Privacy.
What we collect
Account data.When you sign in, we receive your email from Supabase Auth. If you sign in with Google we also receive the name and avatar Google sends us. That’s it — no phone number, no address, no birthday unless you enter it on your profile.
Your wardrobe and journal. Every perfume you add, every wear you log, every private note you write is stored in our database and attached to your account. Entries are private by default; you opt-in to making a wear public.
Submitted perfumes.If you add a perfume that’s not in our catalog, we keep the metadata you entered (name, house, year, notes) and the fact that you were the submitter.
Request logs. Like any website, our servers receive IP addresses, user-agent strings, and request paths. We use them for debugging and to detect abuse. We rotate them out of retention within 30 days.
What we don't collect
No third-party ad networks. No cross-site tracking pixels. No fingerprinting. No location beyond the coarse inference a server IP gives you. No sale or rental of your data —ever.
We run an anonymous product-analytics tool (PostHog) to see which pages people use. It’s configured without session replay, without autocapture of form values, and respects Do Not Track.
Who processes your data
We use a small number of named service providers, each of whom only sees the data they need to do their job. None of them use your data to train public models:
- Supabase— database, authentication, file storage. Hosts everything in the EU/US regions you’d expect.
- Vercel — serves this website and its images. Sees request logs.
- Anthropic — Claude writes the editorial descriptions you see on perfume pages. It never sees your wardrobe, journal, or account.
- Voyage AI — generates the embeddings that power semantic search and scent-twin matching. Only receives public perfume text, never user content.
- Resend — sends transactional email (magic links, weekly digests if you opt in).
- PostHog + Sentry — product analytics + error reporting. Both configured to strip personal fields.
- Inngest — runs the background enrichment DAG. Sees perfume IDs and editorial text, not user data.
Your rights
You can export your full wardrobe + journal as CSV or JSON from your settings. You can delete individual entries, or your entire account (which wipes wardrobe, journal, submissions, and profile). You can correct anything you wrote.
If you’re in the EU or UK, GDPR gives you these rights by law, plus the right to portability and the right to lodge a complaint with a supervisory authority. If you’re in California, CCPA gives you the right to know, delete, and opt out of any “sale” (which we don’t do anyway).
Email privacy@sillage.art for any request; we respond within 7 days.
Cookies
One first-party cookie keeps you signed in (Supabase Auth session). One first-party cookie holds the Inngest dev-key in local development. One first-party cookie stores your PostHog anonymous ID if analytics are enabled. That’s all — no banner needed because no advertising cookies are set.
Children
Sillage is for users 13 and up. If you’re under 13, please don’t sign up. We delete accounts we discover belong to children without notice.
Changes
If we change anything material here we’ll email you before the change takes effect. The latest version always lives at this URL with the updated date at the top.