Coffee Companion

Privacy

Last updated: 26 April 2026

Coffee Companion is a free iOS app for dialling in espresso. It doesn’t have accounts, doesn’t ask for an email, and doesn’t sell anything. Here’s exactly what data leaves your phone, where it goes, and how long it stays.

What stays on your device only

The coffees, grinders, brewers, recipes, and brew ratings you create live in a local SQLite database on your phone. We don’t sync them anywhere. They go away when you delete the app.

What we send to our server

We run a small server (the “proxy”) that talks to AI models on your behalf so the API keys aren’t shipped inside the app. When you ask for a recipe, scan a coffee bag, or paste a roaster URL, your phone sends the request to our proxy, which forwards it to the appropriate AI model and returns the response.

For each call, our proxy logs:

• A randomly-generated device ID (a UUID created the first time the app runs, used to apply per-device rate limits — not linked to any personal info).
• The endpoint hit and the timestamp.
• The text prompt or URL you submitted, and the response we got back.
• The number of AI tokens used (so we can keep an eye on costs).
• Your IP address (used for abuse protection only — not linked to identity).

What we do not log on the server:

• Coffee-bag photos. When you scan a bag, the photo is sent transiently to the AI and immediately discarded. We never write image bytes to disk, ever. The log records only that a photo was sent and how big it was.
• Account info. There are no accounts.
• Real names, emails, contacts, or location. Not collected.

We keep proxy logs for up to 90 days. We use them to reconcile costs, troubleshoot abuse, and improve service quality — for example, looking at extraction-confidence rates to make the AI prompts work better. Logs are deleted after 90 days.

Analytics

The app uses PostHog for anonymous analytics — which screens you see, how long onboarding takes, when errors occur. Events are tied to the same anonymous device ID described above, never to personal info.

Third parties (sub-processors)

• Anthropic (Claude AI) — recipe generation and photo extraction. Receives the prompts and bag photos. Privacy policy.
• Google (Gemini AI) — URL extraction. Receives the URL and page text. Privacy policy.
• PostHog — in-app analytics. Privacy policy.
• Cloudflare — hosts the proxy and this page. Privacy policy.

Children

Coffee Companion isn’t directed at children under 13 and we don’t knowingly collect data from them.

Sale of personal data

We don’t sell any data. Ever.

Your choices

• Delete the app. Removes everything stored on your device.
• Email us. Reach privacy@coffeecompanion.io with any question or request and we’ll respond.

Changes

If we change anything material we’ll update the date at the top and, where reasonable, surface a note in-app before the next time you open it.

Contact: privacy@coffeecompanion.io