WhatToWatch ("we", "us", or "our") operates the whattowatch.fyi platform, a personal media tracking and AI-powered recommendation service. This Privacy Policy explains how we collect, use, and protect your personal data when you use our service.
Account data – your email address, username, and hashed password (or OAuth token if you sign in with Google/Apple).
Watchlist data – titles you add to your library along with their status (watching, completed, or dropped) and any episode progress you record.
Browser extension data – when you use the WhatToWatch browser extension, it detects video playback on supported streaming platforms and sends us: the platform name, title, episode/season numbers, playback progress, and timestamps. This data is used solely to keep your watch progress in sync and is never shared with third parties.
AI usage data – prompts you send to our AI features and the token count consumed per billing period. Prompts are forwarded to OpenAI for processing (see Section 5).
Subscription & billing data – your Stripe customer ID, plan tier, and billing period. We never store full card numbers; payment processing is handled entirely by Stripe.
Usage analytics – anonymous page-view counts and feature interaction events to improve the product. We do not use third-party advertising trackers.
Email address – used to send transactional emails (account verification, subscription receipts) and, if you are a Premium subscriber, the daily new-release digest.
3. How We Use Your Data
To provide and personalise the WhatToWatch service.
To sync your watch progress from the browser extension to your library.
To process subscription payments through Stripe.
To send you transactional and digest emails you have opted into.
To power AI features by forwarding your prompts to OpenAI.
To enforce fair-use limits on AI features based on your plan.
To improve our product using aggregated, anonymised analytics.
To comply with applicable legal obligations.
We do not sell, rent, or share your personal data with third parties for advertising purposes.
4. Data Retention
We retain your account and watchlist data for as long as your account is active. If you delete your account, we delete or anonymise your personal data within 30 days, except where retention is required by law (e.g. billing records retained for 7 years under accounting regulations).
5. Third-Party Services
We use the following sub-processors:
Supabase – database and authentication infrastructure (EU region).
OpenAI – AI feature processing. Prompts you send to our AI features are forwarded to OpenAI's API. Governed by OpenAI's Privacy Policy. We do not use your prompts to train OpenAI models.
Resend – transactional email delivery.
Railway – API server hosting.
Each sub-processor is contractually bound to protect your data in accordance with applicable privacy law.
6. Cookies & Local Storage
We use a single first-party session cookie (or secure local storage token) to keep you signed in. We do not use advertising cookies or third-party tracking pixels.
7. Your Rights
Depending on your jurisdiction you may have the right to:
Access a copy of your personal data.
Correct inaccurate data.
Request deletion of your account and associated data.
Object to or restrict certain processing.
Port your data in a machine-readable format.
To exercise any of these rights, email us at privacy@whattowatch.fyi. We will respond within 30 days.
8. Security
We use industry-standard measures including TLS in transit, encrypted storage, and least-privilege database access. However, no system is 100% secure. Please use a strong, unique password to protect your account.
9. Children
WhatToWatch is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with data, please contact us and we will delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by displaying a prominent notice in the app. Continued use of the service after the effective date constitutes acceptance of the updated policy.