Privacy policy
Only what we need for sharp recommendations.
Last updated: 4 June 2026
Short version: VODster collects only what's needed to give you sharp film picks. No ads, no data sales, no third-party trackers. You delete your account yourself, in 2 taps — see /usun-konto.
Data controller
Controller is Marcin Chomont IT, Polish tax ID PL9131521572, contact: support@vodster.app.
What we collect
Account
- Email + password (bcrypt hash) — for sign-in
- Your selected VOD platforms (Netflix, HBO Max etc.) — to filter picks
- Preferences (language, bedtime, notification settings)
- If you sign in with Google / Apple: your provider identifier (Google
subclaim or Apple user identifier) and email. We never see your Google or Apple password.
The minimum age to register is 16 (GDPR Art. 8). Younger users need a parent/guardian's consent — we don't currently support that flow, so users below 16 should not register.
In-app activity
- Chat history with the assistant (your mood prompts and AI replies)
- Lists you create
- Ratings and onboarding swipes — for personalization
- Taste profile (1536-dim embedding vector built from your ratings)
Technical data
- Anonymous error logs (GlitchTip — no email, no message content)
- Push notification token — so we can send you premiere alerts
- IP address in Cloudflare logs (max 7 days, IPv4 /24 anonymization)
In the app we do not collect: ad trackers, browser fingerprints, analytics cookies, Facebook Pixel, or anything comparable. (Google Analytics and PostHog run on the vodster.app marketing website only, and only with your consent — see the Cookies section.)
Why we collect
- Account + preferences — to remember who you are and what you like
- Chat history + lists — so you don't need to recreate yesterday's conversation
- Taste profile — so picks get sharper over time
- Error logs — to chase down crashes
Legal basis: GDPR Art. 6(1)(b) (contract performance) and Art. 6(1)(f) (legitimate interest — debugging, service security).
Profiling and automated decisions
VODster performs profiling (GDPR Art. 4(4)): from your ratings, onboarding swipes and chat history we build a preference vector (1536-dim embedding) used to match films. The algorithm compares this vector against title descriptions in our database.
This is not "solely automated decision-making" under GDPR Art. 22 — a film recommendation has no legal or similarly significant effect on you. The final choice is always yours.
You have a right to intervene: in the app under Profile → My taste you can clear the entire preference profile ("Clear history" button). After clearing, the vector is deleted from our database immediately and recommendations return to "cold start" mode.
Artificial intelligence (EU AI Act)
Some VODster features use AI models:
- Chat with assistant — replies generated by Llama 3.3 70B (Groq Cloud)
- Query classification and embeddings — OpenAI models (GPT-5-mini + text-embedding-3-large)
AI can be wrong — film suggestions are guidance, not certainty. Inside the app we label AI answers with source attribution ("VOD data: Movie of the Night via Streaming Availability API") in line with the EU AI Act.
Who we share with
- Supabase (EU region, Frankfurt) — database and auth hosting
- Groq Cloud — chat inference (Llama 3.3 70B), no retention
- OpenAI — query classification and embeddings; data not used for training
- Streaming Availability API (Movie of the Night) — we pull platform metadata, we do not send your data
- Cloudflare — CDN and DNS for vodster.app
- Expo Push Service — push notification delivery
- Google (Analytics) — traffic and campaign measurement on the vodster.app marketing website, only with your consent (cookies). Does not apply to the app.
- PostHog (product analytics, EU-hosted) — anonymous interaction measurement on the vodster.app marketing website, only with your consent. Does not apply to the app.
Beyond the above — nobody. We don't sell your data or use data brokers.
International transfers
Some providers (Groq Cloud, OpenAI, Cloudflare, Expo, Google) are located outside the EEA (mostly the US). Transfers happen under the Standard Contractual Clauses issued by the European Commission (GDPR Art. 46(2)(c)), embedded in Data Processing Agreements with each processor. Supabase we host in the EU region (Frankfurt) — your account data and chat history do not leave the EU at rest.
Your rights (GDPR)
At any time, you can request:
- Art. 15 — access: we email you a copy of your data within 14 days
- Art. 16 — rectification: edit in settings or email us
- Art. 17 — erasure: see /usun-konto
- Art. 20 — portability: JSON export of your data on request
- Art. 21 — objection: to processing
Requests: support@vodster.app. Reply within 14 days.
You may also file a complaint with the Polish Data Protection Authority ( uodo.gov.pl).
Retention
- Account data — until you delete the account
- Inactive accounts — after 24 months without sign-in we email a warning; if you don't sign in within the next 30 days, the account is auto-deleted
- 30-day grace — after you request deletion the account is marked but recoverable
- Backups — max 30 days after full deletion
- Error logs — max 90 days (anonymized)
- Cloudflare logs — max 7 days
Cookies
In the app and during sign-in: essential only — session cookie (JWT) and localStorage with your language choice. No tracking cookies, no analytics.
On the vodster.app marketing website: we use Google Analytics 4 and PostHog
(product analytics, EU-hosted) to measure traffic and campaign performance. It runs in
Consent Mode — on your first visit we show a banner, and without your
consent we run no analytics and store no analytics cookies. Only after you click
"Accept" does GA set cookies (e.g. _ga) and PostHog start measuring interactions.
You can withdraw consent by clearing the site data in your browser.
Policy changes
If we change the policy, we email you at least 14 days ahead. If you disagree — delete the account, no consequences.