Privacy Policy
Jaar is a neighborhood deals community. We built it to help neighbors share real prices — not to build ad profiles on you. This policy explains, in plain language, what we collect, how we use it, and the things we will never do with your data.
1.Information We Collect
When you sign up and use Jaar, we collect:
- Email address — to log you in and send essential account emails.
- Display name — shown on your drops, votes, and comments.
- Neighborhood and ZIP code — so you see deals from your block, not a random borough.
- Profile photo — optional, shown next to your posts.
- Password — stored encrypted (bcrypt). We never see your plaintext password.
- Content you create — drops, photos, votes, comments, and bookmarks.
- Automatically collected — device type, app version, and neighborhood-level location (ZIP or borough, never GPS coordinates outside of Jaar Pass redemption).
2.How We Use It
- Show you deals from your neighborhood.
- Display posts, votes, and comments tied to your account.
- Send account and community emails (password resets, digests, replies).
- Generate AI-powered highlights of what's hot on your block.
- Process payments for business subscriptions and creator payouts.
- Detect and prevent spam, abuse, and fake deals.
3.What We Do NOT Do
- We never sell your data.
- We never share your data with advertisers.
- There are no third-party ads on Jaar.
- We do not track your real-time GPS location.
- We do not build advertising profiles about you.
4.Third Parties We Use
We use a small set of trusted infrastructure providers to run Jaar:
- Supabase — database and authentication.
- Vercel — hosting and serverless API.
- Stripe — payments and payouts. Stripe handles card data directly; we do not store card numbers.
- Anthropic (Claude) — AI features like drop parsing, moderation, and highlights.
- Resend — transactional email delivery.
These providers are bound by their own privacy policies and by data-processing agreements with us. None of them use your Jaar data for advertising.
5.Data Storage & Security
- Your data is stored on Supabase servers in the United States.
- Passwords are hashed with bcrypt — we cannot read them.
- All traffic between the app and our servers is encrypted over HTTPS.
- Database access is restricted via row-level security (RLS) policies.
- API endpoints are rate-limited to prevent abuse.
6.Your Rights
- Access — see your profile, posts, and activity inside the app.
- Edit — change your display name, neighborhood, photo, and password in Settings.
- Delete — delete your account from Settings. Your drops and comments are removed or anonymized.
- Export — email hello@jaar.app and we'll send you a copy of your data.
7.Cookies
The Jaar app and web surface use only authentication cookies and session tokens to keep you logged in. We do not use tracking cookies, pixel tags, or cross-site analytics cookies.
8.Children
Jaar is for people 13 and older. We do not knowingly collect data from children under 13. If you believe a child has signed up, email hello@jaar.app and we will delete the account.
9.Business Accounts
If you sign up as a Jaar business, we collect additional information: business name, address, owner contact, tax identifier for payouts, and Stripe onboarding data. This information is used only to verify your business, process subscription payments, and route creator payouts.
10.Jaar Pass Location
Jaar Pass uses your GPS only at the moment you tap "Redeem" to confirm you are within 150 meters of the storefront. The coordinates are used for that one verification check and are not stored after redemption.
11.Changes to This Policy
If we make material changes, we'll notify you inside the app and by email to the address on your account. Continued use of Jaar after a change means you accept the new policy.
12.Contact
Questions about privacy? Email hello@jaar.app. A real person on the Jaar team will answer.