Privacy Policy

Effective February 21, 2026

Tannin ("we," "our," or "the app") is a wine discovery app that lets you scan wine labels, chat with an AI sommelier, and share bottles with friends. This policy explains what data we collect, why, and how we handle it.

Data We Collect

Account information. When you create an account, we collect your email address and a display name. If you sign in with Apple, we receive the identifier Apple provides (which may be a private relay email).

Scan images. When you scan a wine label, the photo is uploaded to our servers for identification. Images are stored in cloud storage (Cloudflare R2) and associated with your account.

Chat messages. If you subscribe to Tannin Annual, your conversations with the AI sommelier are stored to maintain conversation history. Messages are associated with your account and the wine being discussed.

Device token. If you enable push notifications, we store a device token to deliver notifications when someone sends you a bottle. This token is not used for advertising or tracking.

Purchase information. If you subscribe, Apple handles payment processing. We receive your subscription status (active, expired, or revoked) from Apple to manage your access. We do not receive or store your payment method or billing details.

Usage data. We track basic usage counts (e.g., AI messages sent per month) to enforce plan limits. We do not use analytics SDKs or third-party trackers.

How We Use Your Data

Wine identification: Scan images are sent to Google Gemini (AI) to identify the wine and retrieve tasting information.
AI chat: Chat messages are sent to Mistral (via OpenRouter) to generate sommelier responses. Messages include wine context but not your email or personal details.
Push notifications: Device tokens are used solely to notify you when someone sends you a bottle in-app.
Account management: Email and display name are used for login, search (so friends can find you by name), and bottle send attribution.

Third-Party Services

We use the following services to operate Tannin:

Service	Purpose	Data Shared
Google Gemini	Wine label identification	Scan images, wine text
OpenRouter (Mistral)	AI sommelier chat	Chat messages, wine context
Apple	Auth, subscriptions, push	Apple ID token, subscription status, device token
Cloudflare R2	Image & backup storage	Scan images, encrypted backups
MongoDB (Railway)	Database	All account and app data

We do not sell, rent, or share your personal data with advertisers or data brokers.

Data Retention

Account data is retained as long as your account exists.
Scan images and chat messages are retained as long as your account exists.
Database backups are stored in encrypted cloud storage and automatically deleted after 30 days.
Device tokens are deleted when you unregister from push notifications, log out, or if Apple reports the token as invalid.

Data Security

Data is transmitted over HTTPS. Authentication tokens are stored in the iOS Keychain. Database backups are stored in access-controlled cloud storage with automatic 30-day expiration.

Your Choices

Delete your account: Contact us at the email below to request account deletion. We will delete your account data, scan history, and chat messages.
Push notifications: You can disable push notifications at any time in iOS Settings.
Camera access: The app only accesses your camera when you initiate a scan. You can revoke camera permission in iOS Settings.

Children

Tannin is not intended for use by anyone under the legal drinking age in their jurisdiction. We do not knowingly collect data from minors.

Changes

We may update this policy from time to time. If we make material changes, we will notify you through the app or by email.

Contact

If you have questions about this policy or want to request data deletion, contact us at [email protected].