Privacy Policy

This Privacy Policy describes how metItem ("we," "us," or "our") collects, uses, and protects your personal information when you use the metItem web app at metitem.com and our mobile apps for iOS and Android (together, the "Service").

We respect your privacy. We don't sell your personal information, and we collect only what we need to provide and improve the Service.

Account information

When you create an account, we collect your name, email address, and authentication identifiers (handled by Amazon Cognito). For paid plans, our payment processor (Stripe for web, Apple App Store / Google Play via RevenueCat for mobile) collects billing details directly; we receive only the subscription status and a reference identifier.

Content you provide

When you use the Service, you create inventories, folders, and items, and may upload images, descriptions, codes, and other content. We store this so we can show it back to you and your teammates.

Usage information

We collect basic usage information (such as pages visited, features used, and approximate device type) via analytics tools like PostHog to understand how the Service is used and to fix bugs. See our Cookie Policy for more on tracking.

Logs

Our servers log information such as IP addresses, request paths, and timestamps, which we use to operate, secure, and debug the Service.

We use your information to:

• provide, maintain, and improve the Service;
• authenticate you and protect your account;
• process payments and manage subscriptions;
• send service-related emails (such as low-stock alerts you configure, welcome emails, and important account notices);
• respond to your support requests and communicate with you about the Service;
• detect, prevent, and address abuse and security issues;
• comply with legal obligations.

We do not sell your personal information, and we do not use Your Content (inventories, items, images) to train machine-learning models.

We rely on a small number of trusted third parties to provide the Service. Each handles a specific function and has its own privacy policy:

• Amazon Web Services — hosting, database, file storage, and authentication (Cognito, RDS, S3, EC2).
• Stripe — payment processing for web subscriptions.
• RevenueCat — subscription management for the mobile apps (alongside the Apple App Store and Google Play).
• Resend — transactional email delivery.
• PostHog — product analytics.
• Arcjet — bot and abuse protection on the API.
• Slack, Microsoft Teams, QuickBooks — only when you choose to connect them as integrations.

We share your personal information only:

• with the third-party services listed above;
• with your teammates inside an inventory you choose to share;
• if required by law (for example, in response to a valid legal request);
• in connection with a merger, acquisition, or sale of assets, with appropriate protections.

Your data is stored on Amazon Web Services infrastructure in the United States. We retain your data for as long as your account is active. If you delete your account or close your subscription, we will retain data for a limited period to handle legal, accounting, and dispute-resolution needs, and then delete or anonymize it.

Depending on where you live, you may have rights under laws such as the GDPR (EU/UK) or PIPEDA (Canada), including the right to:

• access the personal information we hold about you;
• request correction or deletion;
• request an export of your data (you can export inventories as CSV from the app at any time);
• object to or restrict certain processing;
• withdraw consent where processing is based on consent.

To exercise these rights, email privacy@metitem.com. We will respond within a reasonable timeframe.

If you are outside the United States, your information will be transferred to and processed in the United States, which may have different data-protection laws than your country. We rely on appropriate safeguards (such as the standard contractual clauses) where required.

metItem is not directed at children under 13 (or under the minimum age required in your country). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

We use industry-standard measures including encryption in transit, hashed credentials, role-based access controls, and rate-limiting to help keep your information safe. No system is perfectly secure; if we become aware of a breach affecting your information, we will notify you as required by law.

See our Cookie Policy for details about how we use cookies and similar technologies.

We may update this Privacy Policy from time to time. If we make material changes, we will give you reasonable notice (for example, by email or by posting a notice in the Service) before the change takes effect.

Questions about this Privacy Policy or how we handle your information? Email privacy@metitem.com or visit our contact page.