data, we don't show ads, and we don't train ai on your library. here's exactly what we collect and what we do with it.
1. what we collect
- account info — your email address, display name, username, and avatar (either from your oauth provider or uploaded by you).
- authentication — oauth tokens from google, discord, or apple. we never see or store your password.
- media library data — what you add to your library, ratings, reviews, favorites, lists, and notes.
- usage data — basic analytics like page views and which features get used. no cross-site tracking.
- imports — when you connect an account or upload a file (steam, letterboxd, apple music, anilist, and others), the data is processed and stored as library entries on your account.
2. how we use it
- to run the service — your library, profile, achievements, and compatibility scores.
- to improve passport based on what people actually use.
- we do not sell your data.
- we do not show ads.
- we do not use your data for ai training.
3. where data is stored
- supabase — our postgresql database and authentication infrastructure (us-west, oregon, usa).
- hetzner — application hosting (hillsboro, oregon, usa).
- cloudflare — dns and cdn (global edge network).
passport is operated from the united states and your data is stored and processed there. if you're in the eu, uk, or elsewhere, you consent to that transfer; we rely on standard contractual clauses and equivalent safeguards where they apply.
4. third-party services
- authentication — google, discord, apple (oauth).
- media data — igdb/twitch, tmdb, watchmode, anilist, myanimelist, musicbrainz, the cover art archive, apple music, the itunes search api, wikidata, google books, openlibrary, and hardcover.
- hosting — hetzner, supabase, cloudflare.
- email — resend, for transactional mail and the weekly digest.
- analytics — posthog, for privacy-friendly product analytics. no cross-site tracking.
- ai processing— when you import from a screenshot, we send that image to anthropic (claude) to read the titles in it, and we use anthropic to screen profile text and images for abuse. these are one-off processing calls — your data isn't used to train any ai model, theirs included.
- bot protection — we use cloudflare turnstile on the sign-up and sign-in forms to block automated abuse. turnstile runs invisibly in your browser and may collect technical data (ip, user agent, basic browser signals) per the cloudflare turnstile privacy addendum.
5. data sharing
we don't sell your data and we don't share it with anyone for advertising or marketing. the providers above run the infrastructure — they process data on our behalf, not for their own use.
6. data retention
we keep your data while your account is active. when you delete your account, your passport, library, and associated data are removed from our database, and any copies in our encrypted backups cycle out within 7 days. we may keep minimal records longer where security or law requires it.
7. security
we protect your data with encryption in transit and at rest, strict access controls, and standard security headers. no system is perfectly secure, but we treat your data as if it were our own. if we ever discover a breach that affects you, we'll notify you and the relevant authorities as required by law.
8. your rights
- you can request a full export of your data — email us and we'll send it over.
- you can delete your account and all associated data at any time from your settings.
- you can email us at support@passportdex.com for anything privacy-related.
depending on where you live — for example the eu/uk under gdpr, or california under ccpa — you have the right to access the data we hold about you, get a copy of it, correct it, delete it, and object to or restrict certain processing. we don't sell or share your data, so there's nothing to opt out of there. to exercise any of these, email support@passportdex.com and we'll respond within 30 days. you also have the right to complain to your local data protection authority.
9. cookies
supabase auth uses cookies to keep you signed in, and posthog sets a first-party analytics cookie to count your visits across page loads. we don't set third-party or cross-site tracking cookies.
10. children
passport is not intended for users under 13. if you believe a child has created an account, email us and we'll remove it.
11. changes
we may update this policy from time to time. the “last updated” date at the top of this page reflects the most recent change.
12. contact
questions, concerns, or data requests? email support@passportdex.com.