know.
Last updated · May 16, 2026

Privacy Policy

This policy explains what personal data knowfeed (“knowfeed,” “we,” “us”) collects when you use our website and mobile applications (collectively, the “Service”), how we use it, who we share it with, your choices, and how to contact us. It is intended to satisfy the disclosures required by the Apple App Store, GDPR, and CCPA. Effective May 16, 2026.

1. Who we are

knowfeed is the data controller responsible for the personal information processed through the Service. You can reach our privacy team at privacy@knowfeed.app.

2. Data we collect

We collect only what we need to operate the Service. The categories below correspond to those Apple asks us to declare on our App Store listing.

2.1 Account & identifiers

  • Email address— required to create an account and to send security and service notifications. If you sign in with Apple, we receive the email address (or Apple’s private relay address) and the stable Sign in with Apple user identifier associated with your Apple ID. We do not receive your full Apple ID password or any other Apple credentials.
  • Display name — optional; defaults to a generated handle.
  • Anonymous user ID — generated on first launch so that your reading history, saves, and streak persist on the device even before you sign in.

2.2 User content

  • Reactions, saves, shares, and comments you submit on facts.
  • Topic preferences and any feedback you send to the editorial team.

2.3 Usage data

  • Which facts you opened, how long you spent on each, and your streak progress — used to rank your feed, award badges, and measure editorial performance in aggregate.
  • Diagnostic data: crash reports, performance metrics, and basic device information (OS version, app version, device model, language). We do not collect precise location.

2.4 Push notification tokens

  • If you grant notification permission, we store the device push token issued by Apple Push Notification service (APNs) or Firebase Cloud Messaging (FCM) so we can send the notifications you signed up for (streak reminders, breaking facts you opted into). You can revoke notification permission at any time in your device settings; we delete the token within seven days of revocation.

2.5 What we do not collect

  • Contacts, photos, microphone, camera, or health data.
  • Precise or coarse location data.
  • Information from third-party advertising networks. We do not run ads and do not include third-party advertising SDKs.

3. Sign in with Apple

When you choose Sign in with Apple, your device sends Apple a request to authenticate. Apple returns to us, with your consent, a stable identifier for your Apple ID and the email address you elected to share (either your real address or Apple’s private relay address). knowfeed uses Supabase Auth to verify the Apple identity token and to create or sign you into your knowfeed account. We do not receive or store your Apple password. You can revoke knowfeed’s access at any time in Settings → Apple ID → Sign in with Apple, after which we treat your account as deleted under section 8.

4. How we use data

  • Provide the Service — authenticate you, sync saves and streak across your devices, deliver the daily brief.
  • Improve the Service — measure which facts perform well in aggregate so editors can pick better ones; debug crashes.
  • Communicate with you — send transactional emails (account, security, the daily brief if you subscribed) and respond to your support requests. We send marketing email only with your explicit opt-in.
  • Protect the Service — detect abuse, spam, and policy violations.
  • Comply with law — respond to valid legal process and enforce our Terms.

5. Legal bases (GDPR)

  • Contract — to provide the Service you signed up for (account, sync, daily brief).
  • Legitimate interests — to keep the Service safe and improve it; balanced against your rights and freedoms.
  • Consent — push notifications, marketing email, and any optional analytics.
  • Legal obligation — when required by applicable law.

6. Who we share data with

We do not sell personal data and we do not share it with advertising networks. We share it only with the following categories of service providers, each under a data-processing agreement:

  • Supabase (database, authentication, file storage) — hosts your account row, content, and uploads.
  • Apple (APNs) and Google (FCM) — deliver push notifications.
  • Vercel — hosts and serves the web application.
  • Email delivery provider — sends transactional email such as login links and account notices.
  • Editorial partners — receive only aggregate, de-identified performance metrics for facts they authored. They never receive your identity.
  • Acquirers and successors — if knowfeed is involved in a merger, acquisition, or asset sale, personal data may transfer under this policy or a successor policy you are notified about.
  • Law enforcement — only in response to valid legal process, and only the minimum data required.

7. International transfers

knowfeed’s servers are operated in the European Union and the United States. When personal data is transferred from the EEA, UK, or Switzerland to a country without an adequacy decision, we rely on the European Commission’s Standard Contractual Clauses and equivalent UK/Swiss safeguards.

8. Data retention and deletion

We retain your account data while your account is active. You can delete your account at any time from Settings → Account → Delete account inside the app, or by emailing privacy@knowfeed.app. On deletion we remove your account row, your saves, comments, push tokens, and any other content tied to your identity within seven (7) days. Backups containing residual data are overwritten within thirty (30) days. We may retain a minimal audit record for legal, accounting, or anti-abuse purposes for up to twenty-four (24) months.

9. Your rights

Depending on where you live, you have the right to access, correct, delete, and export your personal data; to object to or restrict certain processing; to withdraw consent; and to lodge a complaint with your local data-protection authority. California residents additionally have the rights described in the CCPA/CPRA, including the right to know, the right to delete, the right to correct, and the right to opt out of any “sale” or “sharing” of personal information — we do not sell or share personal information as those terms are defined. To exercise any right, email privacy@knowfeed.app. We respond within thirty (30) days.

10. Security

We use TLS in transit and encryption at rest, scoped row-level security in our database, principle-of-least-privilege access controls, and continuous monitoring. No system is perfectly secure; if we discover a breach of your personal data, we will notify you and the relevant authorities as required by law.

11. Children

knowfeed is not directed to children under thirteen (13), or under sixteen (16) in the EEA. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, email privacy@knowfeed.app and we will delete it.

12. Tracking and analytics

We do not track you across other companies’ apps or websites, and we do not use the iOS IDFA or any equivalent advertising identifier. Because we do not track, the iOS App Tracking Transparency prompt is not shown.

13. Changes to this policy

If we make material changes, we will notify you in the app or by email at least seven (7) days before the change takes effect, and update the “Last updated” date at the top of this page. Continued use after the effective date constitutes acceptance.

14. Contact

Email privacy@knowfeed.app with any privacy question, deletion request, or complaint.

← Back to landing