1. Home
  2. Privacy

Privacy Policy

What Decoded collects, who receives it, how long we keep it, and how to make us delete it. Written to match what the code actually does.

Decoded stores the full text of every message you decode, plus the AI’s analysis of it, against your account. That is what makes your history work. The text is also sent to Anthropic to be analysed. We’d rather say that plainly than claim, as most apps in this category do, that we store nothing.

The short version

  • We keep the messages you paste in, and what the AI said about them. Don’t paste anything into Decoded that you wouldn’t want stored.
  • The message text goes to Anthropic (Claude) to be analysed. Nowhere else. We don’t sell it, and advertisers never see it.
  • There is no delete button in the app yet. Email hello@getdecoded.app and we will delete your account and every decode in it.

Decoded is an unreleased app for iOS and Android that reads one text message and tells you what it likely means. This policy covers the app and this site.

What we collect

  • Your email address and account identity. You sign in through Clerk. We hold your email and the account ID Clerk gives us.
  • The full text of every message you decode, and the AI’s analysis of it. The important one — see below.
  • Your relationship stage, if you set one: dating, together, or married. Optional, and it changes how the same words get read.
  • Your plan and usage count. Free or Premium, and how many decodes you’ve run today, so the daily limit works.
  • Product analytics and crash reports. Which screens you opened, that a decode started and finished, whether a result was shared. Metadata, not content.
  • Your email address if you join the waitlist on this site.

We don’t ask for your name, your contacts, or access to your messaging apps. Decoded can’t read your phone — you paste one message in, by hand.

The messages you decode

Every decode is written to our database against your account: the exact text you pasted, what she means, the emotional context, the tone flag, the suggested replies, the “don’t say this”.

This happens on every decode, free and Premium. It isn’t optional and there’s no incognito mode — switch it off and your history wouldn’t exist. On the free tier you can only see your last three decodes: that’s a display limit, not a retention limit. The older ones are still in the database, just not shown to you.

So: don’t paste anything into Decoded you wouldn’t want stored. If a message feels too private for that, trust the instinct — or just ask her what she meant, which is free and often better anyway.

What we send to Anthropic

Decoded runs on Claude, an AI model made by Anthropic. We didn’t train a model. What we wrote is the prompt and the tone scale.

To produce a decode we send Anthropic the text you pasted and, if you set one, your relationship stage. We don’t send your email, your name or your account ID. Anthropic processes that text for us and returns the analysis. Under its commercial terms, data sent through the API isn’t used to train its models by default — read Anthropic’s privacy policy yourself.

Everyone who receives your data

The complete list. Naming them is unusual in this category, which is why we’re doing it.

WhoWhat they get
ConvexOur database. Holds everything: email, plan, relationship stage, and the full text and analysis of every decode.
AnthropicThe text of the message you paste, to analyse it, plus your relationship stage if you set one. We don’t attach your email, your name or your account ID — but the message itself may contain names or details, so mind what you paste.
ClerkSign-in. Your email and identity.
RevenueCatSubscription status. Payment is handled by Apple or Google — we never see your card.
PostHogBehavioural analytics: event names, your user ID, metadata such as the length of a message. Never the message content.
SentryCrash reports, so we can fix what broke.
KitWaitlist emails from this site. Nothing else.
CloudflareHosts this site.

Each is a processor working for us under contract. None may use your data for their own purposes.

How long we keep it

Decodes are kept until you ask us to delete them. There is no automatic expiry — we’d rather say so than invent a tidy-sounding number we don’t enforce. Account details are kept while you have an account; waitlist emails until you unsubscribe.

Deleting your account and your decodes

There is currently no delete button in the app. We’re building one. Until it ships, deletion is a manual process — and a real one: email hello@getdecoded.app from the address you signed up with, and we’ll delete your account and every decode attached to it within 30 days, then confirm when it’s done.

We’d rather admit that than write “delete anytime” here and quietly not have built it.

What we don’t do

  • We don’t sell your data. Not to anyone, at any price.
  • We don’t show your messages to advertisers. There are no ads in Decoded, and we don’t share your decodes with anyone outside the processors listed above.
  • We don’t read your decodes for entertainment. Access is limited to the people who need it to run the service.

What we won’t claim

We are not SOC 2 certified — we haven’t been through that audit and we won’t put a badge on a page implying we have. We don’t claim “military-grade” or “256-bit” encryption. Your data travels over standard HTTPS and sits in Convex’s infrastructure with the protections Convex provides. That’s the boring truth, and it’s what most apps mean when they say something grander.

Your rights

In the UK, EU and California these are legal rights (UK GDPR, GDPR, CCPA). Everywhere else we honour them anyway.

  • Access — a copy of everything we hold about you.
  • Correction — fix anything that’s wrong.
  • Deletion — your account and decodes erased.
  • Export — your data in a portable, machine-readable file.
  • Objection — tell us to stop processing your data for analytics.

To use any of them, email hello@getdecoded.app. A human reads that inbox and replies within 30 days. No charge, no explanation required.

Lawful bases: account data and decodes are processed to perform the contract with you — you asked for a decode, and storing it is how history works. Analytics and crash data sit under legitimate interests. Waitlist emails run on consent, withdrawable any time.

Age

Decoded is for adults. You must be 18 or over to use it. We don’t knowingly collect data from anyone under 18; if we learn we have, we delete it.

This website

The pages you’re reading — the guides, the FAQ, this policy — run no trackers, no ad pixels and no third-party fonts. Reading them sends your data to nobody but Cloudflare, our host. There’s no cookie banner because there are no cookies to consent to.

The exception is the waitlist form. Type your email in and it goes to Kit, and we use it for one thing: telling you when Decoded launches. No drip sequence, no resale, unsubscribe in one click. Get early access if you want to know the day it’s live.

Changes to this policy, and how to reach us

When we change what we do with your data, we’ll change this page and update the date at the top. If the change is significant — a new processor, a new category of data — we’ll email account holders rather than edit quietly.

Questions, requests or complaints: hello@getdecoded.app. In the UK or EU you can also complain to your data protection authority — but try us first, because we’ll fix it.

This is a plain-English privacy policy, written to be read rather than survived. It is not legal advice. If anything here is unclear, or contradicts what the app does, tell us and we’ll fix the wording.

Keep reading